NOMISEC-RandomRobbieBF/CVE-2024-10245

NOMISEC WORKING POC

Exploit for CVE-2024-10245 - Relais 2FA plugin <1.0 - Auth Bypass

AI Analysis

The repository contains a functional proof-of-concept for an authentication bypass vulnerability in the Relais 2FA WordPress plugin. The exploit leverages incorrect authentication checks in the 'rl_do_ajax' function, allowing unauthenticated attackers to log in as any user with known email.

Attack Type

auth_bypass

Complexity

trivial

Reliability

reliable

MITRE ATT&CK

T1550 - Use Alternate Authentication Material

Loading exploit code...

Download ZIP Password: eip

Source

Platform Nomisec

Type poc

Files 1

https://github.com/RandomRobbieBF/CVE-2024-10245

Stars 1

Forks 0

Last Push Nov 17, 2024

Authors

RandomRobbieBF

Vulnerability

CVE-2024-10245

Relais 2FA plugin <1.0 - Auth Bypass

CRITICAL

CVSS 9.8