NOMISEC-RandomRobbieBF/CVE-2024-54378
NOMISEC WORKING POC
Exploit for CVE-2024-54378
- Quietly Quietly Insights <1.2.2 - Privilege Escalation
AI Analysis
This PoC demonstrates a missing authorization vulnerability in the Quietly Insights WordPress plugin, allowing authenticated attackers with Subscriber-level access to update arbitrary options, such as enabling user registration and setting the default role to administrator.
Attack Type
auth_bypass
Complexity
trivial
Reliability
reliable
MITRE ATT&CK
Click anywhere or press Esc to close