NOMISEC-RandomRobbieBF/CVE-2024-56067

NOMISEC WORKING POC

Exploit for CVE-2024-56067 - Azzaroco WP SuperBackup <2.3.3 - Info Disclosure

AI Analysis

This PoC demonstrates an unauthorized access vulnerability in the WP SuperBackup plugin, allowing unauthenticated attackers to download backup files by accessing specific paths. The exploit leverages missing capability checks to retrieve sensitive backup data.

Attack Type

info_leak

Complexity

trivial

Reliability

reliable

MITRE ATT&CK

T1083 - File and Directory Discovery T1592 - Gather Victim Host Information

Loading exploit code...

Download ZIP Password: eip

Source

Platform Nomisec

Type poc

Files 1

https://github.com/RandomRobbieBF/CVE-2024-56067

Stars 0

Forks 0

Last Push Jan 09, 2025

Authors

RandomRobbieBF

Vulnerability

CVE-2024-56067

Azzaroco WP SuperBackup <2.3.3 - Info Disclosure

HIGH

CVSS 7.5