CVE-2023-47668

The repository contains a functional Python exploit for CVE-2023-47668, targeting an arbitrary file upload vulnerability in the WordPress Plugin 3DPrint Lite 1.9.1.4. The exploit uploads a malicious file via the plugin's admin-ajax.php endpoint and confirms successful upload.

The repository provides a functional proof-of-concept for CVE-2023-47668, an information exposure vulnerability in the Restrict Content WordPress plugin. The PoC demonstrates that unauthenticated attackers can access sensitive debug information via a legacy log file at `/wp-content/uploads/rcp-debug.log`.

This repository contains a Python script that checks for the presence of a legacy log file (rcp-debug.log) in WordPress sites using the Restrict Content plugin <= 3.2.7, which exposes sensitive information. It does not exploit the vulnerability but scans for its presence.