CVE-2023-51409

This repository contains a functional exploit for CVE-2023-51409, an unauthenticated arbitrary file upload vulnerability in the AI Engine WordPress plugin (version 1.9.98). The exploit uploads a PHP payload via a vulnerable REST endpoint, deploys it in the WordPress uploads directory, and provides an interactive shell for remote command execution.

The repository contains a functional proof-of-concept for CVE-2023-51409, demonstrating an unauthenticated arbitrary file upload vulnerability in the AI Engine WordPress plugin via the 'rest_upload' function. It includes cURL commands and raw HTTP requests to exploit the vulnerability, allowing remote code execution by uploading malicious files.

The repository contains a functional Python exploit for CVE-2023-51409, targeting an arbitrary file upload vulnerability in the WordPress Plugin 3DPrint Lite 1.9.1.4. The exploit uploads a malicious file via the plugin's admin-ajax.php endpoint and confirms successful upload.

This repository contains a functional exploit for CVE-2023-51409, an unauthenticated arbitrary file upload vulnerability in the AI Engine: ChatGPT Chatbot WordPress plugin (versions <= 1.9.98). The exploit checks the plugin version via readme.txt and uploads a PHP file to a vulnerable endpoint, demonstrating remote code execution.