Share
## https://sploitus.com/exploit?id=1CAB6626-0133-50DD-A798-0D035C3AB4B5
This is a PoC exploit for CVE-2024-27956, a vulnerability in the WordPress Automatic plugin. The exploit is written in Python and targets the plugin's CSV.php file. The vulnerability class is SQL injection, and the probable entry point is the CSV.php file. The exploit uses a POST request to inject malicious SQL queries. The expected impact is remote code execution. The exploit is typically invoked by running the `exploit` method with a domain as an argument. Preconditions for the exploit to work include the WordPress Automatic plugin being installed and vulnerable, and the target domain being reachable over HTTP. Observable network artifacts include the POST request to the CSV.php file.