Share
## https://sploitus.com/exploit?id=726D56C6-F915-52A4-8998-3C9F49FACC1C
# CVE-2024-10924 / Auth Bypass (2FA) to RCE Exploit

- Author: Joshua Provoste
- https://x.com/JoshuaProvoste/status/1859061671852909055

![CVE-2024-10924](CVE-2024-10924-1.PNG)
![CVE-2024-10924](CVE-2024-10924-2.PNG)

This repository contains a proof-of-concept exploit for CVE-2024-10924, an authentication and 2FA bypass vulnerability in the Really Simple Security WordPress plugin that can be leveraged to achieve remote command execution (RCE).

## What the script does

The script abuses an authentication bypass to impersonate an administrator, retrieves the required nonce, uploads a malicious plugin, verifies the deployed payload, detects the target operating system, and provides an interactive remote shell.

## Usage

```
python CVE-2024-10924.py --target http://target-wordpress-site --plugin-rce rce-plugin.zip
```

After execution, the script bypasses authentication, installs the malicious plugin, confirms payload accessibility, detects the OS, and drops into an interactive shell.

## Notes

- Authentication and 2FA bypass (pre-auth).
- Requires a malicious plugin ZIP as payload.