Share
## https://sploitus.com/exploit?id=9E58530F-43FD-5EF6-896D-CE6DD1E1DC98
# CVE-2023-3460
 Exploit for CVE-2023-3460 - Unauthorized admin access for Ultimate Member plugin. Made with Golang
```
โ•”โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•— โ•”โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•—
โ•‘                  DISCLAIMER                      โ•‘ โ•‘                  ABOUT THE PROJECT               โ•‘        
โ•‘                                                  โ•‘ โ•‘                                                  โ•‘
โ•‘ This Proof of Concept (PoC) has been developed   โ•‘ โ•‘ I had problems in some cases with this exploit.  โ•‘
โ•‘ for educational and research purposes only.      โ•‘ โ•‘ Things like this must happen since it's a dev    โ•‘
โ•‘ Its intention is to explore potential security   โ•‘ โ•‘ version. Project intended to increase the scope  โ•‘
โ•‘ vulnerabilities and raise awareness about them.  โ•‘ โ•‘ of the exploit, and not need to open BurpSuite   โ•‘
โ•‘                                                  โ•‘ โ•‘ and test by hand everytime you find a Wordpress  โ•‘
โ•‘ USAGE DISCLAIMER:                                โ•‘ โ•‘ WebApp. Improvements are on the way, and I       โ•‘
โ•‘ Any use of this PoC on systems or websites you   โ•‘ โ•‘ promise I won't leave the dirty code as it is    โ•‘
โ•‘ do not have explicit authorization for may       โ•‘ โ•‘ (I think).                                       โ•‘
โ•‘ violate ethical standards and legal regulations. โ•‘ โ•‘                                                  โ•‘
โ•‘                                                  โ•‘ โ•‘ UPCOMING FEATURES:                               โ•‘
โ•‘ USAGE AT YOUR OWN RISK:                          โ•‘ โ•‘ - Scanning functionality to identify exposed     โ•‘
โ•‘ Using this PoC on unauthorized systems or        โ•‘ โ•‘   systems                                        โ•‘
โ•‘ websites may lead to legal consequences. Always  โ•‘ โ•‘ - Improved nonce search for various registration โ•‘
โ•‘ obtain proper authorization before testing.      โ•‘ โ•‘   patterns                                       โ•‘
โ•‘                                                  โ•‘ โ•‘ - Customizable admin creation options (Like set  โ•‘
โ•‘ The creator of this PoC are not responsible      โ•‘ โ•‘   parameters that registration require)          โ•‘
โ•‘ for any misuse or damage caused by its usage.    โ•‘ โ•‘                                                  โ•‘
โ•‘                                                  โ•‘ โ•‘                                                  โ•‘
โ•‘                 [ Version 0.1 ]                  โ•‘ โ•‘               [ By BlackReaperSK ]               โ•‘
โ•šโ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ• โ•šโ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•โ•

```