## https://sploitus.com/exploit?id=9E58530F-43FD-5EF6-896D-CE6DD1E1DC98
# CVE-2023-3460
Exploit for CVE-2023-3460 - Unauthorized admin access for Ultimate Member plugin. Made with Golang
```
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
โ DISCLAIMER โ โ ABOUT THE PROJECT โ
โ โ โ โ
โ This Proof of Concept (PoC) has been developed โ โ I had problems in some cases with this exploit. โ
โ for educational and research purposes only. โ โ Things like this must happen since it's a dev โ
โ Its intention is to explore potential security โ โ version. Project intended to increase the scope โ
โ vulnerabilities and raise awareness about them. โ โ of the exploit, and not need to open BurpSuite โ
โ โ โ and test by hand everytime you find a Wordpress โ
โ USAGE DISCLAIMER: โ โ WebApp. Improvements are on the way, and I โ
โ Any use of this PoC on systems or websites you โ โ promise I won't leave the dirty code as it is โ
โ do not have explicit authorization for may โ โ (I think). โ
โ violate ethical standards and legal regulations. โ โ โ
โ โ โ UPCOMING FEATURES: โ
โ USAGE AT YOUR OWN RISK: โ โ - Scanning functionality to identify exposed โ
โ Using this PoC on unauthorized systems or โ โ systems โ
โ websites may lead to legal consequences. Always โ โ - Improved nonce search for various registration โ
โ obtain proper authorization before testing. โ โ patterns โ
โ โ โ - Customizable admin creation options (Like set โ
โ The creator of this PoC are not responsible โ โ parameters that registration require) โ
โ for any misuse or damage caused by its usage. โ โ โ
โ โ โ โ
โ [ Version 0.1 ] โ โ [ By BlackReaperSK ] โ
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
```