## https://sploitus.com/exploit?id=D27E2BF7-2072-5B88-98D1-DC6EBB1CD053
# CVE-2025-4796
eventin
and update the speaker email to an email they control. then the attacker can use wordpress's password reset to take over the admin account.
requirements:
- python 3.8 or higher
- requests
install requests:
``
pip install requests
``
## usage
run the script and enter required values when prompted:
``
python3 CVE-2025-4796.py
``
## example output
[+] please wait, starting ...
[+] turning off ssl warnings ...
[+] logging into wordpress ...
[+] login successful.
[+] fetching nonce token ...
[+] nonce token found: fc0ab7b983
[*] sending update request ...
[+] update successful.
url: https://example.com
id: 9
email: attacker@example.com
user: contributor_user
pass: contributor_passwordb
## mitigation
patch has been released in version 4.0.35 of the eventin plugin. Site administrators are strongly advised to update to this version immediately. The fix includes additional user validation checks in the SpeakerController::update_item function