CVE-2018-6389 Wordpress Exploit
CVE-2018-6389 Exploit Can Down Any Wordpress site under 4.9.3
The flaw affects the load-scripts.php WordPress script, it receives a parameter called load[]
About PoC
A simple Script In Python With threading could allow anyone to take down most WordPress websites with single machine
Info
Can Down Any Website with Tested Wordpress versions
- Tested : WordPress (Version 4.9.2)
- Tested : WordPress (Version 4.9.1)
Note : I Am Not The Author Of the Exploit
References
- PoC - Youtube
- Barak Tawily - Blog
- CVE MITRE - CVE MITRE