.. / CVE-2022-0424

Exploit for Popup by Supsystic < 1.10.9 - Subscriber Email Addresses Disclosure (CVE-2022-0424)

Description:

The Popup by Supsystic WordPress plugin before 1.10.9 does not have any authentication and authorisation in an AJAX action, allowing unauthenticated attackers to call it and get the email addresses of subscribed users

Nuclei Template

View the template here CVE-2022-0424.yaml

Validate with Nuclei

echo "$URL" | nuclei -t ~/nuclei-templates/http/cves/2022/CVE-2022-0424.yaml

References:

https://wpscan.com/vulnerability/1e4593fd-51e5-43ca-a244-9aaef3804b9f/
https://nvd.nist.gov/vuln/detail/CVE-2022-0424

.. / CVE-2022-0424 if(localStorage["style"]=="true"){ document.getElementById('pagestyle').setAttribute('href','/assets/styleDark.css'); document.querySelector('input[type="checkbox"]').checked = true }

Exploit for Popup by Supsystic < 1.10.9 - Subscriber Email Addresses Disclosure (CVE-2022-0424)

Description:

Nuclei Template

Validate with Nuclei

.. / CVE-2022-0424