.. / CVE-2023-2796

Exploit for EventON <= 2.1 - Missing Authorization (CVE-2023-2796)

Description:

The EventON WordPress plugin before 2.1.2 lacks authentication and authorization in its eventon_ics_download ajax action, allowing unauthenticated visitors to access private and password protected Events by guessing their numeric id.

Nuclei Template

View the template here CVE-2023-2796.yaml

Validate with Nuclei

echo "$URL" | nuclei -t ~/nuclei-templates/http/cves/2023/CVE-2023-2796.yaml
Copy

References:

https://www.wordfence.com/threat-intel/vulnerabilities/id/dba3f3a6-3f55-4f4e-98e4-bb98d9c94bdd
https://nvd.nist.gov/vuln/detail/CVE-2023-2796
https://github.com/nullfuzz-pentest/shodan-dorks
https://wpscan.com/vulnerability/e9ef793c-e5a3-4c55-beee-56b0909f7a0d
http://packetstormsecurity.com/files/173984/WordPress-EventON-Calendar-4.4-Insecure-Direct-Object-Reference.html