The Sitemap by click5 WordPress plugin before 1.0.36 does not have authorisation and CSRF checks when updating options via a REST endpoint, and does not ensure that the option to be updated belongs to the plugin. As a result, unauthenticated attackers could change arbitrary blog options, such as the users_can_register and default_role, allowing them to create a new admin account and take over the blog.
Published: 2022-05-02
CVSS: 8.8
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Download Exploit for CVE-2022-0952 here:
Tip: Download official Tor Browser at https://www.torproject.org/download/ to access .onion links.
https://augustaverburg.nl/exploit-801-cve-2025-31644/
https://augustaverburg.nl/exploit-273-cve-2024-10905/
https://augustaverburg.nl/exploit-718-cve-2025-1735/
https://augustaverburg.nl/exploit-573-cve-2018-2380/
https://augustaverburg.nl/exploit-745-cve-2022-44702/