LEFT SIDEBAR AD

Hidden in mobile, Best for skyscrapers.

Vulnerable WordPress October 2024 (Zahhak Castle)

3 hours ago 4
BOOK THIS SPACE FOR AD
ARTICLE AD

Onhexgroup

Github Repo: https://github.com/onhexgroup/Vulnerable-WordPress

Various vulnerabilities in different programs are discovered and reported nowadays. If you’re a security researcher, you’re interested in working on them. For example, analyzing them, writing exploits, and so on.
But to do these things, you first need to have a laboratory environment. And this might be the most challenging stage of the process.

To simplify the research process, I release a vulnerable version of WordPress. The vulnerable version includes vulnerable plugins that are collected monthly.
The vulnerable plugins are extracted from Wordfence.com reports and downloaded from the WordPress website.

The vulnerable version can be used for various purposes such as exploit development, training, developing new Nuclei templates, developing hacking tools, and participating in bug bounty programs [1,2].

We have released the October version under the name Zahhak Castle. Below, you can see images of this version.

Worpress version: 6.7.1Number of installed plugins (Clean and Vulnerable) : 59Number of vulnerabilities: 57Admin user: onhexgroupAdmin pass: ZO4moPPcrfTGE$RBYVHash Vulnerable_WordPress_October_2024.7z: 128521FDD454EC1D490795F0A9E9ACD98AFE03FB89DF523C62E3AE9A5422BA2AThe list of vulnerable plugins for this month.This version includes vulnerable plugins, so please exercise caution when using it.Do not update the plugins.The plugins have been extracted based on reports from the wordfence.com.The plugins have not been activated due to the potential for disruption.It only includes plugins that are downloadable through the WordPress website.Vulnerabilities with a score of 7 and above are collected.Download the file (You can also download from Google Drive) and extract it from the compressed format.Create a database and a user for the database.Run the installer.php file in your browser.

Video: How to install on Wamp (windows)

Video: How to install on Kali (Linux)

Donate:
Bitcoin: 1HPfpSES4kpuTgJDsbsxY3iMZWsxChcZm5
Ethereum: 0xb59922b7b786d59c31B8180024dE34D3D7932fb4
Tether usd: 0xb59922b7b786d59c31B8180024dE34D3D7932fb4
BNB coin: bnb1ncm9ln8ywx8557v3d428w8z82hg97379w070e3
Monero: 44XHPK7jDMcFiL44p6sez4KBmgXrPsgnQiiV8TiKv9yAeLDJQk9ZNmKWRgfSR8efeDGrN5v3MV1p46k3hT9J5zGR6vzDGFW
Iranian

Contact us:

Site | Telegram | Twitter | Youtube | Linkedin | Instagram

Read Entire Article
  3. Vulnerable WordPress October 2024 (Zahhak Castle)

Related

North Korean Hackers Steal $10M with AI-Driven Scams and Malware on LinkedIn

North Korean Hackers Steal $10M with AI-Driven Scams and Malware on LinkedIn

Chinese Hackers Target Linux with WolfsBane Malware

Chinese Hackers Target Linux with WolfsBane Malware

Cyber Alert: APT28 Hackers Breach US Firm with Innovative “Nearest Neighbor Attack”

Cyber Alert: APT28 Hackers Breach US Firm with Innovative “Nearest Neighbor Attack”

Ubuntu Users Alert: Decade-Old Needrestart Flaws Expose Root Privilege Risks

Ubuntu Users Alert: Decade-Old Needrestart Flaws Expose Root Privilege Risks

Step into my Professional Life(:Finding my first Bug:)

Step into my Professional Life(:Finding my first Bug:)

How a Simple Bug Could Have Taken Down Your Instagram Tags

How a Simple Bug Could Have Taken Down Your Instagram Tags

Trending

1. Leicester City vs Chelsea
2. Imtiaz Jaleel Election Result 2024
3. IPL Auction 2025 Date and Time
4. Zeeshan Siddique
5. Priyanka Gandhi
6. News Today
7. Ajit Pawar
8. Jharkhand Election Result date 2024
9. Karnataka by Election Results 2024
10. Amit Thackeray

Popular

Install waybackurls on Kali Linux

Install waybackurls on Kali Linux

1-click RCE in Electron Applications

1-click RCE in Electron Applications

Microsoft Office Professional Plus 2019 (x64 & x86) Multilingual + Pre-Activated

Microsoft Office Professional Plus 2019 (x64 & x86) Multilingual + Pre-Activated

Over 40 Apps With More Than 100 Million Installs Found Leaking AWS Keys

Over 40 Apps With More Than 100 Million Installs Found Leaking AWS Keys

Install DalFox on Kali Linux

Install DalFox on Kali Linux

Adobe Master Collection CC 2022 v25.08.2022 (x64) Multilingual Pre-Activated

Adobe Master Collection CC 2022 v25.08.2022 (x64) Multilingual Pre-Activated

Maxon CINEMA 4D Studio S22.123 (x64) Multilingual + Crack

Maxon CINEMA 4D Studio S22.123 (x64) Multilingual + Crack

Autodesk Revit 2023 R1 Build 23.0.11.19 (x64) Multilingual + Crack

Autodesk Revit 2023 R1 Build 23.0.11.19 (x64) Multilingual + Crack

‘We are not motivated by profits’ – Open Bug Bounty maintainers on finding a niche in the crowdsourced AppSec market

‘We are not motivated by profits’ – Open Bug Bounty maintainers on finding a niche in the crowdsourced AppSec market

Just Gopher It: Escalating a Blind SSRF to RCE for $15k

Just Gopher It: Escalating a Blind SSRF to RCE for $15k

BOOK THIS SPACE FOR AD
RIGHT SIDEBAR BOTTOM AD
Bengali (Bangladesh) Bengali (Bangladesh) · English (United States) English (United States) ·
About Us · Terms & Condition · Contact Us
© Security Alert 2024. All rights are reserved