A PoC for CVE-2024-27956, a SQL Injection in ValvePress Automatic plugin. This PoC exploit the vulnerability creating a user in the target and giving Administrator rights. Being an administrator in wordpress can lead to Remote Code Execution.
git clone https://github.com/itzheartzz/MASS-CVE-2024-27956/
cd MASS-CVE-2024-27956
python3 exploit.py list.txt