Medium Severity CVE-2017-7494
Published: Jun 24, 2025

WordPress HTTP Server - Xss

Xss
Type
N/A
CVSS Score
123
Views
Anonymous
Author

Description

This exploit targets a xss vulnerability in WordPress HTTP Server.

The vulnerability allows an attacker to:
- Execute arbitrary code
- Escalate privileges
- Access sensitive data
- Bypass security controls

Tested on multiple versions of HTTP Server.

Proof of Concept

Security Warning

This code is provided for educational and research purposes only. Do not use against systems you do not own or have explicit permission to test.

Exploit Code 
#!/usr/bin/env python3
# WordPress HTTP Server - Xss
# Exploit for CVE-2017-7494

import socket
import struct

target = "192.168.1.100"
port = 53550

payload = b"A" * 358
shellcode = b"\x90" * 194

print(f"Exploiting {target}:{port}")
# Exploit implementation would go here
Community Rating
0

Login to rate this exploit

Quick Actions
Related Exploits
High Nginx WordPress Core - Xss...
Medium OpenSSL Firefox - Other...
Medium SolarWinds OpenSSL - Buffer Overflow...