add CVE-2024-11396

[Kazgangap]

poc: https://github.com/RandomRobbieBF/CVE-2024-11396

I've validated this template locally?

• YES
• NO

Additional Details (leave it blank if not applicable)

Additional References:

• Nuclei Template Creation Guideline
• Nuclei Template Matcher Guideline
• Nuclei Template Contribution Guideline
• PD-Community Discord server

[DhiyaneshGeek]

Hi @Kazgangap

i tried replicating this on Latest Version 1.4.5 as well this gives the same behaviour

am i missing something ?

[Kazgangap]

Hi @Kazgangap

i tried replicating this on Latest Version 1.4.5 as well this gives the same behaviour

am i missing something ?

hi @DhiyaneshGeek
CVE number assigned for version 1.4.3 and earlier. That's why I wrote 1.4.3. I have no information about later versions.
https://www.wordfence.com/threat-intel/vulnerabilities/wordpress-plugins/event-monster/event-monster-143-information-exposure-via-visitors-list-export

[DhiyaneshGeek]

Hi @Kazgangap

i'm getting same response for both patched latest version and the vulnerable version tested locally

the matcher First Name, Last Name, Email, Phone, Event is present in latest and vulnerable version, this might result in False Negative

[Kazgangap]

Hi @Kazgangap

i'm getting same response for both patched latest version and the vulnerable version tested locally

the matcher First Name, Last Name, Email, Phone, Event is present in latest and vulnerable version, this might result in False Negative

hi @DhiyaneshGeek What do you advise me to do?

[DhiyaneshGeek]

Hi @Kazgangap

Kindly update the template to detect the presence of vulnerable version and then we can look for the vulnerable path