Tool WPXStrike
Escalate a Cross-Site Scripting vulnerability to Remote Code Execution in WordPress.
Key features:
- privilege escalation: creates an user in WordPress
- plugin upload: upload your custom plugin to WordPress
- built-in plugin edit: edit a Built-In Plugins in WordPress
- built-in theme edit: edit a built-in themes in WordPress
- custom Exploits: custom exploits for third-party Wordpress plugins/themes