Hello Hackers Today I am going to tell you an easy way to find CVE. There are many different ways to find and submit a CVE. But here I am going to tell the way by which I got my first CVE.
 |
| Image: CVE |
To find the CVE we need to do security testing of the products. You can test WordPress, WordPress themes, WordPress plugins, etc.
I tested WordPress plugins.
First of all, I looked for a plugin that has a lot of functionality. Whose name was Profile Builder.
After that, I tried to find many types of bugs in it. and finally, I found a bug called cross-site scripting (XSS).
After that, I create a bug report with POC.
And finally, I reported that bug to the wpscan team. and I got my first CVE [CVE-2022-0884]
0 Comments