WordPress versions 5.2.3 and below remote cross site host modification proof of concept demo exploit.

From packetstormsecurity.com

Image result for wordpress

WordPress could allow a remote attacker to bypass security restrictions, caused by improper access control. By sending a specially-crafted HTTP request, an attacker could exploit this vulnerability to modify the content of vhost.

Read more…