Skip to main content
Drop a repoSign up
NEWvicrodh/qbzjust droppedNEWkowalski-ptr/compass-before-compactjust droppedNEWlastmile-ai/mcp-agentjust droppedREPOxai-org/grok-build+2097 stars 24hREPOmsitarzewski/agency-agents+659 stars 24hREPOsafishamsi/graphify+599 stars 24hREPOstablyai/orca+566 stars 24hREPOjamiepine/voicebox+537 stars 24hNEWvicrodh/qbzjust droppedNEWkowalski-ptr/compass-before-compactjust droppedNEWlastmile-ai/mcp-agentjust droppedREPOxai-org/grok-build+2097 stars 24hREPOmsitarzewski/agency-agents+659 stars 24hREPOsafishamsi/graphify+599 stars 24hREPOstablyai/orca+566 stars 24hREPOjamiepine/voicebox+537 stars 24h
47Cid/wp2shell-labpublicPythongithub.com/47Cid/wp2shell-lab
47Cid avatar

wp2shell-lab

Educational PoC + lab for CVE-2026-63030 + CVE-2026-60137: pre-auth SQLi in WordPress core via REST batch-route confusion

PYTHONOTHERBREAKOUT VELOCITY2 SOURCESTRENDING #82

// OWNER · 47Cid · REPO SNAPSHOT

github.com/47Cid

47Cid

Educational PoC + lab for CVE-2026-63030 + CVE-2026-60137: pre-auth SQLi in WordPress core via REST batch-route confusion

STARS10+8 · 7d
FORKS2+0 · 7d
CONTRIBUTORS0maintainer graph thin
OPEN ISSUES · PRS0· 0 
LICENSEno license file
LANGUAGEPython 
FOUNDED
LOCATION
MEMBERS
PUBLIC REPOS
TOTAL STARS
FOCUS
FUNDING

//STAR HISTORY · 12M

+10 all-time-window
Stars · cumulative10 · today
//WHY IT'S TRENDING· expert verdict · 85% confidence

WordPress plugin-to-shell exploitation toolkit for security research.

A single HN mention (rank 16 in a tiny 26-row pool) drove a low-confidence signal for a niche pentesting repo. No GitHub, social, or developer traction exists beyond this isolated blip.

Why now: HN's small security-focused pool occasionally surfaces obscure tools without broader validation.

  • Only 1 of 8 weighted sources has any signal (HN)
  • HN pool is 26 rows vs 1000-row HF pool — tiny, low-barrier visibility
  • No GitHub stars/activity in weighted composite (gh score absent)
  • Single-source verdict with 19% confidence in consensus model

Considerations: HN rank 16 in a 26-row pool is essentially random noise; could be self-submission or a single security researcher sharing a personal tool. No stars, no forks, no cross-platform discussion, and the repo name follows a pattern common to low-visibility CTF/pentest scripts.

EMERGING SIGNAL · Ignore: No signal worth tracking; revisit only if GitHub velocity or multi-source confirmation emerges.

Sources: Hacker News mentions of 47Cid/wp2shell-lab

↻ refreshed 56m ago· next sync in 9m· sourced from 2 channels · 1 mention / 24h

Methodology: synthesized from this project's own documentation, live GitHub data, third-party coverage, and multi-platform signal convergence — by AISO.tools.

FAQ · answers from the data spine

What is 47Cid/wp2shell-lab?
Educational PoC + lab for CVE-2026-63030 + CVE-2026-60137: pre-auth SQLi in WordPress core via REST batch-route confusion
Who maintains wp2shell-lab?
Maintained by 47Cid (the owner) on GitHub.
What language is wp2shell-lab written in?
Primarily Python.
When was wp2shell-lab created? When was the last update?
Created July 18, 2026 · last commit July 18, 2026.
How do I install wp2shell-lab?
Clone the repo:
git clone https://github.com/47Cid/wp2shell-lab.git
Then follow the README in the cloned directory.
Is wp2shell-lab actively maintained?
stalled — no commits for an extended period

//COMMENTS · 0

live thread · operators only

Sign in to join the discussion

Be the first to comment.
Created
Updated
Last commit