WordPress SEM WYSIWYG Arbitrary File Upload

`  
# Exploit Title: Wordpress sem WYSIWYG Arbitrary File Upload Vulnerability  
  
# Google Dork: inurl:wp-content/plugins/sem-wysiwyg/  
  
# Date: 08/22/2012  
  
# Author: Crim3R  
  
# Tested on: all  
  
==================================  
  
D3m0:  
http://www.anotherdailydose.com/wp-content/plugins/sem-wysiwyg/fckeditor/editor/filemanager/connectors/test.html  
  
  
http://embraceorerase.com/wp-content/plugins/sem-wysiwyg/fckeditor/editor/filemanager/upload/test.html  
  
  
http://www.operadepot.com/wp-content/plugins/sem-wysiwyg/fckeditor/editor/filemanager/upload/test.html  
  
  
[email protected]=========  
  
$Home = %00  
  
thanks to : 2MzRp - Mikili - 0x0ptim0us - iC0d3R - farbodmahini & Amir   
  
`