WordPress image-symlinks Plugin Arbitrary File Upload Vulnerability

Author = X-Bruno E-mail = email protected Facebook = http://fb.me/Inj3ct.Bruno Google Dork = inurl:/wp-content/plugins/image-symlinks/ Usage Info = Exploit Info : The attacker can uplaod file/shell.php "php" // Allowed file extensions "/uploadify/"; // The path were we will save the file getcwd m...