• Skip to primary navigation
  • Skip to main content
  • Skip to primary sidebar

LinuxSec Exploit

Nothing is Ever Locked

  • XSS Payloads
  • About Us

WordPress Plugin CopySafe PDF Protection Shell Upload

August 3, 2014 by Jack Wilder Leave a Comment

Hallooo.. lama tidak share disini 😀
Berhubung masih suasana lebaran , saya ucapkan minal aidzin wal faidzin ya .. maaf telat :p
Kali ini saya akan share exploit wordpress yang saya baca dari thread di Forum IDCA . Namanya Exploit WordPress Plugin CopySafe PDF Protection Shell Upload . Oke langsung saja ya :
Google Dork :
inurl:/wp-content/plugins/wp-copysafe-pdf/
Kembangkan sendiri .
Exploit HTML – Download – simpan dengan ekstensi html.
Nah , kalau sudah dapat web yang vuln , edit exploit html nya , ganti http://localhost/ dengan web target 😀
Buka file exploit nya lewat browser, dan upload shell kalian .
Nanti jika berhasil akan ada bacaan “0”
Setelah itu shell bisa diakses di http://localhost/wp-content/uploads/namashell.php

Sekian post kali ini, semoga bermanfaat 🙂

Shares

Filed Under: WordPress Exploit Tagged With: Exploit, Hacking

Reader Interactions

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Primary Sidebar

Popular Post

Deface WordPress dengan Exploit WordPress TheLoft Theme Arbitrary File Download Vulnerability

Laravel PHPUnit Remote Code Execution

Exploit WordPress Plugin WP Mobile Edition Local File Disclosure Vulnerability

Deface WordPress Dengan Exploit Archin WordPress Theme 3.2 Unauthenticated Configuration Access Vulnerability

bWAPP Remote File Inclusion Medium Security Level

Shopify Custom Domain or Subdomain Takeover

WordPress Fraction Theme Version 1.1.1 Privilege Escalation

FastMail Custom Domain or Subdomain Takeover

Cara Mudah Hack cPanel dengan Fitur Reset Password

DNS Hijacking through Social Engineering

LinuxSec / 64 queries in 0.07 seconds