• Skip to primary navigation
  • Skip to main content
  • Skip to primary sidebar

LinuxSec Exploit

Nothing is Ever Locked

  • XSS Payloads
  • About Us

WordPress Plugin CopySafe PDF Protection Shell Upload

August 3, 2014 by Jack Wilder Leave a Comment

Hallooo.. lama tidak share disini 😀
Berhubung masih suasana lebaran , saya ucapkan minal aidzin wal faidzin ya .. maaf telat :p
Kali ini saya akan share exploit wordpress yang saya baca dari thread di Forum IDCA . Namanya Exploit WordPress Plugin CopySafe PDF Protection Shell Upload . Oke langsung saja ya :
Google Dork :
inurl:/wp-content/plugins/wp-copysafe-pdf/
Kembangkan sendiri .
Exploit HTML – Download – simpan dengan ekstensi html.
Nah , kalau sudah dapat web yang vuln , edit exploit html nya , ganti http://localhost/ dengan web target 😀
Buka file exploit nya lewat browser, dan upload shell kalian .
Nanti jika berhasil akan ada bacaan “0”
Setelah itu shell bisa diakses di http://localhost/wp-content/uploads/namashell.php

Sekian post kali ini, semoga bermanfaat 🙂

Filed Under: WordPress Exploit Tagged With: Exploit, Hacking

Reader Interactions

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Primary Sidebar

Popular Post

Tutorial Hack WHM dan cPanel dengan WHMCS Killer

FastMail Custom Domain or Subdomain Takeover

Azure Traffic Manager Custom Domain or Subdomain Takeover

Heroku Custom Domain or Subdomain Takeover

bWAPP Remote File Inclusion Medium Security Level

Cara Deface Website dengan Teknik Local File Inclusion

Uptimerobot.com Custom Domain or Subdomain Takeover

WordPress Army Knife CSRF File Upload Vulnerability

Tumblr Custom Domain or Subdomain Takeover

DNS Hijacking through Social Engineering

LinuxSec / 9 queries in 0.09 seconds