WordPress Simple Forum Shell Upload

2012.08.28
Credit: Mr.Cicili
Risk: High
Local: No
Remote: Yes
CVE: N/A
CWE: CWE-264
Dork: inurl:wp-content/plugins/simple-forum/forum/uploader/sf-uploader.php?folder=

-----------IN THE NAME OF Allah-------------- Exploit : WordPress Plugin "Simple Forum" File Upload Vulnerability Author : Iranian Dark Coders Discovered By : Mr.Cicili Plugin Download Link : http://simple-press.com/download/ Google Dork : inurl:wp-content/plugins/simple-forum/forum/uploader/sf-uploader.php?folder= Upload Your Files With .PNG .Jpg .Gif Demo : http://www.panthera-tuning.com/wp/wp-content/plugins/simple-forum/forum/uploader/sf-uploader.php?id=4&folder=uploads/forum/petas And YOucan find you file link at tehe Top of page .. Tnx : M.R.S.CO - black.king - b3hz4d - skote_vahshat - IrIsT - G3n3Rall 4ut0n0m0us - SpooferNinja - Nafsh

References:

http://simple-press.com/download/


See this note in RAW Version
Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}
Copyright 2024, cxsecurity.com

 

Back to Top