Home of WhiteHat CyberArmy
 
HomeFAQSearchMemberlistUsergroupsRegisterLog in

Share | 
 

 Exploit Title: WordPress "photocrati-theme" Remote File Upload "RFU"

Go down 
AuthorMessage
W-P
Admin
avatar

Posts : 80
Join date : 2013-11-12
Age : 32
Location : Cyber World

PostSubject: Exploit Title: WordPress "photocrati-theme" Remote File Upload "RFU"   Tue Nov 12, 2013 12:40 pm

Exploit Title: WordPress "photocrati-theme" Remote File Upload "RFU"
By : AShiyane Digital Security Team
Dork : "inurl:wp-content/themes/photocrati-theme/admin"
Tested : Windows 7 / bt5
Exploit :

go to gallery in admin Directory
and Then in gallery directory open file : upload_edit.php
then click "Add images"
add your file and upload ...
your files will go to ------ > localhost/wp-content/themes/photocrati-theme/galleries/post-/full/



Demo Site:
[You must be registered and logged in to see this link.]
Back to top Go down
View user profile http://whitehatcyberarmy.forumotion.com
 
Exploit Title: WordPress "photocrati-theme" Remote File Upload "RFU"
Back to top 
Page 1 of 1

Permissions in this forum:You cannot reply to topics in this forum
Home of Ethical WhiteHat CyberArmy :: WhiteHat CyberArmy Community :: Hacking & Security Tutorials-
Jump to: