Hacking Tricks Wordpress File Upload Bug

Discussion in 'Ethical Hacking Tricks' started by devendermahto, Jul 19, 2014.

  1. devendermahto

    devendermahto Active Member

    Joined:
    Jul 1, 2014
    Messages:
    95
    Likes Received:
    166
    Trophy Points:
    43


    For my n00b bros :v

    BUG in rsjp wp plugin i.e Job Posting :v

    dork: rsjp/attachments

    Attachments are uploaded to the following folder:

    /wp-content/uploads/rsjp/attachments/

    When submitting the resume form, attach a shell example c99.php;.docx then use temper data or http headers to change extension

    after uploading it will give you error but it uploads yo file

    Locate your file by searching for the file extension (.php, etc.) or by file size.

    The plugin creates an MD5 hash of the server date and time.

    if dir is protected catch http headers timing and make md5 of it to access file

    example - If server date and time is 2012-07-09 21:22:20 and only one file is attached, file name will be output as 813a2040e8ef7fe3661972696409b562-1.php​



     


    RELATED POSTS


  2. Deepakgaria

    Deepakgaria old member

    Joined:
    Jul 6, 2014
    Messages:
    219
    Likes Received:
    457
    Trophy Points:
    93


    upload images also
     

  3. devendermahto

    devendermahto Active Member

    Joined:
    Jul 1, 2014
    Messages:
    95
    Likes Received:
    166
    Trophy Points:
    43


    i can't create image for every post its not like a movie or soft post :) hope you understand ,
     

  4. booblemush

    booblemush Guest



    nice on bro
     

  5. Wolfgang furtado

    Wolfgang furtado Member

    Joined:
    Aug 27, 2014
    Messages:
    92
    Likes Received:
    2
    Trophy Points:
    18

  6. Wolfgang furtado

    Wolfgang furtado Member

    Joined:
    Aug 27, 2014
    Messages:
    92
    Likes Received:
    2
    Trophy Points:
    18


    uhkjknknkhbjhbj
     

  7. shadid

    shadid Member

    Joined:
    Oct 27, 2014
    Messages:
    49
    Likes Received:
    0
    Trophy Points:
    16


    thaaaaaaaaaaaaaanx
     

  8. devilwars

    devilwars Member

    Joined:
    Oct 15, 2014
    Messages:
    42
    Likes Received:
    0
    Trophy Points:
    18


    gooooood work bro.
     

  9. prakhar

    prakhar Member

    Joined:
    Oct 20, 2014
    Messages:
    62
    Likes Received:
    4
    Trophy Points:
    18


    thank you so much
     

  10. zeezooo777

    zeezooo777 Member

    Joined:
    Nov 2, 2014
    Messages:
    66
    Likes Received:
    0
    Trophy Points:
    18


    thanx man ...
     

  11. ravi shandilya

    ravi shandilya Active Member

    Joined:
    Dec 4, 2014
    Messages:
    44
    Likes Received:
    24
    Trophy Points:
    28


    nice.........................
     

Similar Threads: Wordpress File
Forum Title Date
Ethical Hacking Tricks BruteForcer - Client-Server Multithreaded Tool To Crack RAR File Passwords Jan 23, 2017
Ethical Hacking Tricks How to stop OS X from deleting trashed files immediately Apr 27, 2016
Ethical Hacking Tricks Here's How to Get Facebook New 'Dislike Button' to Your Profile Sep 24, 2015
Ethical Hacking Tricks DOWNLOAD TORRENT FILES USING IDM INTERNET DOWNLOAD MANAGER Jul 10, 2015
Ethical Hacking Tricks How To Find Duplicate Files In Computer To Save Memory By Deleting Them Jul 4, 2015

Share This Page