قالب وردپرس پوسته وردپرس قالب فروشگاهی وردپس

Comment Image WordPress Plugins image Upload Arbitrary File Upload Vulnerability – Video

###########################

# Comment Image WordPress Plugins image Upload Arbitrary File Upload Vulnerability - Video

###########################

 ########################################################
# Exploit Title: Comment Image WordPress Plugins image Upload Arbitrary File Upload
########################################################
# Date: [2016-07-21]
# Exploit Author: AlI_c.G2
# Version: 1.2.2
# Vendor Home Page :https://wordpress.org/plugins/comment-image/
# Tested on: windows7 - localhost
########################################################
# DISCRIPTION: Comment Image enables blog readers to attach an image while leaving their comments. Supported formats are JPG, PNG, GIF.
#
#Uploaded images are inserted below the comment text as thumbnail (of configurable max dimensions) and linked to the original pictures.
#
#File selection field can be injected automatically or added manually.
#
#Original pictures and their thumbnails are stored in a separate folder for easy management.
## Exploit :
#
#1-
# You can use this plugin your image and upload formats jpg -gif -png
# Or you can try to upload your shell format images
# your file uploaded path : site.com/wp-content/uploads/2016/07/filename.jpg
#
#2-
# In addition to uploading shell or images can comment in the box for code page D-Face Put yourself and your page will see Deface :)
# ################################################3
# Demo :
# www.justarsenal.com/
# https://esrati.com/
#
# Video : http://www.aparat.com/v/Px1af
#
########################################################
#
# Sec-learning.org
#
# We Are : 504W [+] MaMaD WanteD [+] SaMa [+] AlI_c.G2
#
########################################################

###########################

# Iranian Exploit DataBase = http://IeDb.Ir [2016-07-23]

###########################
http://iedb.ir/exploits-5463.html

درباره نویسنده

مطالب مرتبط

2 نظر

  1. ‍پینگ بک: آموزش آسیب پذیری Image Comment shell upload vulnerability | Security LearninG Group

نظر بدهید

نشانی ایمیل شما منتشر نخواهد شد. بخش‌های موردنیاز علامت‌گذاری شده‌اند *