Wordpress Plugins impact-template-editor KCFinder Shell Upload - 3xploi7 BuG

Wordpress Plugins impact-template-editor KCFinder Shell Upload



#- Title: Wordpress Plugins impact-template-editor KCFinder Shell Upload
#- Author: Putra Attacker
#- Date: -
#- Developer : WPEka Club
#- Link Download : wordpress. org/plugins/impact-template-editor/
#- Google Dork: inurl:"/plugins/impact-template-editor/"
#- Fixed in Version : -
#- Tested on : win
=======================================================

-- Proof Of Concept --




Vulnerable : /wp-content/plugins/impact-template-editor/lib/kcfinder/browse.php

When Vuln : Like a Kcfinder.

Methode :
1. Upload Your Shell, Php extension not allowed, so u can upload your shell with extension .php.asp / .php.pler
2. if Succesfully uploaded. find your shell.
Example :

browser.uploadURL = "/upload";
browser.dir = "impact";

See.. you can find your shell in Here

3xploi7 Team

0 Response to "Wordpress Plugins impact-template-editor KCFinder Shell Upload"

Posting Komentar

Tempat Diskusi

Iklan Atas Artikel

3xploi7 1

3xploi7 2

Iklan Bawah Artikel

Kunjungi Terus " 3xploi7 " untuk update menarik selanjutnya

Simak Update Artikel menarik disini, Stay toon !! 3xploi7.com
Jangan sampai Terlewatkan.

• Join Grup Team :
— Facebook Grup ( 3.235 Anggota ) 
— Line Square 

• Kerja Sampingan:
— Team.3xploi7.com