what you don't know can hurt you

Register | Login

FilesNewsUsersAuthors

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 3 of 3

Files from g0blin

WordPress WPshop eCommerce 1.3.9.5 Shell Upload

Posted Apr 24, 2015

Authored by g0blin | Site metasploit.com

This Metasploit module exploits an arbitrary file upload in the WordPress WPshop eCommerce plugin versions 1.3.3.3 to 1.3.9.5. It allows you to upload arbitrary PHP code and get remote code execution. This Metasploit module has been tested successfully on WordPress WPshop eCommerce 1.3.9.5 with WordPress 4.1.3 on Ubuntu 14.04 Server.

tags | exploit, remote, arbitrary, php, code execution, file upload

systems | linux, ubuntu

SHA-256 | f619d802b93d34eebff17a8861709268616692a3263b82947bee155839965331

Download | Favorite | View

Wordpress InfusionSoft Shell Upload

Posted Mar 24, 2015

Authored by us3r777, g0blin | Site metasploit.com

This Metasploit module exploits an arbitrary PHP code upload in the WordPress Infusionsoft Gravity Forms plugin, versions from 1.5.3 to 1.5.10. The vulnerability allows for arbitrary file upload and remote code execution.

tags | exploit, remote, arbitrary, php, code execution, file upload

advisories | CVE-2014-6446

SHA-256 | 2b7754496960422648fd53d44f7c5f663f40d4e64906b1d967c380e682afd7da

Download | Favorite | View

Wordpress InfusionSoft Upload

Posted Oct 9, 2014

Authored by us3r777, g0blin | Site metasploit.com

This Metasploit module exploits an arbitrary PHP code upload in the wordpress Infusionsoft Gravity Forms plugin, versions from 1.5.3 to 1.5.10. The vulnerability allows for arbitrary file upload and remote code execution.

tags | exploit, remote, arbitrary, php, code execution, file upload

advisories | CVE-2014-6446

SHA-256 | bacb9cda0dca5ce55e62347a30c31a677409efc130e924388acca709285381ad

Download | Favorite | View