######################
# Exploit Title : Wordpress wp-construction-mode.1.8 Cross Site Scripting
# Exploit Author : Ashiyane Digital Security Team
# Vendor Homepage : http://wordpress.org/plugins/wp-construction-mode
# Software Link :
http://downloads.wordpress.org/plugin/wp-construction-mode.1.8.zip
# Date : 2014-06-27
# Tested on : Windows 7 / Mozilla Firefox
######################
# Location : http://localhost/wp-admin/admin.php?page=under-construction.php
######################
# Vulnerable code :
|
|
######################
Exploit Code:
#####################
Discovered By : ACC3SS
#####################