WordPress TimThumb Exploit (Remote Code Execution)
March 3rd, 2013 by admin
Blog Entry: security-obscurity.blogspot.com Twitter: twitter.com Download Backbox: backbox.org Music from: audionautix.com Disclamer This video is made for fun and educational purpose only.
Written by - Visit WebsitePosted in Wordpress Tutorial Videos
March 3rd, 2013 at 5:58 pm
yes…Another great? WordPress course. Users will love your next video…
March 3rd, 2013 at 5:58 pm
yes.?
March 3rd, 2013 at 5:58 pm
can we do this via backtrack? ?
March 3rd, 2013 at 5:58 pm
when it comes to mobile web design, free wordpress plugins do their job better than anything. I demonstrated one of those on my latest video on my? channel. Don’t get scammed by marketers who try to sell you their highly-priced plugins when there are free alternatives. just check it out: ==> /watch?v=iMqz_kv-UUI <– or? click on my username to watch it
March 3rd, 2013 at 5:58 pm
So good?
March 3rd, 2013 at 5:58 pm
more no0b? friendly video here watch?v=ODmBGd_vebE
March 3rd, 2013 at 5:58 pm
Your method was nice but was a little sophisticated and you dont need a valid image or any image for this vulnerability.
echo<<<asd
\x3C\x3F\x70\x68\x70\x20\x70\x68\x70\x69\x6E\x66\x6F\x28\x29\x3B\x20\x3F\x3E
asd;
save the? above in php tags as a php file and just include it like in video and you will get the phpinfo. Use your imagination and replace the shellcode
March 3rd, 2013 at 5:58 pm
r57.gen.tr?
March 3rd, 2013 at 5:58 pm
plz…. where download shell? r57_base64.php
thx 🙂
March 3rd, 2013 at 5:58 pm
You? use fakeflickr
March 3rd, 2013 at 5:58 pm
wordpress, flikr,? picasa, etc
March 3rd, 2013 at 5:58 pm
What do you mean with “valid url”? ?
March 3rd, 2013 at 5:58 pm
nice… how upload the file to a valid? url?
March 3rd, 2013 at 5:58 pm
great loop song?
March 3rd, 2013 at 5:58 pm
g00d?
March 3rd, 2013 at 5:58 pm
very good,? you’ve just gave me few ideas 😀
March 3rd, 2013 at 5:58 pm
hhh that’s gùùd broo congractulation ! i was watin just to see? the shell on the website =)) thumbs up 5 stars
March 3rd, 2013 at 5:58 pm
Thank you alexz :)?
March 3rd, 2013 at 5:58 pm
that? was epic! +