WP плагины

WP Security Scan 2.7.1.2
http://wordpress.org/extend/plugins/wp-security-scan/
FPD:

http://[host]/[path_to_wordpress]wp-content/plugins/wp-security-scan/securityscan.php

StatPress 1.4.1
http://wordpress.org/extend/plugins/statpress/
FPD:

http://[host]/[path_to_wordpress]wp-content/plugins/statpress/statpress.php

Dynamic Headers 3.5.3
http://wordpress.org/extend/plugins/dynamic-headers/
FPD:

http://[host]/[path_to_wordpress]wp-content/plugins/dynamic-headers/admin/header.php
http://[host]/[path_to_wordpress]wp-content/plugins/dynamic-headers/admin/main.php
http://[host]/[path_to_wordpress]wp-content/plugins/dynamic-headers/admin/manage.php
http://[host]/[path_to_wordpress]wp-content/plugins/dynamic-headers/admin/options.php
http://[host]/[path_to_wordpress]wp-content/plugins/dynamic-headers/admin/directions.php
http://[host]/[path_to_wordpress]wp-content/plugins/dynamic-headers/admin/about.php
http://[host]/[path_to_wordpress]wp-content/plugins/dynamic-headers/custom-header.php

WP Super Edit 2.3.3
http://wordpress.org/extend/plugins/wp-super-edit/
FPD:

http://[host]/[path_to_wordpress]wp-content/plugins/wp-super-edit/wp-se-emotions.php
http://[host]/[path_to_wordpress]wp-content/plugins/wp-super-edit/wp-super-edit-user.php
http://[host]/[path_to_wordpress]wp-content/plugins/wp-super-edit/wp-super-edit-defaults.php
http://[host]/[path_to_wordpress]wp-content/plugins/wp-super-edit/wp-se-cssclasses.php

WP Wall 1.7
http://wordpress.org/extend/plugins/wp-wall/
FPD:

http://[host]/[path_to_wordpress]wp-content/plugins/wp-wall\recent-comments-widget.php

XSS:

Depends: Active "Allow HTML in comments (use with CAUTION)"
Location: comment field
Ex: <script>alert("XSS o_O");</script>

, , , , ,

Оставить комментарий

Top ↑ | Main page | Back