1337爆出个Wordpress全版本爆路径漏洞，某大黑一来就想溢出我，把我给吓尿了……我求求你不要溢出我的小站，各位大黑阔手下留情刀下留人管下留撸。。

全版本https://ha.cker.in/wp-includes/registration-functions.php

我也发几个，Wordpress爆路径

    /wp-includes/rss.php
    /wp-includes/rss-functions.php
    /wp-includes/shortcodes.php
    wp-includes/taxonomy.php
    /wp-includes/script-loader.php

例子
http://www.wordpress-fr.net/wp-includes/rss.php
http://www.jinxiaoblog.com/wp-includes/rss.php
http://www.vibethemes.com/wp-includes/rss.php
http://www.wordpress-fr.net/wp-includes/shortcodes.php
http://www.wordpress-fr.net/wp-includes/script-loader.php

随便测试了几个大牛. 基本都中枪.

http://blog.gentilkiwi.com/wp-includes/rss.php
http://www.0x50sec.org/wp-includes/rss-functions.php
http://www.dis9.com/wp-includes/shortcodes.php
http://madman.in/wp-includes/script-loader.php
http://www.tzsec.net/wp-includes/taxonomy.php
http://www.secreader.com/wp-includes/rss.php

无图无真相,我加点图好了。