Hiddenden/beef
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
b5b192591b192b9906e36168bd136757af5ece93
beef/modules/misc/wordpress_post_auth_rce/config.yaml
zinduolis b5b192591b Second round of Copyright date update
2024-12-25 12:43:13 +10:00

16 lines
795 B
YAML
Raw Blame History

#
# Copyright (c) 2006-2025 Wade Alcorn - wade@bindshell.net
# Browser Exploitation Framework (BeEF) - https://beefproject.com
# See the file 'doc/COPYING' for copying permission
#
beef:
module:
wordpress_post_auth_rce:
enable: true
category: "Misc"
name: "Wordpress Post-Auth RCE"
description: "This module attempts to upload and activate a malicious wordpress plugin. Afterwards, the URI to trigger it is: http://vulnerable-wordpress.site/wordpress/wp-content/plugins/beefbind/beefbind.php. The command to execute can be send by a POST-parameter named 'cmd'. CORS headers have been added to allow bidirectional crossorigin communication."
authors: ["Bart Leppens"]
target:
working: ["ALL"]
Reference in New Issue View Git Blame Copy Permalink