Local file inclusion bug due to no sanitization of user input.
- Wordpress Plugin: Site-Editor v.1.1.1;
This PowerShell scripts need two parameters to craft a exploit HTTP request:
1. Wordpress URL endpoint
2. A full path file to be retrieved in remote server
Prepare all the parameters to use the script:
Then file is retrieved.
Code author: @_zc00l