Il mondo visto con gli occhi di un Pinguino ^^
gennaio 9, 2008 in Hacking, Sicurezza
Proof of Concept
EDIT: It works only in blogs where you can register a user, because you have to know the wp_once value
Comments feed for this article
gennaio 10, 2008 a 7:57 am
oy where does one compile this per say? i’m used to batch files so im lost with it, email me back? k thnx for the help,
gennaio 10, 2008 a 4:22 pm
it’s an HTML file.
You can create a fake page about something and in the bottom of it put this code
then create a file called file.html with my code (modified with your email and the victimsite).
you have to contact the victim admin and with some social engineering make that he visit this page…
then the email address of his WP profile will change in your email.
You can click on “I lost my password” in wp-admin and you will receive the admin password in your mailbox😉
(don’t be lamah!)
gennaio 11, 2008 a 6:10 am
mmm see i was looking at it like wtf?
btw, in youre opion python, worth learning or not?
gennaio 11, 2008 a 3:26 pm
YeaH!! i think python is really a good language😉
gennaio 12, 2008 a 6:18 am
any ideas where to look for a basic overview of commands and such, how it works etc?
gennaio 12, 2008 a 1:21 pm
here you are…
gennaio 13, 2008 a 3:57 am
interesting stuff but im talking just a basic HOW TO for python, altho thats some damned interesting stuff,
gennaio 13, 2008 a 11:38 am
oh sorry!! i thought you were talking about wordpress and csrf…
about python here tou can find a lot of how-to http://www.python.org/doc/
from beginners to pros
it’s very good!
gennaio 16, 2008 a 3:57 am
thnx man much obliged,
btw, you hear the new mac stuff?
gennaio 16, 2008 a 3:37 pm
I’m reading now the apple site…
the new Macbook Air is very cool!!!
gennaio 17, 2008 a 8:43 am
oh yes very nice, im so getting one,
gennaio 17, 2008 a 4:25 pm
i think it doesn’t worth all that money…it’s only design and trend
i like it…but i think i’ll never buy it
althought i’m very proud of my macbook🙂
Inserisci i tuoi dati qui sotto o clicca su un'icona per effettuare l'accesso:
Stai commentando usando il tuo account WordPress.com. ( Chiudi sessione / Modifica )
Stai commentando usando il tuo account Twitter. ( Chiudi sessione / Modifica )
Stai commentando usando il tuo account Facebook. ( Chiudi sessione / Modifica )
Stai commentando usando il tuo account Google+. ( Chiudi sessione / Modifica )
Connessione a %s...
Notificami nuovi commenti via e-mail
Blog su WordPress.com.Ben Eastaugh and Chris Sternal-Johnson.
Subscribe to feed.