facebook facebook twitter rss

Wordpress adsense-click-fraud-monitoring plugin - Full Path Disclosure Vulnerability

Author: Tunisia WhiteHat Security , Published: 01-05-2015
###################################################################################



[+] Title: Wordpress adsense-click-fraud-monitoring plugin - Full Path Disclosure Vulnerability


[+] Author: Tunisia WhiteHat Security

[+] Website: www.whitehats.tn


[+] Tested On Windows & Linux



[+] Date: 19/04/2015



[+] Type: Web Application



[+] Download Plugins: https://wordpress.org/plugins/adsense-click-fraud-monitoring/



[+] Home Page: https://wordpress.org

[+] Active Installs: 10,000+


[+] Vulnerability in:

http://localhost/path/wp-content/plugins/adsense-click-fraud-monitoring/phpwhois/testsuite.php


[+] Google Dork : inurl:"/wp-content/plugins/adsense-click-fraud-monitoring/"



###################################################################################



[*] Demos [*]


http://printjobapplication.com/wp-content/plugins/adsense-click-fraud-monitoring/phpwhois/testsuite.php


http://abqmusicscene.com/Musicians/wp-content/plugins/adsense-click-fraud-monitoring/phpwhois/testsuite.php



[*] ./Done :D



# Discovered By: Med Achref Khilifi


# Mail: achref@whitehats.tn



##### Greetz To Whitehats.tn Team & Sec4ever & Fallaga & Anon tn #####

Like us on Facebook :