allintext:"fs-admin.php"

GHDB-ID:

3668

Author:

anonymous
Published: 2011-01-09

Google Dork Description:

allintext:"fs-admin.php"
Google Search: allintext:"fs-admin.php" 
A foothold using allintext:"fs-admin.php" shows the world readable 

directories of a plug-in that enables Wordpress to be used as a forum. Many 

of the results of the search also show error logs which give an attacker the 

server side paths including the home directory name. This name is often also 

used for the login to ftp and shell access, which exposes the system to 

attack. There is also an undisclosed flaw in version 1.3 of the software, as 

the author has mentioned in version 1.4 as a security fix, but does not tell 

us what it is that was patched.



 

Author: DigiP
Databases Links Sites Solutions
Exploits Search Exploit-DB OffSec Courses and Certifications
Google Hacking Submit Entry Kali Linux Learn Subscriptions
Papers SearchSploit Manual VulnHub OffSec Cyber Range
Shellcodes Exploit Statistics Proving Grounds
Penetration Testing Services
Exploits Google Hacking Papers Shellcodes
Search Exploit-DB Submit Entry SearchSploit Manual Exploit Statistics
OffSec Kali Linux VulnHub
Courses and Certifications Learn Subscriptions OffSec Cyber Range Proving Grounds Penetration Testing Services