all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

How to get a Reverse Shell from any Wordpress ?

Add to bookmarks
March 15, 2023, 12:52 p.m. | Mr Jokar

System Weakness - Medium systemweakness.com

How to get a Reverse Shell from any Wordpress ?

The scenario : We are pentesting a wordpress site & eventually got admin credentials. After logging in, we get an admin dashboard from where we can edit themes or plugins.

From this situation, a proper reverse shell can be gained leveraging what we already have. Let’s talk about this.

STEP 1

First go to Appearance > Editor > 404 Template from the admin dashboard left hand corner.

You will see …

cyber-sec reverse reverse shell shell vulnerability wordpress

Visit resource

More from systemweakness.com / System Weakness - Medium

Clocky | TryHackMe Write-up 14 hours ago | systemweakness.com
ctf ctf-writeup tryhackme tryhackme-walkthrough +1
Bypassing Aquatone’s lack of ability to take screenshots of private websites 14 hours ago | systemweakness.com
automation cybersecurity hacking pentesting +1
Tuesday Morning Threat Report: Apr 30, 2024 14 hours ago | systemweakness.com
analysis artificial intelligence bad customers +21
Staying Anonymous — Ethical Hacking as a Beginner [09] 14 hours ago | systemweakness.com
anonymous beginner communication cybersecurity +22
Safeguarding the Virtual Frontier 14 hours ago | systemweakness.com
awareness click collaboration critical +24
The Ultimate Guide to CISSP’s Eight Security Territories 14 hours ago | systemweakness.com
bug bounty cybersecurity information security information technology +1
Keep your API keys safe (OpenAI, Together AI, etc.) 14 hours ago | systemweakness.com
cybersecurity data science encryption generative-ai-tools +1
Unveiling the World of Wireless Access: A Comprehensive Exploration 14 hours ago | systemweakness.com
access continue cybersecurity devices +13
Crack the Code: A Hacker’s Guide to Hack Home Wi-Fi Network 14 hours ago | systemweakness.com
cybersecurity hacking penetration testing technology +1

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote
View on infosec-jobs.com

Senior Software Engineer, Security

@ Niantic | Zürich, Switzerland
View on infosec-jobs.com

Consultant expert en sécurité des systèmes industriels (H/F)

@ Devoteam | Levallois-Perret, France
View on infosec-jobs.com

Cybersecurity Analyst

@ Bally's | Providence, Rhode Island, United States
View on infosec-jobs.com

Digital Trust Cyber Defense Executive

@ KPMG India | Gurgaon, Haryana, India
View on infosec-jobs.com

Program Manager - Cybersecurity Assessment Services

@ TestPros | Remote (and DMV), DC
View on infosec-jobs.com
View more jobs