wordpress exploit
wordpress exploit : 10,000+ websites are vunerable for this attack






wordpress easy comment upload vunerablity




google dork
"inurl:/wp-content/plugins/easy-comment-uploads/upload-form.php"
/wp-content/plugins/easy-comment-uploads/upload-form.php
index of /wp-content/plugins/easy-comment-uploads




open google and enter any dork which given,
now selct any website
and go to this url site.com/wp-content/plugins/easy-comment-uploads/upload-form.php
you'll got upload option here posted image
now upload your deface ....
and check it here site.com/wp-content/uploads/2011/05/yourfilehere




note :- in some websites you can upload your deface in txt on only ... and you can upload shell in 50% sites only ... upload shell in image format ex; shell.asp;.jpg


if there is a tutorial someone would like, please let me know and i will post it here.
good luck!