wordpress exploit
wordpress exploit : 10,000+ websites are vunerable for this attack

wordpress easy comment upload vunerablity

google dork
index of /wp-content/plugins/easy-comment-uploads

open google and enter any dork which given,
now selct any website
and go to this url site.com/wp-content/plugins/easy-comment-uploads/upload-form.php
you'll got upload option here posted image
now upload your deface ....
and check it here site.com/wp-content/uploads/2011/05/yourfilehere

note :- in some websites you can upload your deface in txt on only ... and you can upload shell in 50% sites only ... upload shell in image format ex; shell.asp;.jpg

if there is a tutorial someone would like, please let me know and i will post it here.
good luck!