Erwan erwanlr

## wp_php_object_injection.rb
java_import 'burp.IBurpExtender'
java_import 'burp.IScannerCheck'
java_import 'burp.IScanIssue'

require 'java'
java_import 'java.util.Arrays'
java_import 'java.util.ArrayList'

#
# You will need to download JRuby's Complete.jar file from http://jruby.org/download and configure Burp Extender with its path.

## wordpress2.md

      
              1 file
            
          
              4 forks
            
          
              1 comment
            
          
              7 stars
            
          
                cure53
                / wordpress2.md
            
            
              Last active
              January 8, 2021 17:55
            
              
                WordPress SOME bug in plupload.flash.swf
              
          
    WordPress SOME bug in plupload.flash.swf


Intro
Background
Affected Systems
Mitigation

Quick Overview


## grab_plugins.py
import requests
import json
from requests.packages.urllib3.exceptions import InsecureRequestWarning
requests.packages.urllib3.disable_warnings(InsecureRequestWarning)
session = requests.Session()

http_proxy = "http://192.168.1.130:8085"
proxyDict = {
              "http"  : http_proxy,
              "https" : http_proxy,
	java_import 'burp.IBurpExtender'
	java_import 'burp.IScannerCheck'
	java_import 'burp.IScanIssue'

	require 'java'
	java_import 'java.util.Arrays'
	java_import 'java.util.ArrayList'

	#
	# You will need to download JRuby's Complete.jar file from http://jruby.org/download and configure Burp Extender with its path.
	import requests
	import json
	from requests.packages.urllib3.exceptions import InsecureRequestWarning
	requests.packages.urllib3.disable_warnings(InsecureRequestWarning)
	session = requests.Session()

	http_proxy = "http://192.168.1.130:8085"
	proxyDict = {
	"http" : http_proxy,
	"https" : http_proxy,