[Dyme]

Info and source: https://github.com/Prochainezo/xss2shell

[Oni]

I'm surprised there aren't any replies. Interesting video. I like how you've taken what would normally be a minor vulnerability and turned it into a major one. I don't know a load about Wordpress, but I will be looking at the source. Nice share!

Edit: Lol wowo nice

[Adorapuff]

So if there is an xss on a wordpress theme, executing this via scr="foreginhost.com/out.js" would cause a shell on the wp site?

[Losi]

Props for the filthy frank background song. Good shit Dyme.

[Dyme]

So if there is an xss on a wordpress theme, executing this via scr="foreginhost.com/out.js" would cause a shell on the wp site?

You betcha. Any XSS vulnerability on the site will get you a shell.

[Eclipse]

So this allows you to get a shell from any XSS vulnerability? Seems like not many people have seen it yet. Awesome share!

[Crypt]

Zeekill mentioned something similar (if not the same thing) to this the other day on HF. It had to do with executing php inside the alert box.

Thanks for not being a dick and sharing this with everyone.

[Adorapuff]

Here's some public wordpress vulns that you guys can go through and try and find xss in here. http://www.exploit-db.com/search/?action...filter_cve=

[Eclipse]

Here's some public wordpress vulns that you guys can go through and try and find xss in here. http://www.exploit-db.com/search/?action...filter_cve=

I was going to post just that.

[Alan Turing]

Zeekill mentioned something similar (if not the same thing) to this the other day on HF. It had to do with executing php inside the alert box.

Thanks for not being a dick and sharing this with everyone.

hes on hf again? jeez