Google Search: inurl:wp-login.php +Register Username Password “remember me” -echo -trac -footwear
rgod rates this entry 8 out of 10.
Submitted: 2006-05-30 00:00:00
Added by: rgod
this is a bit different from the previous one in GHDB, it searches for WordPress 2.x sites where user registration is enabled, a user can inject a carriage return and php code inside cache files to have a shell on target systemadvisory & poc exploit here: http://retrogod.altervista.org/wordpress_202_xpl.html