Among the best exploits on wordpress now is wordpress revslider LFI
this exploit allow us to dowload config of site
that u can connect database and change the admin user and pass infos
and login on DashBoard site.**/wp-login.php and upload shell ...
i coded tool on PHP can scaning sites a mass scan and get just important info from config like
db-user , db-pass , db-host and db-name
Link : Here
.png)
EmoticonEmoticon