Found a Bug in Wordpress 2.9.1
by tmac on Feb.06, 2010, under Hacks
I found this after I published a post for the future.
I don’t know how much you guys know about Wordpress, the main thing I want you to know is that PlayStation and Ebay use it.
Imagine if you could find out something that PlayStation was going to release before they announced it? Lets take the example of Apple annoucing the Ipad. It would make alot of sense for them to write the article first and have it so that it publishes itself when they are giving the talk at whatever conference they did. What if you could see the title of this document before hand.
Using simple URL bruteforcing you can. There are a number of different options in Wordpress that you can use for your URL “Permalinks” I just use ?p=153 meaning I guess post=(number). You can however use variations of dates, numbers or create you own.
I have just created a post which isn’t going to be released until next year take a look at http://tmacuk.co.uk/?p=153 – Look at the top of your browser and you can see the title of the post that I have made 
Imagine finding out about the PlayStation 4 :S
tmacuk
4 Comments for this entry
2 Trackbacks / Pingbacks for this entry
-
Found a Bug in Wordpress 2.9.1 « tmacuk | Wordpress Marketing
February 7th, 2010 on 1:25 pm[...] Visit link: Found a Bug in Wordpress 2.9.1 « tmacuk [...]
-
bruteforcing
March 6th, 2010 on 10:45 pm[...] psyb0t, is the first known botnet based on exploiting consumer network devices, such as home …Found a Bug in Wordpress 2.9.1 tmacukby tmac on Feb.06, 2010, under Hacks. I found this after I published a post for the future. I don't [...]
Leave a Reply
-
Welcome to tmacuk
Thanks for dropping by! Feel free to join the discussion by leaving comments, and stay updated by subscribing to the RSS feed.
You can also subscribe by email by filling the field below:
tmacuk's twitter- @dh3ws0n im not good enough for group runs yet mate :D @masontech will be like an army officer getting me fit haha!
- @Webantix that will be me next week :D @the_real_jb
- @masontech did a mile jog last night :D
- @iCode86 not to far from us then?
- after the delay, and hopefully this one tiny problem that we have to resolve today... @upSploit will be going live!
- @kevinmitnick i could do with one of those if your giving them away :D pllllleeeaasssseeeeee
- @matthewhughes come to mine mate
- @dive_monkey yeah man saw it mint, need to talk about that quickly when you can on skype though :)
- @_wirespeed_ good because its an extra protection... mod_security is a good on... and dont ask for experiences :( @masontech can tell you
- @dive_monkey haha, nice one :D
February 6th, 2010 on 11:44 pm
Nice find!
$ python WordPressPostBrute.py
Found! Request: http://tmacuk.co.uk/?p=26
Found! Request: http://tmacuk.co.uk/?p=75
Found! Request: http://tmacuk.co.uk/?p=124
Found! Request: http://tmacuk.co.uk/?p=132
Found! Request: http://tmacuk.co.uk/?p=153
>:)
February 6th, 2010 on 11:59 pm
P.S.
/?p={int} works even if you have chosen another type of URL format.
February 7th, 2010 on 12:08 pm
I’m not seeing this bug myself…where should I see the post title?
March 4th, 2010 on 11:24 pm
Hey, I appreciate the help! The site I have here is my first one based off of Wordpress but it’s kind of overwhelming… I feel like I’m drowning in a sea of options and themes and plugins! But you can totally see the power. I guess it shouldn’t take this long to setup next time either. Anyway… slick site – I’m subscribed to your feed now so thanks again!