ATO of WordPress Website “4 digits €€€€ Bounty in 5 Minute!”

  1. First, I have used waybackurl to find the endpoint of the website.
    The endpoint was /wp-admin/install.php
  2. If you are able to find this endpoint in any WordPress website then click on the Install WordPress button and register your email address.
    (Note: You will get a similar endpoint on many WordPress websites but new registration button/functionality might be disabled on that website.)
  3. Once you registered, you will get a confirmation link to set a new password.
  4. Now Visit https://xyz.com/wp-login.php
  5. Now, login with your registered email address, and Boom! I got access to the admin panel of the WordPress website.

--

--

--

Certified Ethical Hacker with the ambition of becoming an Information Security Penetration Tester/ Analyst. #th3h4ck3rc0p

Love podcasts or audiobooks? Learn on the go with our new app.

Recommended from Medium

Security Due Diligence, What to expect, How to prepare

Introducing Our New Incentivized Testnet: HOPR Säntis

How to Investigate the Jeff Bezos Nude Selfie Scandal and Who is Responsible?

How to Block Referral Spam from Google Analytics

https://t.co/6B6CNd8Y8w

Threats of Ransomware and Mining Malware

UbaraTUTU Airdrop Get 7000000000 TUTU + REF

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Ritesh Gohil

Ritesh Gohil

Certified Ethical Hacker with the ambition of becoming an Information Security Penetration Tester/ Analyst. #th3h4ck3rc0p

More from Medium

Kioptrix Level 1 — VulnHub

Xiaomi Execute Arbitrary JavaScript

Dorking adventures 2

What is OSI Model? How do I make use of it?