Description: This is a CSRF bug in the myftp plugin for wordpress, that can be used to get a shell. This has been reported to wordpress, and they removed it from the plugin repository.
More about this bug here: http://webstersprodigy.net/2012/03/shells-from-clientside-attacks/
Tags: wordpress , security , myftp , csrf , php , meterpreter ,
Disclaimer: We are a infosec video aggregator and this video is linked from an external website. The original author may be different from the user re-posting/linking it here. Please do not assume the authors to be same without verifying.