#################################################################### # Exploit Title : WordPress ii-commerce Themes Unauthorized File Insertation # Author [ Discovered By ] : KingSkrupellos # Team : Cyberizm Digital Security Army # Date : 06/03/2019 # Vendor Homepage : wordpress.org # Tested On : Windows and Linux # Category : WebApps # Exploit Risk : Medium # Vulnerability Type : CWE-264 - [ Permissions, Privileges, and Access Controls ] # PacketStormSecurity : packetstormsecurity.com/files/authors/13968 # CXSecurity : cxsecurity.com/author/KingSkrupellos/1/ # Exploit4Arab : exploit4arab.org/author/351/KingSkrupellos #################################################################### # Impact : *********** WordPress ii-commerce Themes is prone to an arbitrary file upload vulnerability. An attacker may leverage this issue to upload arbitrary files to the affected computer; this can result in arbitrary code execution within the context of the vulnerable application. Weaknesses in this category are related to the management of permissions, privileges, and other security features that are used to perform access control. #################################################################### # Arbitrary File Upload Exploit : *************************** /wp-content/themes/ii-commerce/js/node_modules/ng-file-upload/demo/war/ #################################################################### # Example Vulnerable Sites : ************************* [+] issuemagazine.com/wp-content/themes/ii-commerce/js/node_modules/ng-file-upload/demo/war/ [+] jwdikkers.com/wp-content/themes/ii-commerce/js/node_modules/ng-file-upload/demo/war/ #################################################################### # Discovered By KingSkrupellos from Cyberizm.Org Digital Security Team ####################################################################