Elegance WordPress Theme Local File Disclosure Published

Share if you likedShare on Facebook0Share on Google+0Tweet about this on TwitterShare on LinkedIn0

Here is the published exploit for the Elegance theme in WordPress. This Local File Disclosure proof of concept will read the passwd file of a Linux system.
 

[+] Post Local File Disclosure in wordpress theme Elegance 
[+] Date: 07/06/2014
[+] CWE Number: CWE-98
[+] Risk: High
[+] Author: Felipe Andrian Peixoto
[+] Dork:inurl:"/wp-content/themes/elegance/"
[+] Vendor Homepage: http://www.elegantthemes.com/
[+] Contact: [email protected]
[+] Tested on: Windows 7 and Linux
[+] Vulnerable File: dl-skin.php
 
[+] Exploit : 
 


Download:
eof
Share if you likedShare on Facebook0Share on Google+0Tweet about this on TwitterShare on LinkedIn0

Leave a Reply