Elegance WordPress Theme Local File Disclosure Published

  •  
  •  
  •  
  •  
  •  
  •  
  •  
  •  

Here is the published exploit for the Elegance theme in WordPress. This Local File Disclosure proof of concept will read the passwd file of a Linux system.
 

[+] Post Local File Disclosure in wordpress theme Elegance 
[+] Date: 07/06/2014
[+] CWE Number: CWE-98
[+] Risk: High
[+] Author: Felipe Andrian Peixoto
[+] Dork:inurl:"/wp-content/themes/elegance/"
[+] Vendor Homepage: http://www.elegantthemes.com/
[+] Contact: [email protected]
[+] Tested on: Windows 7 and Linux
[+] Vulnerable File: dl-skin.php
 
[+] Exploit : 
 


Download:
eof
The following two tabs change content below.

Unallocated Author

Please note that the article you are reading has an unallocated author as the original author is no longer employed at latesthackingnews.com, this has been put in place to adhere with general data protection regulations (GDPR). If you have any further queries, please contact: [email protected]

Unallocated Author

Please note that the article you are reading has an unallocated author as the original author is no longer employed at latesthackingnews.com, this has been put in place to adhere with general data protection regulations (GDPR). If you have any further queries, please contact: [email protected]

Leave a Reply