Here is the published exploit for the Elegance theme in WordPress. This Local File Disclosure proof of concept will read the passwd file of a Linux system.
[+] Post Local File Disclosure in wordpress theme Elegance [+] Date: 07/06/2014 [+] CWE Number: CWE-98 [+] Risk: High [+] Author: Felipe Andrian Peixoto [+] Dork:inurl:"/wp-content/themes/elegance/" [+] Vendor Homepage: http://www.elegantthemes.com/ [+] Contact: [email protected] [+] Tested on: Windows 7 and Linux [+] Vulnerable File: dl-skin.php [+] Exploit :eof
Latest posts by Unallocated Author (see all)
- An Interview With the Creator of BugBountyNotes - October 20, 2018
- SickOS 1.2 – Vulnhub CTF Challenge Walkthrough - October 9, 2018
- Tips How To Recover Deleted Files on Windows PC Free and Easily - October 8, 2018