Here is the published exploit for the Elegance theme in WordPress. This Local File Disclosure proof of concept will read the passwd file of a Linux system.
[+] Post Local File Disclosure in wordpress theme Elegance [+] Date: 07/06/2014 [+] CWE Number: CWE-98 [+] Risk: High [+] Author: Felipe Andrian Peixoto [+] Dork:inurl:"/wp-content/themes/elegance/" [+] Vendor Homepage: http://www.elegantthemes.com/ [+] Contact: [email protected] [+] Tested on: Windows 7 and Linux [+] Vulnerable File: dl-skin.php [+] Exploit :eof
Latest posts by Unallocated Author (see all)
- How to choose a reliable VPN provider for 2019 - January 23, 2019
- How To Ensure Spam Protection And Secure Your Website - January 8, 2019
- Watch Netflix Content From Wherever - December 10, 2018