WordPress Smallbiz Themes Remote File Uploads Vulnerability
#- Title: Wordpress Smallbiz Themes Remote File Uploads Vulnerability
#- Author: FullSecurity.org
#- Date: 09-02-2016
#- Developer : expand2web.com
#- Link Download : www.expand2web.com/smallbiz-theme/
#- Google Dork: inurl:"/themes/smallbiz/"
#- Fixed in Version : -
#- Tested on : Wessel
=======================================================
-- Proof Of Concept --
Vulnerability : site/wp-content/themes/smallbiz/palette/index.php
require("cpg.php");
if( $_GET['image'] ) // selected image from bookmark or get form
$file = $_GET['image'];
if( $_FILES['userfile']['tmp_name'] ) // Upload detected captain!
handle_upload();When Vulnerable :
Method :
1. Go to site.com/wp-content/themes/smallbiz/palette/index.php
2. Upload your image
3. if succes, click image & open in new tab
![PayPal Valid Email Checker [ Fresh ]](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjw2hirazgCSjnRiI2pxJi1EIRtT55i5R5r0HV0MRZIQeM_ae8SDaA4RZZiSiHUAyGWfNG7LPSGht2vJ8iuPndIUVWI1KG8nJI9WbSQz7frr58CZXA2ct06MfLacGWr3ZzxUZNBDLV_FPqN/s72-c/11174309_801920939904995_5687906876809212415_o.jpg)
Post a Comment