WordPress Multi Themes Arbitrary File Download Vulnerability

Published:2016.08.23
Risk:High

WordPress Multi Themes文件下载漏洞

Exploit Title : WordPress Multi Themes Arbitrary File Download Vulnerability
Exploit Author : xBADGIRL21
Dork : wp-content/themes/ /lib/scripts/
Tested on: [ BackBox ]
skype:xbadgirl21
Date: 22/08/2016
video Proof : https://youtu.be/DFtF14_ShHk
Myblog : http://xbadgirl21.blogspot.com/

# [+] DESCRIPTION :
######################
# [+] WordPress Multi Themes Arbitrary File Download iT's an Exploit Allow Attackers to Download
# [+] Files From Your Website and The Vulnerable File is : dl-skin.php
# [+] so Any Theme WordPress Has This File Then he is Potentially Vulnerable

USAGE :

  1. Use Dork Above [ok] +
  2. Download Exploit File Edit it [ok] +
  3. Edit: http://localhost/wp-content/themes/bonkersbeat/lib/scripts/dl-skin.php [ok] +
  4. Edit: the value you want To Download [ok] +
  5. Run Exploit +

# [+] Exploit:

# [+] Live Demo :
######################
# http://www.bonkersbeat.com/wp-content/themes/bonkersbeat/lib/scripts/dl-skin.php
# http://www.aemdum.ca/test/wp-content/themes/method/lib/scripts/dl-skin.php
# http://www.tumct.org/wp-content/themes/awake/lib/scripts/dl-skin.php
# Discovered by : xBADGIRL21
# Greetz : All Mauritanien Hackers - NoWhere

### Note ### : Themes Vuln
#######################
# Vuln themes not all : https://ghostbin.com/paste/yg36k