CVE-2014-10396

The epic theme through 2014-09-07 for WordPress allows arbitrary file downloads via the file parameter to includes/download.php...

CVE-2014-10396

The CVE-2014-10396 entry corresponds to a vulnerability in the Epic WordPress theme (prior to fix date not provided in the documents) that allows arbitrary file downloads through the file parameter to includes/download.php. Affected component: Epic WordPress theme; vulnerability type: arbitrary f...

WordPress Epic Arbitrary File Download Vulnerability

WordPress Epic theme suffers from an arbitrary file download vulnerability. Note that this finding houses site-specific data. |||||||||||||||||||||||||||||||||||||||||||||||||| |-------------------------------------------------------------------------| | Exploit Title: Wordpress epic theme...

WordPress Epic Theme - Arbitrary File Download

Epic theme's "download.php" is prone to an arbitrary file download vulnerability. It allows an attacker to download arbitrary files from the web server and get potentially sensitive information. Solution Update the theme...

WordPress Epic Arbitrary File Download

|||||||||||||||||||||||||||||||||||||||||||||||||| |-------------------------------------------------------------------------| | Exploit Title: Wordpress epic theme Arbitrary File Download Vulnerability | | Google Dork: inurl:wp-content/themes/epic | | Date : Date: 2014-09-07 | | Exploit Author:...