Multiple WordPress Orange Themes - Cross-Site Request Forgery (Arbitrary File Upload)

Title : Wordpress Orange Themes CSRF File Upload Vulnerability Author : Jje Incovers Date : 01/12/2013 - 17 November 2013 Category : Web Applications Type : PHP Vendor : http://www.orange-themes.com/ Download : http://www.orange-themes.com/portfolio/ Tested : Mozila, Chrome, Opera - Windows & Lin...