PT-2025-50062

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AndonDesign UDesign Core u-design-core allows PHP Local File Inclusion.This issue affects UDesign Core: from n/a through = 4.14.0...

WordPress Themes U-design File Upload Vulnerability

WordPress is a set of WordPress Software Foundation's blogging platform developed using the PHP language, which supports personal blog sites on servers with PHP and MySQL. A file upload vulnerability exists in WordPress Themes U-design, which can be exploited by an attacker to upload arbitrary...

WordPress U-Design Theme 2.7.9 Cross Site Scripting Vulnerability

WordPress U-Design theme versions 2.3.0 through 2.7.9 suffer from a cross site scripting vulnerability. u-desing is a wordpress theme prone to DOM XSS vulnerability. Vendor url: http://themeforest.net/item/udesign-responsive-wordpress-theme/253220 versions between 2.7.9 – Updated: 08.05.2015 and...

Wordpress Theme U-Design Arbitrary File Download Vulnerability

Exploit for php platform in category web applications Exploit Title: Wordpress Theme U-Design Arbitrary File Download Vulnerability Date: 18/01/2015 Exploit Author: t3rr0rist - GHC Georgian Hacking Community team Contact : email protected Tested on: Linux Google Dork:...