API tools faq
paste
Advertisement
KingSkrupellos

WordPress Temaları Güvenlik Açıkları 2014 - 2017

KingSkrupellos
Dec 21st, 2017
297
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 23.23 KB | None | 0 0
raw download clone embed print report
  1. [img]https://s.w.org/about/images/logos/wordpress-logo-stacked-rgb.png[/img]
  2.  
  3. Orjinal Konu Linki => https://www.cyberizm.org/cyberizm-wordpress-temalari-guvenlik-aciklari-2014-2017.html
  4.  
  5. WordPress Temaları Güvenlik Açıkları 2014 - 2017
  6.  
  7. Founded By => KingSkrupellos - Cyberizm Digital Security Team
  8.  
  9. Konu İndirme ve Önizleme Linkleri =>
  10.  
  11. Name Added Title
  12. pinfinity 2017-09-12 Pinfinity Theme <= 1.9.2 - Reflected Cross-site Scripting...
  13. salutation-wp 2017-08-01 Salutation Responsive WordPress + BuddyPress Theme <= 3.0...
  14. javo-spot 2017-02-10 Javo Spot Premium Theme - Unauthenticated Directory Trave...
  15. headway 2016-10-18 Headway Theme <= 3.8.8 - Authenticated Cross-Site Scripti...
  16. neosense 2016-09-20 Neosense Theme <= 1.7 - Unrestricted File Upload
  17. akal 2016-08-22 Akal Theme - Reflected Cross-Site Scripting (XSS)
  18. truemag 2016-04-30 Truemag Theme - Unauthenticated Reflected Cross-Site Scri...
  19. scoreme 2016-04-05 ScoreMe Theme - Unauthenticated Reflected Cross-Site Scri...
  20. beauty-premium 2016-03-11 Beauty & Clean Theme 1.0.8 - Arbitrary File Upload
  21. authentic 2016-03-03 Authentic Theme - Arbitrary File Download
  22. antioch 2016-03-03 Antioch Theme - Arbitrary File Download
  23. goodnews5 2016-02-29 Good News Themes - Reflected Cross-Site Scripting (XSS)
  24. extra 2016-02-18 ElegantThemes - Privilege Escalation
  25. u-design 2015-09-08 uDesign Theme 1.8.0-2.7.9 - DOM Cross-Site Scripting (XSS)
  26. builder 2015-08-03 Builder Theme <= 1.4.0 - PrettyPhoto DOM Cross-Site Scrip...
  27. vernissage 2015-06-26 Multiple Themes - Privilige Escalation
  28. simpolio 2015-06-26 Multiple Themes - Privilige Escalation
  29. teardrop 2015-06-26 Multiple Themes - Privilige Escalation
  30. pont 2015-06-26 Multiple Themes - Privilige Escalation
  31. salem 2015-06-18 Salem Theme <= 1.5.5 - PrettyPhoto DOM Cross-Site Scripti...
  32. salient 2015-06-16 Salient Theme <= 4.9 - DOM Cross-Site Scripting (XSS)
  33. almera 2015-05-27 ThemeMakers Themes - Information Disclosure
  34. Paradise 2015-05-27 ThemeMakers Themes - Information Disclosure
  35. style 2015-05-27 ThemeMakers Themes - Information Disclosure
  36. weddingalbum 2015-05-27 ThemeMakers Themes - Information Disclosure
  37. freely 2015-05-27 ThemeMakers Themes - Information Disclosure
  38. politican__ 2015-05-27 ThemeMakers Themes - Information Disclosure
  39. GamesTheme 2015-05-27 ThemeMakers Themes - Information Disclosure
  40. blessing 2015-05-27 ThemeMakers Themes - Information Disclosure
  41. smartit 2015-05-27 ThemeMakers Themes - Information Disclosure
  42.  
  43. Name Added Title
  44. goodnex 2015-05-27 ThemeMakers Themes - Information Disclosure
  45. cardealer 2015-05-27 ThemeMakers Themes - Information Disclosure
  46. accio 2015-05-27 ThemeMakers Themes - Information Disclosure
  47. axioma 2015-05-27 ThemeMakers Themes - Information Disclosure
  48. diplomat 2015-05-27 ThemeMakers Themes - Information Disclosure
  49. estrutura-basica 2015-05-26 Estrutura-Basica - Local File Download
  50. exquisite-wp 2015-05-12 Exquisite Ultimate Newspaper Theme <= 1.3.3 - DOM Cross-S...
  51. the7 2015-05-04 The7 Premium Theme <= 2.1.0 - Cross-Site Scripting (XSS)
  52. weeklynews 2015-05-04 WeeklyNews Premium Theme <= 2.2 - Cross-Site Scripting (XSS)
  53. digital-store 2015-04-26 Digital Store - Unspecified XSS
  54. shoppette 2015-04-26 Shoppette - Unspecified XSS
  55. quota 2015-04-26 Quota - Unspecified XSS KingSkrupellos
  56. lattice 2015-04-26 Lattice - Unspecified XSS
  57. simplecart 2015-04-21 SimpleCart - File Upload & Execution
  58. qaengine 2015-04-07 QAEngine Theme - Privilege Escalation
  59. designfolio-plus 2015-04-02 DesignFolio Plus Theme <= 1.2 - Arbitrary File Upload
  60. fraction-theme 2015-03-10 Fraction Theme <= 1.1.1 - Privilege Escalation via CSRF
  61. yaaburnee-themes 2015-03-05 Ya'aburnee 1.0.7 - Privilage Escalation
  62. dignitas-themes 2015-03-05 Dignitas 1.1.9 - Privilage Escalation
  63. photocrati-theme-v4 2015-03-02 Photocrati Theme 4.x.x - SQL Injection
  64. wplms 2015-02-09 WPLMS 1.8.4.1 - Privilege Escalation
  65. Divi 2016-02-18 ElegantThemes - Privilege Escalation
  66. holding_pattern 2015-02-09 Holding Pattern Theme <= 0.6 - Arbitrary File Upload
  67. RedSteel 2015-01-28 RedSteel Theme - File Disclosure
  68. quasar 2015-02-22 Quasar Theme Rock Form Builder plugin - Privilege Escalation
  69. newspaper 2017-06-22 Newspaper Theme 6.4–6.7.1 - Privilege Escalation
  70. flashy 2015-03-31 Flashy Theme <= 1.3 - Cross-Site Scripting (XSS)
  71. epic 2016-03-03 epic Theme - Arbitrary File Download
  72. bridge 2017-08-25 Bridge Theme <= 11.1 - DOM Cross-Site Scripting (XSS)
  73. auberge 2015-05-14 Auberge Theme <= 1.4.4 - DOM Cross-Site Scripting (XSS)
  74. Name Added Title
  75. artificial-intelligence 2015-05-19 Artificial Intelligence Theme <= 1.2.3 - DOM Cross-Site S...
  76. twentyfifteen 2015-05-06 Twenty Fifteen Theme <= 1.1 - DOM Cross-Site Scripting (XSS)
  77. modern 2015-05-14 Modern Theme <= 1.4.1 - DOM Cross-Site Scripting (XSS)
  78. esplanade 2015-06-01 Esplanade 1.1.4 - Reflected XSS
  79. custom-community 2015-03-09 Custom Community Theme 2.0 - 2.0.24 - Stored XSS
  80. colorway 2016-07-26 ColorWay <= 3.4.1 - Cross-Site Scripting (XSS)
  81. atahualpa 2017-03-02 Atahualpa Theme - Authenticated Cross-Site Scripting (XSS)
  82. pagelines 2015-01-22 Pagelines Theme <= 1.4.5 - Privilege escalation
  83. platform 2015-01-22 Platform Theme <= 1.6.2 - Privilege Escalation & RCE
  84. platform 2016-11-28 PageLines Platform Theme <= 1.1.4 - Cross-Site Request Fo...
  85. bretheon 2014-09-17 WordPress Slider Revolution Local File Disclosure
  86. bretheon 2015-05-03 WordPress Slider Revolution Shell Upload
  87. soulmedic 2014-09-17 WordPress Slider Revolution Local File Disclosure
  88. soulmedic 2015-05-03 WordPress Slider Revolution Shell Upload KingSkrupellos
  89. seabird 2014-09-17 WordPress Slider Revolution Local File Disclosure
  90. seabird 2015-05-03 WordPress Slider Revolution Shell Upload
  91. manbiz2 2014-09-17 WordPress Slider Revolution Local File Disclosure
  92. manbiz2 2015-05-03 WordPress Slider Revolution Shell Upload
  93. churchope 2014-12-07 ChurcHope Theme Local File Inclusion (LFI)
  94. satoshi 2014-12-06 Satoshi Theme <= 2.0 - File Upload CSRF
  95. showbiz 2014-09-17 WordPress Slider Revolution Local File Disclosure
  96. showbiz 2015-05-03 WordPress Slider Revolution Shell Upload
  97. revslider 2014-09-17 WordPress Slider Revolution Local File Disclosure
  98. revslider 2015-05-03 WordPress Slider Revolution Shell Upload
  99. aries 2014-09-17 WordPress Slider Revolution Local File Disclosure
  100. aries 2015-05-03 WordPress Slider Revolution Shell Upload
  101. trinity 2014-10-06 Trinity - Arbitrary File Download
  102. rt_refraction_wp 2014-10-01 Refraction Theme Multiple Vulnerabilities (XSS, FPD)
  103. refraction 2014-10-01 Refraction Theme Multiple Vulnerabilities (XSS, FPD)
  104. lote27 2014-09-28 lote27 Theme - Arbitrary File Download
  105. NativeChurch 2014-09-28 NativeChurch Theme - Arbitrary File Download
  106. urbancity 2014-09-20 Urban City - download.php Local File Inclusion (LFI)
  107. medicate 2014-09-17 WordPress Slider Revolution Local File Disclosure
  108. medicate 2015-05-03 WordPress Slider Revolution Shell Upload
  109. Centum 2014-09-17 WordPress Slider Revolution Local File Disclosure
  110. Centum 2015-05-03 WordPress Slider Revolution Shell Upload
  111. avada 2014-09-17 WordPress Slider Revolution Local File Disclossure
  112. avada 2015-05-03 WordPress Slider Revolution Shell UploadKingSkrupellos
  113. avada 2017-05-02 Avada Theme <= 5.1.4 - Stored Cross-Site Scripting (XSS) ...
  114. striking_r 2014-09-17 WordPress Slider Revolution Local File Disclosure
  115. striking_r 2015-05-03 WordPress Slider Revolution Shell Upload
  116. beach_apollo 2014-09-17 WordPress Slider Revolution Local File Disclosure
  117. beach_apollo 2015-05-03 WordPress Slider Revolution Shell Upload
  118. IncredibleWP 2014-09-17 WordPress Slider Revolution Local File Disclosure
  119. IncredibleWP 2015-05-03 WordPress Slider Revolution Shell Upload
  120.  
  121. Name Added Title
  122. ultimatum 2014-09-17 WordPress Slider Revolution Local File Disclosure
  123. ultimatum 2015-05-03 WordPress Slider Revolution Shell UploadKingSkrupellos
  124. cakifo 2014-09-17 Cakifo 1.0 - 1.6.1 XSS
  125. scv1 2014-08-01 SCv1 - download.php file Parameter Traversal Remote File ...
  126. magazine-basic 2014-08-01 Magazine Basic - wp-content/themes/magazine-basic/view_ar...
  127. thememin 2014-08-01 Thememin - themify-ajax.php File Upload Arbitrary Code Ex...
  128. wigi 2014-08-01 Wigi - themify-ajax.php File Upload Arbitrary Code Execution
  129. sidepane 2014-08-01 Sidepane - themify-ajax.php File Upload Arbitrary Code Ex...
  130. sixtees 2014-08-01 Sixtees - Shell Upload
  131. linenity 2014-08-01 LineNity 1.20 - download.php imgurl Parameter Remote Path...
  132. wumblr 2014-08-01 Wumblr - themify-ajax.php File Upload Arbitrary Code Exec...
  133. rezo 2014-08-01 Rezo - themify-ajax.php File Upload Arbitrary Code Execution
  134. photobox 2014-08-01 Photobox - themify-ajax.php File Upload Arbitrary Code Ex...
  135. edmin 2014-08-01 Edmin - themify-ajax.php File Upload Arbitrary Code Execu...
  136. koi 2014-08-01 Koi - themify-ajax.php File Upload Arbitrary Code Execution
  137. bizco 2014-08-01 Bizco - themify-ajax.php File Upload Arbitrary Code Execu...
  138. tisa 2014-08-01 Tisa - themify-ajax.php File Upload Arbitrary Code Execution
  139. funki 2014-08-01 Funki - themify-ajax.php File Upload Arbitrary Code Execu...
  140. minblr 2014-08-01 Minblr - themify-ajax.php File Upload Arbitrary Code Exec...
  141. newsy 2014-08-01 Newsy - themify-ajax.php File Upload Arbitrary Code Execu...
  142. responz 2014-08-01 Responz - themify-ajax.php File Upload Arbitrary Code Exe...
  143. simfo 2014-08-01 Simfo - themify-ajax.php File Upload Arbitrary Code Execu...
  144. grido 2014-08-01 Grido - themify-ajax.php File Upload Arbitrary Code Execu...
  145. shopo 2014-08-01 Shopo - themify-ajax.php File Upload Arbitrary Code Execu...
  146. minshop 2014-08-01 Minshop - themify-ajax.php File Upload Arbitrary Code Exe...
  147. notes 2014-08-01 Notes - themify-ajax.php File Upload Arbitrary Code Execu...
  148. shopdock 2014-08-01 Shopdock - themify-ajax.php File Upload Arbitrary Code Ex...
  149. phototouch 2014-08-01 Phototouch - themify-ajax.php File Upload Arbitrary Code ...
  150. slide 2014-08-01 Slide - themify-ajax.php File Upload Arbitrary Code Execu...
  151. postline 2014-08-01 Postline - themify-ajax.php File Upload Arbitrary Code Ex...
  152. fullscreen 2014-08-01 Fulscreen - themify-ajax.php File Upload Arbitrary Code E...
  153.  
  154. Name Added Title
  155. metro 2014-08-01 Metro - themify-ajax.php File Upload Arbitrary Code Execu...
  156. pinshop 2014-08-01 Pinshop - themify-ajax.php File Upload Arbitrary Code Exe...
  157. agency 2014-08-01 Agency - themify-ajax.php File Upload Arbitrary Code Exec...
  158. specialist 2014-08-01 Specialist - Templatic Theme CSRF File Upload
  159. flatshop 2014-08-01 Flatshop - themify-ajax.php File Upload Arbitrary Code Ex...
  160. magazine 2014-08-01 Magazine - themify-ajax.php File Upload Arbitrary Code Ex...
  161. bold 2014-08-01 Bold - themify-ajax.php File Upload Arbitrary Code Execution
  162. thecotton_v114 2014-08-01 The Cotton - Remote File Upload
  163. realestate 2014-08-01 Real Estate - Templatic Theme CSRF File Upload
  164. nightlife 2014-08-01 Nightlife - Templatic Theme CSRF File Upload
  165. 5star 2014-08-01 5star - Templatic Theme CSRF File Upload
  166. simplebalance 2014-08-01 Simple Balance <= 2.2.1 - index.php s Parameter XSS
  167. codilight 2014-08-01 Codilight Premium 1.0.0 - admin/front-end/options.php res...
  168. iloveit 2014-08-01 Love It - XSS / Content Spoofing / Path Disclosure
  169. dandelion 2014-08-01 D&elion - Arbitry File Upload
  170. kiddo 2014-08-01 Kiddo - remote shell upload
  171. myriad 2014-08-01 Myriad 2.0 - dl-skin.php _mysite_delete_skin_zip Paramete...
  172. myriadKingSkrupellos 2014-08-01 Myriad 2.0 - dl-skin.php _mysite_download_skin Parameter ...
  173. myriad 2014-09-17 WordPress Slider Revolution Local File Disclosure
  174. myriad 2015-05-03 WordPress Slider Revolution Shell Upload
  175. construct 2014-08-01 Construct 1.4 - dl-skin.php _mysite_delete_skin_zip Param...
  176. construct 2014-08-01 Construct 1.4 - dl-skin.php _mysite_download_skin Paramet...
  177. construct 2014-09-17 WordPress Slider Revolution Local File Disclosure
  178. construct 2015-05-03 WordPress Slider Revolution Shell Upload
  179. awake 2014-08-01 Awake 3.3 - dl-skin.php _mysite_delete_skin_zip Parameter...
  180. awake 2014-08-01 Awake 3.3 - dl-skin.php _mysite_download_skin Parameter A...
  181. awake 2014-09-17 WordPress Slider Revolution Local File Disclosure
  182. awake 2015-05-03 WordPress Slider Revolution Shell Upload
  183. infocus 2014-08-01 InFocus - Local File Inlusion (LFI)
  184. infocus 2014-08-01 InFocus 3.3 - Local File Inclusion (LFI)
  185. infocus 2014-08-01 Multiple Themes - PrettyPhoto DOM XSS
  186. elegant-grunge 2014-08-01 Elegant Grunge 1.0.3 - s Parameter XSS
  187. fusion 2014-09-17 WordPress Slider Revolution Local File Disclosure
  188. fusion 2015-05-03 WordPress Slider Revolution Shell Upload
  189. dejavu 2014-08-01 DejaVu 2.4 - dl-skin.php _mysite_delete_skin_zip Paramete...
  190. dejavu 2014-08-01 DejaVu 2.4 - dl-skin.php _mysite_download_skin Parameter ...
  191. echelon 2014-08-01 Echelon - media-upload.php Remote File Upload
  192. echelon 2014-08-01 Echelon 2.4 - dl-skin.php _mysite_delete_skin_zip Paramet...
  193. echelon 2014-08-01 Echelon 2.4 - dl-skin.php _mysite_download_skin Parameter...
  194. echelon 2014-09-17 WordPress Slider Revolution Local File Disclosure
  195. echelon 2015-05-03 WordPress Slider Revolution Shell Upload
  196. modular 2014-08-01 Modular 2.4 - dl-skin.php _mysite_delete_skin_zip Paramet...
  197. modular 2014-08-01 Modular 2.4 - dl-skin.php _mysite_download_skin Parameter...
  198. modular 2014-09-17 WordPress Slider Revolution Local File Disclosure
  199. modular 2015-05-03 WordPress Slider Revolution Shell Upload
  200. method 2014-08-01 Method 2.1 - dl-skin.php _mysite_delete_skin_zip Paramete...
  201. method 2014-08-01 Method 2.1 - dl-skin.php _mysite_download_skin Parameter ...
  202. method 2014-09-17 WordPress Slider Revolution Local File Disclosure
  203. method 2015-05-03 WordPress Slider Revolution Shell Upload
  204. cstardesign 2014-08-01 CStar Design 2.0 - flashmoXML.php id Parameter SQL Injection
  205. malmonation 2014-08-01 Malmonation - debate.php id Parameter SQL Injection
  206. lightspeed 2014-08-01 LightSpeed - Valums Uploader Shell Upload Exploit
  207. eptonic 2014-08-01 Eptonic - Valums Uploader Shell Upload Exploit
  208.  
  209. Name Added Title
  210. nuance 2014-08-01 Nuance - Valums Uploader Shell Upload Exploit
  211. blooog 2014-08-01 Blooog 1.1 - jplayer.swf Cross Site Scripting
  212. toolbox 2014-08-01 Toolbox 1.4 - flyer.php mls Parameter SQL Injection
  213. oberliga_theme 2014-08-01 Oberliga - team.php team Parameter SQL Injection
  214. blogfolio 2014-08-01 Blogfolio - themify-ajax.php File Upload Arbitrary Code E...
  215. optimizepress 2014-08-01 OptimizePress - File Upload
  216. make_a_statement 2014-08-01 Make A Statement - CSRF
  217. ithemes2 2014-08-01 iThemes2 - themify-ajax.php File Upload Arbitrary Code Ex...
  218. suco 2014-08-01 Suco - themify-ajax.php File Upload Arbitrary Code Execution
  219. elemin 2014-08-01 Elemin - themify-ajax.php File Upload Arbitrary Code Exec...
  220. folo KingSkrupellos2014-08-01 Folo - themify-ajax.php File Upload Arbitrary Code Execution
  221. folo 2014-08-01 Folo - Cross Site Scripting
  222. bloggie 2014-08-01 Bloggie - themify-ajax.php File Upload Arbitrary Code Exe...
  223. dimension 2014-08-01 Dimension - CSRF
  224. amplus 2014-08-01 Amplus - CSRF
  225. agritourismo-theme 2014-08-01 Agritourismo - Remote File Upload
  226. highlight 2014-08-01 Highlight Powerful Premium - upload-h&ler.php File Upload...
  227. euclid 2014-08-01 Euclid - CSRF
  228. rayoflight-theme 2014-08-01 Ray of Light - Remote File Upload
  229. radial-theme 2014-08-01 Radial - Remote File Upload
  230. oxygen-theme 2014-08-01 Oxygen - Remote File Upload
  231. bulteno-theme 2014-08-01 Bulteno - Remote File Upload
  232. bordeaux-theme 2014-08-01 Bordeaux - Remote File Upload
  233. kernel-theme 2014-08-01 Kernel Theme - functions/upload-h&ler.php File Upload Rem...
  234. rockstar-theme 2014-08-01 Rockstar - Remote File Upload
  235. reganto-theme 2014-08-01 Reganto - Remote File Upload
  236. coldfusion 2014-08-01 Cold Fusion - Arbitrary File Upload
  237. chameleon 2014-08-01 Chameleon - Arbitrary File Upload
  238. amoveo 2014-08-01 Amoveo - Arbitrary File Upload
  239. switchblade 2014-08-01 Switchblade 1.3 - Arbitrary File Upload
  240. magnitudo 2014-08-01 Magnitudo - Arbitrary File Upload
  241.  
  242. Name Added Title
  243. ghost 2014-08-01 Ghost - Arbitrary File Upload
  244. rightnow 2014-08-01 Right Now - Arbitrary File Upload
  245. saico 2014-08-01 Saico - Arbitrary File Upload
  246. thisway 2014-08-01 ThisWay - remote shell upload
  247. thinkresponsive 2014-08-01 Think Responsive 1.0 - Arbitrary shell upload
  248. anthology 2014-08-01 Anthology - Remote File Upload
  249. curvo 2014-08-01 Curvo - wp-content/themes/curvo/functions/upload-h&ler.ph...
  250. moneytheme 2014-08-01 Money - wp-content/themes/MoneyTheme/uploads/upload.php F...
  251. area53 2014-08-01 AREA53 <= 1.0.5 - File Upload Code Execution
  252. sahifa 2014-08-01 Sahifa 2.4.0 - Multiple Script Path Disclosure Direct Req...
  253. sahifa 2014-08-01 Sahifa 2.4.0 - Site Setting Reset CSRF
  254. simpledark 2014-08-01 SimpleDark 1.2.10 - 's' Parameter Cross Site Scripting
  255. geoplaces4 2014-08-01 GeoPlaces - File Upload H&ling Remote Comm& Execution
  256. geoplaces4beta 2014-08-01 GeoPlaces - File Upload H&ling Remote Comm& Execution
  257. imperial-fairytale 2014-08-01 Imperial Fairytale - Multiple Script Direct Request Path ...
  258. imperial-fairytale 2014-08-01 Imperial Fairytale - jPlayer Cross-Site Scripting
  259. feather12 2014-08-01 Feather12 - Multiple Script Direct Request Path Disclosure
  260. studiozen 2014-08-01 Studio Zen - Multiple Script Direct Request Path Disclosure
  261. wplocalplaces 2014-08-01 WPLocalPlaces - File Upload Remote Code Execution
  262. photocrati-theme 2014-08-01 Photocrati Theme 4.7.3 - Reflected Cross-Site Scripting ...
  263. photocrati-theme 2014-08-01 Photocrati Theme - Full Path Disclosure
  264. photocrati-theme 2015-03-02 Photocrati Theme 4.x.x - SQL Injection
  265. music 2014-08-01 Music - Multiple Script Direct Request Path Disclosure
  266. slash-wp 2014-08-01 Slash WP - FPD, XSS & CS vulnerabilities
  267. persuasion 2014-08-01 Multiple Themes - PrettyPhoto DOM XSS
  268. persuasion KingSkrupellos2014-08-01 Persuasion <= 2.4 - dl-skin.php _mysite_delete_skin_zip P...
  269. persuasion 2014-08-01 Persuasion <= 2.4 - dl-skin.php _mysite_download_skin Par...
  270. persuasion 2014-09-17 WordPress Slider Revolution Local File Disclosure
  271. persuasion 2015-05-03 WordPress Slider Revolution Shell Upload
  272. more 2014-08-01 Multiple Themes - PrettyPhoto DOM XSS
  273. silverorchid 2014-08-01 silverOrchid <= 1.5.0 - XSS
  274. caulk 2014-08-01 Caulk - path disclosure
  275. jobroller 2014-08-01 XSS in jobroller theme
  276. ambience 2014-08-01 Xss In wordpress ambience theme
  277. brilliant 2014-08-01 brilliant - File Upload
  278. colormix 2014-08-01 Colormix - Multiple vulnerabilities
  279. allure-real-estate-theme-fo... 2014-08-01 allure-real-estate-theme-for-placester <= 0.1.1 - XSS in ...
  280. allure-real-estate-theme-fo... 2014-08-01 allure-real-estate-theme-for-real-estate <= 0.1.1 - XSS i...
  281.  
  282. Name Added Title
  283. brilliant 2014-08-01 brilliant - File Upload
  284. colormix 2014-08-01 Colormix - Multiple vulnerabilities
  285. pinboard 2014-08-01 Pinboard 1.0.6 - includes/theme-options.php tab Parameter...
  286. pinboard 2014-08-01 Pinboard - themify-ajax.php File Upload Arbitrary Code Ex...
  287. montezuma 2014-08-01 montezuma <= 1.1.3 - XSS in ZeroClipboard.swf
  288. scarlet 2014-08-01 scarlet <= 1.1.3 - XSS in ZeroClipboard.swf
  289. archin 2014-08-01 Archin 3.2 - Cross-Site Scripting & Arbitrary File Upload...
  290. archin 2014-08-01 Archin 3.2 - hades_framework/option_panel/ajax.php Config...
  291. purity 2014-08-01 Purity - Multiple Cross-Site Scripting Vulnerabilities
  292. dt-chocolate 2014-08-01 dt-chocolate - jPlayer XSS
  293. dt-chocolate 2014-08-01 dt-chocolate - Image Open redirect
  294. dt-chocolate 2014-08-01 Multiple vulnerabilities in Chocolate WP theme for WordPress
  295. sandbox 2014-08-01 s&box - Arbitrary File Upload/FD
  296. clockstone 2014-08-01 Clockstone 1.2 - upload.php Arbitrary File Upload
  297. flashnews 2014-08-01 Flash News - Multiple Vulnerabilities
  298. dailydeal 2014-08-01 DailyDeal - File Upload Remote Code Execution
  299. dailydeal 2014-08-01 Dailydeal - Templatic Theme CSRF File Upload
  300. dailyedition 2015-03-09 WooThemes Daily Edition <= 1.6.2 - SQL Injection
  301. dailyedition 2015-03-09 WooThemes Daily Edition <= 1.6.2 - Unrestricted File Upload
  302. dailyedition 2015-03-16 WooThemes Daily Edition <= 1.6.2 - Cross-Site Scripting (...
  303. famous 2014-08-01 Famous 2.0.5 - Shell Upload
  304. deep-blue 2014-08-01 Deep-Blue 1.9.2 - Arbitrary File Upload
  305. classipress 2014-08-01 Classipress <= 3.1.4 - Stored XSS
  306. boldy 2014-08-01 Site5 Wordpress Themes Email Spoofing
  307. simplo 2014-08-01 Site5 Wordpress Themes Email Spoofing
  308. diary 2014-08-01 Site5 Wordpress Themes Email Spoofing
  309. journalcrunch 2014-08-01 Site5 Wordpress Themes Email Spoofing
  310. prosume 2014-08-01 Site5 Wordpress Themes Email Spoofing
  311. colorbold 2014-08-01 KingSkrupellosSite5 Wordpress Themes Email Spoofing
  312. rockwell 2014-08-01 Site5 Wordpress Themes Email Spoofing
  313. xmas 2014-08-01 Site5 Wordpress Themes Email Spoofing
  314. designpile 2014-08-01 Site5 Wordpress Themes Email Spoofing
  315. alltuts 2014-08-01 Site5 Wordpress Themes Email Spoofing
  316. webfolio 2014-08-01 Site5 Wordpress Themes Email Spoofing
  317. expose 2014-08-01 Expose - Unspecified XSS
  318. abundance 2014-08-01 Abundance - Unspecified XSS
  319. eunoia 2014-08-01 Eunoia - Unspecified XSS
  320.  
  321.  
  322. Name Added Title
  323. webfolio 2014-08-01 Site5 Wordpress Themes Email Spoofing
  324. shoutbox 2014-08-01 Shoutbox - Unspecified XSS
  325. velvet 2014-08-01 Velvet - Unspecified XSS
  326. upscale 2014-08-01 Upscale - Unspecified XSS
  327. corona 2014-08-01 Corona - Unspecified XSS
  328. flashlight 2014-08-01 Flashlight - Unspecified XSS
  329. coalition 2014-08-01 Coalition - Unspecified XSS
  330. konzept 2014-08-01 Konzept - Unspecified XSS
  331. konzept 2014-09-19 Konzept 1.0 - Arbitrary File Upload
  332. daisho 2014-08-01 Daisho - Unspecified XSS
  333. choices 2014-08-01 Choices - Unspecified XSS
  334. brightbox 2014-08-01 Brightbox - Unspecified XSS
  335. broadscope 2014-08-01 Broadscope - Unspecified XSS
  336. picturefactory 2014-08-01 PictureFactory - Unspecified XSS
  337. sparky 2014-08-01 Sparky - Unspecified XSS
  338. theagency 2014-08-01 TheAgency - Unspecified XSS
  339. essence 2014-08-01 Essence - Unspecified XSS
  340. paramount 2014-08-01 Paramount - Unspecified XSS
  341. shapeless 2014-08-01 Shapeless - Unspecified XSS
  342. brisk 2014-08-01 Brisk - Unspecified XSS
  343. blaze 2014-08-01 Blaze - Unspecified XSS
  344. eunice 2014-08-01 Eunice - Unspecified XSS
  345. explicit 2014-08-01 Explicit - Unspecified XSS
  346. traject 2014-08-01 Parallelus - Cross-Site Scripting (XSS)
  347. intersect 2014-08-01 Parallelus - Cross-Site Scripting (XSS)
  348. salutation 2014-08-01 Parallelus - Cross-Site Scripting (XSS)
  349. unite 2014-08-01 Parallelus - Cross-Site Scripting (XSS)
  350. ecobiz 2014-08-01 Imediapixel - Cross-Site Scripting (XSS)
  351. shotzz 2014-08-01 Shotzz - Full Path Disclosure
  352. shotzz 2014-08-01 Shotzz - Arbitrary File Upload
  353. shotzz 2014-08-01 Shotzz - Custom Background Shell Upload
  354. dagda 2014-08-01 dagda - Arbitrary File Upload
  355. dagda 2014-08-01 dagda - Custom Background Shell Upload
  356. moneymasters 2014-08-01 moneymasters - Full Path Disclosure
  357. moneymasters 2014-08-01 moneymasters - Arbitrary File Upload
  358.  
  359. Name Added Title
  360. ovum 2014-08-01 Imediapixel - Cross-Site Scripting (XSS)
  361. avanix 2014-08-01 Imediapixel - Cross-Site Scripting (XSS)
  362. ebiz 2014-08-01 Imediapixel - Cross-Site Scripting (XSS)
  363. photolio 2014-08-01 Photolio - VideoJS Cross-Site Scripting
  364. onepagewebsite 2014-08-01 onepagewebsite - Full Path Disclosure
  365. vithy 2014-08-01 vithy - Full Path Disclosure
  366. vithy 2014-08-01 vithy - Arbitrary File Upload
  367. vithy 2014-08-01 KingSkrupellosvithy - Custom Background Shell Upload
  368. appius 2014-08-01 appius - Full Path Disclosure
  369. appius 2014-08-01 appius - Arbitrary File Upload
  370. appius 2014-08-01 appius - Custom Background Shell Upload
  371. yvora 2014-08-01 yvora - Full Path Disclosure
  372. yvora 2014-08-01 yvora - Arbitrary File Upload
  373. crius 2014-08-01 Crius - VideoJS Cross-Site Scripting
  374. source 2014-08-01 Source - VideoJS Cross-Site Scripting
  375. i-love-it 2014-08-01 I Love It - VideoJS Cross-Site Scripting
  376. smartstart 2014-08-01 Smart Start - VideoJS Cross-Site Scripting
  377. covertvideopress 2014-08-01 Covert Videopress - VideoJS Cross-Site Scripting
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!