Added Valums Uploader Shell Upload in 3 premium themes

2013-12-27 09:40:18 +00:00
parent 84f6894bc4
commit 856944e463
1 changed files with 32 additions and 1 deletions
--- a/data/theme_vulns.xml
+++ b/data/theme_vulns.xml
@@ -2074,7 +2074,6 @@
        <exploitdb>29068</exploitdb>
        <url>http://www.securityfocus.com/bid/63306</url>
        <url>http://1337day.com/exploit/21442</url>
-        <url>http://themeforest.net/item/area53-a-responsive-html5-wordpress-theme/2538737</url>
      </references>
      <type>RCE</type>
    </vulnerability>
@@ -2603,4 +2602,36 @@
    </vulnerability>
  </theme>

+  <theme name="lightspeed">
+    <vulnerability>
+      <title>LightSpeed - Valums Uploader Shell Upload Exploit</title>
+      <references>
+        <url>http://packetstormsecurity.com/files/119241/</url>
+      </references>
+      <type>UPLOAD</type>
+    </vulnerability>
+  </theme>
+
+  <!-- Tested with v1.4, other versions might be vulnerable -->
+  <theme name="eptonic">
+    <vulnerability>
+      <title>Eptonic - Valums Uploader Shell Upload Exploit</title>
+      <references>
+        <url>http://packetstormsecurity.com/files/119241/</url>
+      </references>
+      <type>UPLOAD</type>
+    </vulnerability>
+  </theme>
+
+  <!-- Tested with v1.0, other versions might be vulnerable -->
+  <theme name="nuance">
+    <vulnerability>
+      <title>Nuance - Valums Uploader Shell Upload Exploit</title>
+      <references>
+        <url>http://packetstormsecurity.com/files/119241/</url>
+      </references>
+      <type>UPLOAD</type>
+    </vulnerability>
+  </theme>
+
 </vulnerabilities>