Wordpress Templatic Themes CSRF

Add http://1337day.com/exploit/22091 Couldn't verify myself because themes are paid, but files seem to exist and are possibly vulnerable.
2014-04-07 12:07:13 +12:00
parent 2f6e4c0736
commit de2cb08a6b
1 changed files with 51 additions and 0 deletions
--- a/data/theme_vulns.xml
+++ b/data/theme_vulns.xml
@@ -3028,5 +3028,56 @@
      <type>UPLOAD</type>
    </vulnerability>
  </theme>
+  
+  <theme name="Realestate">
+    <vulnerability>
+        <title>Wordpress Templatic Themes CSRF File Upload Vulnerability</title>
+        <references>
+            <url>http://1337day.com/exploit/22091</url>
+        </references>
+        <type>CSRF</type>
+    </vulnerability>
+</theme>
+
+<theme name="dailydeal">
+    <vulnerability>
+        <title>Wordpress Templatic Themes CSRF File Upload Vulnerability</title>
+        <references>
+            <url>http://1337day.com/exploit/22091</url>
+        </references>
+        <type>CSRF</type>
+    </vulnerability>
+</theme>
+
+<theme name="nightlife">
+    <vulnerability>
+        <title>Wordpress Templatic Themes CSRF File Upload Vulnerability</title>
+        <references>
+            <url>http://1337day.com/exploit/22091</url>
+        </references>
+        <type>CSRF</type>
+    </vulnerability>
+</theme>
+
+<theme name="5star">
+    <vulnerability>
+        <title>Wordpress Templatic Themes CSRF File Upload Vulnerability</title>
+        <references>
+            <url>http://1337day.com/exploit/22091</url>
+        </references>
+        <type>CSRF</type>
+    </vulnerability>
+</theme>
+
+<theme name="specialist">
+    <vulnerability>
+        <title>Wordpress Templatic Themes CSRF File Upload Vulnerability</title>
+        <references>
+            <url>http://1337day.com/exploit/22091</url>
+        </references>
+        <type>CSRF</type>
+    </vulnerability>
+</theme>
+

 </vulnerabilities>