970 lines
30 KiB
XML
970 lines
30 KiB
XML
<?xml version="1.0"?>
|
|
|
|
<!--
|
|
WPScan - WordPress Security Scanner
|
|
Copyright (C) 2011 Ryan Dewhurst AKA ethicalhack3r
|
|
|
|
This program is free software: you can redistribute it and/or modify
|
|
it under the terms of the GNU General Public License as published by
|
|
the Free Software Foundation, either version 3 of the License, or
|
|
(at your option) any later version.
|
|
|
|
This program is distributed in the hope that it will be useful,
|
|
but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
GNU General Public License for more details.
|
|
|
|
You should have received a copy of the GNU General Public License
|
|
along with this program. If not, see <http://www.gnu.org/licenses/>.
|
|
|
|
This file contains vulnerabilities associated with WordPress themes.
|
|
TYPE = ["SQLI", "MULTI", "REDIRECT", "RCE", "RFI", "LFI", "UPLOAD", "UNKNOWN", "XSS"]
|
|
|
|
-->
|
|
<themes>
|
|
<theme name="shopperpress">
|
|
<vulnerability>
|
|
<title>ShopperPress WordPress Theme 2.7 Cross Site Scripting</title>
|
|
<reference>http://packetstormsecurity.org/files/115630/</reference>
|
|
<type>XSS</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="wise">
|
|
<vulnerability>
|
|
<title>Site5 Wordpress Themes Email Spoofing</title>
|
|
<reference>http://packetstormsecurity.org/files/114750/</reference>
|
|
<type>UNKNOWN</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="webfolio">
|
|
<vulnerability>
|
|
<title>Site5 Wordpress Themes Email Spoofing</title>
|
|
<reference>http://packetstormsecurity.org/files/114750/</reference>
|
|
<type>UNKNOWN</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="colorbold">
|
|
<vulnerability>
|
|
<title>Site5 Wordpress Themes Email Spoofing</title>
|
|
<reference>http://packetstormsecurity.org/files/114750/</reference>
|
|
<type>UNKNOWN</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="rockwell">
|
|
<vulnerability>
|
|
<title>Site5 Wordpress Themes Email Spoofing</title>
|
|
<reference>http://packetstormsecurity.org/files/114750/</reference>
|
|
<type>UNKNOWN</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="xmas">
|
|
<vulnerability>
|
|
<title>Site5 Wordpress Themes Email Spoofing</title>
|
|
<reference>http://packetstormsecurity.org/files/114750/</reference>
|
|
<type>UNKNOWN</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="designpile">
|
|
<vulnerability>
|
|
<title>Site5 Wordpress Themes Email Spoofing</title>
|
|
<reference>http://packetstormsecurity.org/files/114750/</reference>
|
|
<type>UNKNOWN</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="alltuts">
|
|
<vulnerability>
|
|
<title>Site5 Wordpress Themes Email Spoofing</title>
|
|
<reference>http://packetstormsecurity.org/files/114750/</reference>
|
|
<type>UNKNOWN</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="boldy">
|
|
<vulnerability>
|
|
<title>Site5 Wordpress Themes Email Spoofing</title>
|
|
<reference>http://packetstormsecurity.org/files/114750/</reference>
|
|
<type>UNKNOWN</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="simplo">
|
|
<vulnerability>
|
|
<title>Site5 Wordpress Themes Email Spoofing</title>
|
|
<reference>http://packetstormsecurity.org/files/114750/</reference>
|
|
<type>UNKNOWN</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="diary">
|
|
<vulnerability>
|
|
<title>Site5 Wordpress Themes Email Spoofing</title>
|
|
<reference>http://packetstormsecurity.org/files/114750/</reference>
|
|
<type>UNKNOWN</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="journalcrunch">
|
|
<vulnerability>
|
|
<title>Site5 Wordpress Themes Email Spoofing</title>
|
|
<reference>http://packetstormsecurity.org/files/114750/</reference>
|
|
<type>UNKNOWN</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="prosume">
|
|
<vulnerability>
|
|
<title>Site5 Wordpress Themes Email Spoofing</title>
|
|
<reference>http://packetstormsecurity.org/files/114750/</reference>
|
|
<type>UNKNOWN</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="famous">
|
|
<vulnerability>
|
|
<title>WordPress Famous Theme 2.0.5 Shell Upload</title>
|
|
<reference>http://packetstormsecurity.org/files/113842/</reference>
|
|
<type>UPLOAD</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="deep-blue">
|
|
<vulnerability>
|
|
<title>WordPress Deep-Blue Theme 1.9.2 Arbitrary File Upload Vulnerability</title>
|
|
<reference>http://packetstormsecurity.org/files/113843/</reference>
|
|
<type>UPLOAD</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="classipress">
|
|
<vulnerability>
|
|
<title>WordPress Classipress Theme <= 3.1.4 Stored XSS</title>
|
|
<reference>http://www.exploit-db.com/exploits/18053/</reference>
|
|
<type>XSS</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="merchant">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="smpl">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="drawar">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="sentient">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="whitelight">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="unsigned">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="shelflife">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="olya">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="sliding">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="beveled">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="empire-commerce">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="buro-commerce">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="briefed-commerce">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="wikeasi">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="currents">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="emporium">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="biznizz-commerce">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="kaboodle-commerce">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="inspire-commerce">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="teamster">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="argentum">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="statua-commerce">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="simplicity-commerce">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="canvas-commerce">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="wootique">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="woostore">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="coquette">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="buro">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="swatch">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="announcement">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="empire">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="supportpress">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="editorial">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="statua">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="briefed">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="faultpress">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="kaboodle">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="savinggrace">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="premiere">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="simplicity">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="deliciousmagazine">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="bookclub">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="boldnews">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="placeholder">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="biznizz">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="auld">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="listings">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="elefolio">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="chapters">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="continuum">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="diner">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="skeptical">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="caffeinated">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="crisp">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="sealight">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="estate">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="tma">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="coda">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="inspire">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="apz">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="spectrum">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="diarise">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="boast">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="retreat">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="cityguide">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="canvas">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="postcard">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="delegate">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="mystream">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="optimize">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="backstage">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="bueno">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="digitalfarm">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="headlines">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="therapy">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="rockstar">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="dailyedition">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="object">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="coffeebreak">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="mainstream">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="featurepitch">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="thejournal">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="aperture">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="metamorphosis">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="bloggingstream">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="thestation">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="groovyvideo">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="irresistible">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="cushy">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="wootube">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="abstract">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="busybee">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="blogtheme">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="typebased">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="overeasy">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="snapshot">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="openair">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="freshnews">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="livewire">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="flashnews">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="gazette">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
<theme name="premiumnews">
|
|
<vulnerability>
|
|
<title>WooThemes WooFramework Remote Unauthenticated Shortcode Execution</title>
|
|
<reference>https://gist.github.com/2523147</reference>
|
|
<type>RCE</type>
|
|
</vulnerability>
|
|
</theme>
|
|
|
|
</themes>
|