WordPress Dailyedition-mouss theme suffers from a remote SQL injection vulnerability. Note that this finding houses site-specific data.
e3b6e86eb2c0347606edadc71a935b17a5439f47d2053f6412d3576c51d782ff
((|))((|)) ((|)) |)| (|)| |)
((|)) ***********************
((|)) *********************
* ((|)) * *
*0* ((|)) * In the name of GOD *
* ((|)) * *
-|- ((|)) *******************
| ((|)) *********
((|))((|))((|))################((|))########################((|))
# Exploit Title: Wordpress Dailyedition-mouss Theme ((|))
# SQL Injection Vulnerability ((|))
# Google Dork: inurl:/dailyedition-mouss/fiche-disque.php #
# Exploit Author: Ashiyane Digital Security Team #
# Category: Web Application #
# Tested on: Windows 7 #
###############################((|))#############################
#******************************((|))****************************#
#* Location: http://site.com/wp-content/ #
#* /themes/dailyedition-mouss/ #
#* fiche-disque.php?id=[SQLi] #
#* Demo: http://hotnewrap.net/wp-content/plugins/ #
#* dailyedition-mouss/fiche-disque.php?id=null' #
#******************************((|))****************************#
#******************************((|))****************************#
#******************************((|))****************************#
#* ***************** #
#* * * #
#* Greetz to: * My lord ALLAH * #
#* * * #
#* ***************** #
#* **((|))** #
#* Sp Tnx To: Muslims From All Over The World #
#* Behrooz_Ice,Q7X,Ali_Eagle,Azazel,iman_taktaz,sha2ow,,ERroR #
#* 0x21HATE,A.S.P.I.R.I.N,am118,Angel--D3m0n,angola,AR455,Azad #
#* Black-Hole,Classic,Encoder,HASSAN20,HidDeEn,hossein19123 #
#* jooooondost,Kaz3m,ll_Invisible_ll,majidflash,megacpu #
#* MehrdadLinux,Milad-Bushehr,MostafaBestMan,MR.SAMAN,Mute,N4H #
#* Pr0grammer,PrinceofHacking,Rizux,Rz04,S!YOU.T4r.6T,Sil3nt Di3#
#* The Smith,unique2world,Unline,V!T0N,X-HIDDEN-X ((|)) #
#* Crypt0,khatarnak,Milad22,MR.Vinci,Pirjo,V1R4N64R * ((|)) * #
#* And All Of My Friends -|- ((|)) -|-#
#* The Last One : My Self, Milwar /|\ ((|)) /|\#
((|))*********************************************((|))((|))((|))
((|))#############################################((|))((|))((|))
((|)) ((|)) ((|))((|))((|))