Method: Wpxf::Exploit::CharityThemeShellUpload#initialize

Defined in:
lib/wpxf/modules/exploit/shell/charity_theme_shell_upload.rb

#initializeCharityThemeShellUpload

Returns a new instance of CharityThemeShellUpload.



9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
 
# File 'lib/wpxf/modules/exploit/shell/charity_theme_shell_upload.rb', line 9

def initialize
  super

  update_info(
    name: 'Charity Theme Shell Upload',
    desc: 'This module exploits a file upload vulnerability in all versions '\
          'of the Charity theme found in the upload_file.php script '\
          'which contains no session or file validation. It allows '\
          'unauthenticated users to upload files of any type and '\
          'subsequently execute PHP scripts in the context of the '\
          'web server.',
    author: [
      'Divya',     # Vulnerability disclosure
      'rastating'  # WPXF module
    ],
    references: [
      ['EDB', '36611']
    ],
    date: 'April 02 2015'
  )
end