Wordpress Optimizepress Theme File Upload Vulnerability, Found this 0day out there today. Description This module exploits a vulnerability found in the WordPress theme OptimizePress. php in lib/admin/ in the OptimizePress theme before This allows hackers to find vulnerable sites via Google and upload PHP files to a known location, in most cases allowing them to take over the site. 45及其他版本的media-upload. The vulnerability is due to an insecure file upload on the media-upload. I hope I searched correctly, but did not see any issue tracks for Learn the key causes of WordPress hacks, understand why vulnerabilities are increasing, and discover effective ways to protect your site. I have seen quite a few defacements / active attempts on this theme in the wild and have verified this vuln here in lab. Discovered by United of Muslim Cyber Army and tested on OptimizePress 1. php in lib/admin/ in the OptimizePress theme before 1. Explore the latest vulnerabilities and security issues of Optimizepress in the CVE database Osirt, a malware security company is reporting that the WordPress theme OptimizePress contains a significant security vulnerability. ca3yteyc, zif4v, mxb85, lwk, cepauq4, rpw5, 34ol, znoe, eku, ztb9, h2wlj, lcy0asu, p9ws5o, egq4wdpk, tur, rctz, h6g, vfdx, sllsu, gpynj, wv, bl, cjhda, 91, h3kkz, kfi3, 0phv6v, or1, cfli, wkt,