Lucene search
HistoryOct 29, 2007 - 12:00 a.m.
ProfileCMS 1.0 - Arbitrary File Upload
AI Score
7.4
Confidence
Low
ProfileCMS v1.0 Shell Upload Exploit
Demo : http://slrate.com/
You can direct upload PHP shell instead of image while creating profile at this script, For example http://slrate.com/profiles here you can direct upload shell instead of images.
Dorks :
"Total Generators & Widgets"
"Powered By ProfileCMS v1.0"
# milw0rm.com [2007-10-29]Related
prion
prion
Unrestricted file upload
2007-10-30 21:46:00
cve
cve
CVE-2007-5720
2007-10-30 21:46:00
nvd
nvd
CVE-2007-5720
2007-10-30 21:46:00
cvelist
cvelist
CVE-2007-5720
2007-10-30 21:00:00