-============================================-
Autore: x0r - Evolution Team
Msn: andry2000@hotmail.it
Cms: Goople Cms 1.7
Bug: Arbitrary File Upload
Download:
http://ovh.dl.sourceforge.net/sourceforge/gooplecms/GoopleCMS_1.7.rar
-============================================-
Exploit:
Logg youself like a normal user, and then go to:
/win/content/upload.php and upload your php shell
after go to: /user/doc/shell.php
Greetz: Amore mio sono 47 giorni che stiamo insieme, 47 giorni
fantastici...sei la mia vita... A + M = L O V E
Ti Amo Bimba Mia... 8\10\2008
# milw0rm.com [2008-11-23]
{"id": "EDB-ID:7197", "hash": "82deab3e7452a50d1eb9e3ee5a30367c", "type": "exploitdb", "bulletinFamily": "exploit", "title": "Goople CMS 1.7 - Remote File Upload Vulnerability", "description": "Goople Cms 1.7 Remote File Upload Vulnerability. Webapps exploit for php platform", "published": "2008-11-23T00:00:00", "modified": "2008-11-23T00:00:00", "cvss": {"score": 0.0, "vector": "NONE"}, "href": "https://www.exploit-db.com/exploits/7197/", "reporter": "x0r", "references": [], "cvelist": [], "lastseen": "2016-02-01T02:37:57", "history": [], "viewCount": 2, "enchantments": {"score": {"value": 0.2, "vector": "NONE", "modified": "2016-02-01T02:37:57"}, "dependencies": {"references": [], "modified": "2016-02-01T02:37:57"}, "vulnersScore": 0.2}, "objectVersion": "1.4", "sourceHref": "https://www.exploit-db.com/download/7197/", "sourceData": "-============================================-\nAutore: x0r - Evolution Team\nMsn: andry2000@hotmail.it\nCms: Goople Cms 1.7\nBug: Arbitrary File Upload\nDownload:\nhttp://ovh.dl.sourceforge.net/sourceforge/gooplecms/GoopleCMS_1.7.rar\n-============================================-\nExploit:\n\nLogg youself like a normal user, and then go to:\n\n/win/content/upload.php and upload your php shell\n\nafter go to: /user/doc/shell.php\n\nGreetz: Amore mio sono 47 giorni che stiamo insieme, 47 giorni\nfantastici...sei la mia vita... A + M = L O V E\n Ti Amo Bimba Mia... 8\\10\\2008\n\n# milw0rm.com [2008-11-23]\n", "osvdbidlist": [], "_object_type": "robots.models.exploitdb.ExploitDbBulletin", "_object_types": ["robots.models.exploitdb.ExploitDbBulletin", "robots.models.base.Bulletin"]}