Lucene search
S.W.A.T.EDB-ID:7456HistoryDec 14, 2008 - 12:00 a.m.
AvailScript Article Script - Arbitrary File Upload
2008-12-1400:00:00
S.W.A.T.
www.exploit-db.com
26
AI Score
7.4
Confidence
Low
[~] Availscript Article Script Remote File Upload Vulnerability
[~]
[~] ----------------------------------------------------------
[~] Discovered By: S.W.A.T. [email protected]
[~]
[~] Home: www.batlagh.com
[~]
[~] Script Page: http://www.availscript.com/article_script.php
[~] -----------------------------------------------------------
Xpl:
1.First Register Into The Site ( link: www.site.com/[path]/signup.php )
2.Login With Your Email & Password
3.After That Go To "Add Pen/Author Name" ( link: www.site.com/[path]/memberarea/addpen.php )
& Write Your Author & Select Your Shell.php like: c99.php
4.Your Shell Will Be Appear In This Folder ( link: www.site.com/[path]/photos/ )
5.Your Shell Will Be Renamed With Random Text like: cc1bd-c99.php
6.Hack The Site ;)
Demo:
http://www.availscript.com/article_script/
[~] Special Thanks To:
Str0ke, All My Friends, Iranian Hackers & All Muslim
# milw0rm.com [2008-12-14]Related
cvelist
cvelist
CVE-2008-6900
2009-08-06 00:00:00
prion
prion
Unrestricted file upload
2009-08-06 00:30:00
cve
cve
CVE-2008-6900
2009-08-06 00:30:00
nvd
nvd
CVE-2008-6900
2009-08-06 00:30:00