Lucene search
K

SOOP Portal Raven 1.0b - Arbitrary File Upload

🗓️ 07 Dec 2010 00:00:00Reported by Sun ArmyType 
exploitpack
 exploitpack
👁 21 Views

SOOP Portal Raven 1.0b Remote Upload Shell Vulnerability. 1. Register On Site. 2. Shell Renamed to .asp.jpg. 3. Go to specific page for upload. 4. Browse and upload Shell. 5. Select your Shell as Personal Avatar

Code
# Exploit Title: SOOP Portal Raven 1.0b Remote Upload Shell Vulnerability
# Google Dork: "Powered by SOOP Portal Raven 1.0b"
# Date: 06-12-2010
# Author: Sun Army
# Version: Raven 1.0b
# Tested on: Win 2003



##################### Exploit ###################
#      
#    1.Register On Site
#  
#     2.Shell Renamed to .asp.jpg  ( shell.asp.jpg  )
#
#     3.Go This Page  --> http://site/forum/register.asp?fpn=2 
#
#     4. Brows And Upload SHell
#
#      5. go http://site/forum/register.asp?fpn=2    --> List Avatars  --> Your 
Personal 
#            Avatar  --> select your Shell and View shell Address in text box
#
#    
#      Google Dork :   ""Powered by SOOP Portal Raven 1.0b"
#
################################################

#  Reported By Turk_Server

#   Team
#   MagicCoder,Plus,Mehdy007,BodyGuard,Nitrojen26,The-Mostafa

#   KinG,Bl4ckl0rd,Turk_server

#   Special Thanks : Farzad_Ho,R3dMind,rAbiN_hoOd,Falcon

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation