ASP Dynamika 2.5 File Upload / SQL Injection

2015-12-07T00:00:00
ID PACKETSTORM:134661
Type packetstorm
Reporter indoushka
Modified 2015-12-07T00:00:00

Description

                                        
                                            `Asp Dynamika 2.5 Upload Vulnerability  
=====================================  
Author : indoushka  
Vondor : http://www.dynamika.co.il/dynamikadesign  
Dork : Powered By : Dynamika  
Tested on : windows 8.1 Français V.(Pro)  
============================================================  
  
FCKeditor Upload :  
  
http://www.dynamika.co.il/dynamikadesign/FCKeditor/editor/filemanager/browser/default/browser.html?Type=Image&Connector=connectors/php/connector.php  
  
SQl injection :  
  
http://www.fassuta.muni.il/dynamika/Default.asp?id=3390&newsid=12151 (inject her)  
  
Greetz :   
jericho http://attrition.org & http://www.osvdb.org/ * packetstormsecurity.com * http://is-sec.org/cc/  
Hussin-X * Stake (www.v4-team.com) * D4NB4R * ViRuS_Ra3cH * yasMouh * https://www.corelan.be * exploit4arab.net  
---------------------------------------------------------------------------------------------------------------  
`