softpedia-upload.txt

2008-06-03T00:00:00
ID PACKETSTORM:66919
Type packetstorm
Reporter Ciph3r
Modified 2008-06-03T00:00:00

Description

                                        
                                            `###############################################################  
#  
# SiteXS CMS Remote File Upload Vulnerability  
#  
###############################################################  
#  
# Discovered by : Ciph3r  
#  
#  
# E-Mail : Ciph3r_blackhat@yahoo.com  
#  
################################################################  
#  
#   
# CMS: sitexs-0.1.1 CMS ( All Version Vulnerable )   
#   
# Download CMS : http://dfn.dl.sourceforge.net/sourceforge/sitexs/sitexs-0.1.1.tar.gz  
#  
# Sp TANX4 : google.com ; milw0rm.com ; sourceforge.net  
#   
# SP TANX2 : Iranian hacker & Kurdish Security TEAM  
#   
# You Must turn on :  
# register_globals = On  
# register_long_arrays=on  
#   
#  
################################################################  
  
Upload the shell :  
  
http://localhost/[sitexs]/adm/visual/upload.php  
  
  
you for use this exploit . you must your shell file exists in exploit directory  
then excute exploit you find your shell in below link  
  
www.example.com/[sitexs]/images/1.gif.php  
www.example.com/[sitexs]/images/[shell][.php]  
  
:d  
`