pagemanagercms-upload.txt

`================================================================  
Page Manager CMS Remote Arbitrary File Upload Vulnerability  
================================================================  
  
,--^----------,--------,-----,-------^--,  
| ||||||||| `--------' | O .. CWH Underground Hacking Team ..  
`+---------------------------^----------|  
`\_,-------, _________________________|  
/ XXXXXX /`| /  
/ XXXXXX / `\ /  
/ XXXXXX /\______(  
/ XXXXXX /   
/ XXXXXX /  
(________(   
`------'  
  
  
AUTHOR : CWH Underground  
DATE : 25 June 2008  
SITE : www.citec.us  
  
  
#####################################################  
APPLICATION : Page Manager   
VERSION : 2006-02-04  
VENDOR : N/A  
DOWNLOAD : http://downloads.sourceforge.net/pagemanager  
#####################################################  
  
---Arbitrary File Upload Exploit---  
  
This Vulnerability can upload malicious files direct to web server.  
  
[Anonymous Can arbitrary upload]  
  
[+] Upload Path: http://[Target]/[pagemanager_path]/upload.php  
  
[+] Shell Script: http://[Target]/[Evil File]  
  
  
##################################################################  
# Greetz: ZeQ3uL, BAD $ectors, Snapter, Conan, JabAv0C, Win7dos #  
##################################################################  
  
`