FileExecutive v1.0.0 Multiple Vulnerabilities

2010-02-26T00:00:00
ID 1337DAY-ID-11097
Type zdt
Reporter ViRuSMaN
Modified 2010-02-26T00:00:00

Description

Exploit for unknown platform in category web applications

                                        
                                            =============================================
FileExecutive v1.0.0 Multiple Vulnerabilities
=============================================

==============================================================================
        [»] FileExecutive Multiple Vulnerabilities
==============================================================================

    [»] Script:             [ FileExecutive v1.0.0 ]
    [»] Language:           [ PHP ]
    [»] Site page:          [ FileExecutive is a web-based file manager written in PHP. ]
    [»] Download:           [ http://sourceforge.net/projects/fileexecutive/ ]

###########################################################################

===[ Exploits ]===

    [»] http://im2up.com/r0x/1.txt  ->The Exploit Code             <-=- Remote Add Admin Exploit
    [»] http://im2up.com/r0x/1.txt  ->The Exploit Code             <-=- Remote Edit Admin Exploit
    [»] By Go To The End Of Page & Browse Your Shell 2 upload it   <-=- Remote File Upload Vulnerability
    [»] http://localhost/[path]/download.php?file=./LFD            <-=- Local File Disclosure Vulnerability
    [»] http://localhost/[path]/listdir.php?dir=./FPD              <-=- Full Path Disclosure Vulnerability

Author: ViRuSMaN <-

###########################################################################




#  0day.today [2016-04-19]  #