scripting chating Remote Upload Vulnerability

2010-06-06T00:00:00
ID 1337DAY-ID-12565
Type zdt
Reporter Mr.Benladen
Modified 2010-06-06T00:00:00

Description

Exploit for php platform in category web applications

                                        
                                            =============================================
scripting chating Remote Upload Vulnerability
=============================================

# Exploit Title: [scripting chating Remote Upload Vulnerability]
# Date: [04/06/2010]
# Author: [Mr.Benladen]
# Software Link: [N/A]
# Version: [2006/2008]
# Tested on: [Linux/unix]
# CVE : [if exists]
# Code : [N/A]
#Email : [email protected]

######################################################################################################

???????????????????????????????????? #??? #??????? #??? #
???????????????????????????????????? #?? #????????? #?? #
??????????????????????????????????? #??? #????????? #??? #
??????????????????????????????????? #?? ##?? ####?? ##?? #
?????????????????????????????????? ##?? ##? ######? ##?? ##
??????????????????????????????????? ##?? ##? ######? ##?? ##
?????????????????????????????????? ##?? ##?? ####?? ##?? ##
?????????????????????????????????? ###?? ############?? ###
?????????????????????????????????? ########################
?????????????????????????????????????? Mr.Benladen cr3w
??????????????????????????????????????? ##############
???????????????????????????????? ######## ########## #######
??????????????????????????????? ###?? ##? ##########? ##?? ###
??????????????????????????????? ###?? ##? ##########? ##?? ###
???????????????????????????????? ###?? #? ##########? #?? ###
???????????????????????????????? ###?? ##? ########? ##?? ###
????????????????????????????????? ##??? #?? ######?? #??? ##
?????????????????????????????????? ##?? #??? ####?? #??? ##
???????????????????????????????????? ##???????????????? ##

######################################################################################################

[Dork ]:? "Just register as a normal member for free and buy any"

{exploit} :? http://127.0.0.1/manage_pictures.php

First register and the site and go to? pictures

After you have uploaded your shells , you will find it in this Path : http://[site]//pictures//id_evil.php

demo : http://www.sellyourjunkonline.com/testarea/lala/pictures/m53_oujda.php

######################################################################################################


Greetz To? : Federal7-blackroot-khalidmoro-ra3ch-yesmouh-Zi00n From Ukrania-Dr.Prorat all My Friend

and al muslim h4x0r

M0r0Can Is Here

--=-=-=-=-www.Joomlaservice.info or www.dz4all.com -=-=-=-=--=



#  0day.today [2018-04-06]  #