Joomla Advertisement Board Classifieds 3.2.0 Shell Upload Vulnerability

2018-01-03T00:00:00
ID 1337DAY-ID-29359
Type zdt
Reporter Bilal Kardadou
Modified 2018-01-03T00:00:00

Description

Exploit for php platform in category web applications

                                        
                                            ################################################
#Title: Advertisement board Joomla classifieds extension 3.2.0 - Remote
Shell Upload Vulnerability
#Credit: Bilal KARDADOU
#Vendor: http://ordasoft.com/
#URL: http://ordasoft.com/advertisement-board-joomla-classifieds-extension
#Product: 'Advertisement board Joomla classifieds extension 3.2.0'
#Developer: OrdaSoft
#Extension type: Plugin
#Last updated: 18 MARCH 2015
#Compatibility: 2.5 - 3.X
#Google Dork: N/A
################################################
#
#  Description:
#   Advertisement Board is Joomla classifieds component for easy creation
ads,
# ads categories and managing them. With help of this Joomla ads extension
it's super easy to create classified ads on Joomla based website.
# Whether you want to add real estate classifieds or fashion, electronics
or job classifieds,
# Advertisement Board is great choice for Joomla classified ads.
#
#
#  1 - Go to
http://127.0.0.1/joomla/index.php/component/advertisementboard/?task=add_advertisement
#  2 - Insert to all textbox, your data
#  3 - Add new file
#  4 - Your shell uploaded :
http://127.0.0.1/joomla/components/com_advertisementboard/efiles/[shell].php
#
# PoC:
#  https://prnt.sc/hvjjld
#
#Bilal KARDADOU - https://www.linkedin.com/in/kardadou/)
################################################

#  0day.today [2018-04-14]  #