scripting chating Remote Upload Vulnerability
Posted on 06 June 2010
<!DOCTYPE HTML PUBLIC '-//W3C//DTD HTML 4.01 Transitional//EN'><html><head><meta http-equiv='Content-Type' content='text/html; charset=windows-1251'><title>scripting chating Remote Upload Vulnerability</title><link rel='shortcut icon' href='/favicon.ico' type='image/x-icon'><link rel='alternate' type='application/rss+xml' title='Inj3ct0r RSS' href='/rss'></head><body><pre>============================================= scripting chating Remote Upload Vulnerability ============================================= # Exploit Title: [scripting chating Remote Upload Vulnerability] # Date: [04/06/2010] # Author: [Mr.Benladen] # Software Link: [N/A] # Version: [2006/2008] # Tested on: [Linux/unix] # CVE : [if exists] # Code : [N/A] #Email : MaFiadu48@hotmail.fr ###################################################################################################### ???????????????????????????????????? #??? #??????? #??? # ???????????????????????????????????? #?? #????????? #?? # ??????????????????????????????????? #??? #????????? #??? # ??????????????????????????????????? #?? ##?? ####?? ##?? # ?????????????????????????????????? ##?? ##? ######? ##?? ## ??????????????????????????????????? ##?? ##? ######? ##?? ## ?????????????????????????????????? ##?? ##?? ####?? ##?? ## ?????????????????????????????????? ###?? ############?? ### ?????????????????????????????????? ######################## ?????????????????????????????????????? Mr.Benladen cr3w ??????????????????????????????????????? ############## ???????????????????????????????? ######## ########## ####### ??????????????????????????????? ###?? ##? ##########? ##?? ### ??????????????????????????????? ###?? ##? ##########? ##?? ### ???????????????????????????????? ###?? #? ##########? #?? ### ???????????????????????????????? ###?? ##? ########? ##?? ### ????????????????????????????????? ##??? #?? ######?? #??? ## ?????????????????????????????????? ##?? #??? ####?? #??? ## ???????????????????????????????????? ##???????????????? ## ###################################################################################################### [Dork ]:? "Just register as a normal member for free and buy any" {exploit} :? http://127.0.0.1/manage_pictures.php First register and the site and go to? pictures After you have uploaded your shells , you will find it in this Path : http://[site]//pictures//id_evil.php demo : http://www.sellyourjunkonline.com/testarea/lala/pictures/m53_oujda.php ###################################################################################################### Greetz To? : Federal7-blackroot-khalidmoro-ra3ch-yesmouh-Zi00n From Ukrania-Dr.Prorat all My Friend and al muslim h4x0r M0r0Can Is Here --=-=-=-=-www.Joomlaservice.info or www.dz4all.com -=-=-=-=--= # <a href='http://inj3ct0r.com/'>Inj3ct0r.com</a> [2010-06-06]</pre><script type='text/javascript'>var gaJsHost = (("https:" == document.location.protocol) ? "https://ssl." : "http://www.");document.write(unescape("%3Cscript src='" + gaJsHost + "google-analytics.com/ga.js' type='text/javascript'%3E%3C/script%3E"));</script><script type='text/javascript'>try{var pageTracker = _gat._getTracker("UA-12725838-1");pageTracker._setDomainName("none");pageTracker._setAllowLinker(true);pageTracker._trackPageview();}catch(err){}</script></body></html>
