AtomatiCMS – Upload Arbitrary File

• Exploit Database
• 129 阅读

• 作者： Abysssec
  日期： 2010-09-28
• 类别：

  • webapps
  平台：

  • asp
• 来源：https://www.exploit-db.com/exploits/15139/
• 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38

  &apos;&apos;&apos; ________ __ ____ |\/|/ __ \ /\| || |_ \ | \/ | || | /\ | || | |_) | | |\/| | || |/ /\ \| || |_ < | || | |__| / ____ \ |__| | |_) | |_||_|\____/_/\_\____/|____/   &apos;&apos;&apos;       Abysssec Inc Public Advisory Title:AtomatiCMS Upload arbitrary file Vulnerability Affected Version :AtomatiCMS 10_all Discovery:www.abysssec.com Vendor :http://www.atomaticsoftware.com Download Links :http://sourceforge.net/projects/atomaticms/   Description : =========================================================================================== This version of AtomatiCMS have Upload arbitrary file Vulnerabilitywith fckEditor in this Paths:   http://Example.com/FCKeditor/editor/filemanager/browser/default/connectors/test.html http://Example.com/FCKeditor/editor/filemanager/upload/test.html     Which your files will be in this path: .../UserFiles/       ===========================================================================================