Pages

What do you think about this blog?

Followers PHC

Thursday, February 16, 2012

FileChucker-Uploader v4.x File Upload Vulnerability

# Title : FileChucker-Uploader v4.x File Upload Vulnerability
# Author : KedAns-Dz
# E-mail : ked-h@hotmail.com (ked-h@1337day.com) | ked-h@exploit-id.com | kedans@facebook.com
# Home : Hassi.Messaoud (30008) - Algeria -(00213555248701)
# Web Site : http://www.1337day.com * http://www.exploit-id.com * sec4ever.com * r00tw0rm.com

# platform : php
# Impact : File Upload (.html)
# Tested on : Windows XP SP3 (fr)
#
# G0ogle d0rk : allintext:"File Upload by Encodable"
# p0c :

-> http://[site]/[path]/{uploader} *.cgi *.*
=> Upload file her3
--> and find hime in userfile ....
hasil: http://www.finelinensw.com.au/transfer/upload/files/users/8436c0707e640ef23a223d272dcc39e4/dee-cisadane.html

No comments:

Post a Comment