Advertisement






Portugal Municipality © Portal das Freguesias Editor Filemanager Vulnerability

CVE Category Price Severity
Not specified CWE-434 Not specified Not specified
Author Risk Exploitation Type Date
Not specified Not specified Not specified 2018-05-23
CVSS EPSS EPSSP
CVSS:4.0/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H 0.02192 0.50148

CVSS vector description

Our sensors found this exploit at: https://cxsecurity.com/ascii/WLB-2018050196

Below is a copy:

Portugal Municipality Portal das Freguesias Editor Filemanager Vulnerability
#################################################################################

# Exploit Title :   Portal das Freguesias, Todos os direitos reservados Filemanager Vulnerability
# Author [ Discovered By ] : KingSkrupellos - Cyberizm.Org Digital Security Technological Turkish Moslem Army
# Vendor Homepage : portaldasfreguesias.com
# Date : 23/05/2018
# Exploit Risk : Medium

#################################################################################

# Exploit Title : Portugal Municipality Government Sites  Portal das Freguesias Todos os direitos reservados CKFinder Filemanager Vulnerability

# Google Dork : intext: Portal das Freguesias, Todos os direitos reservados

# Google Dork 2 : inurl:/?m=galeria_de_fotos

# Exploit : ...../portugal/ckeditor/ckfinder/ckfinder.html 

# Path for File : ..../portugal/ckeditor/ckfinder/file/....

# Path for Images : ..../portugal/ckeditor/ckfinder/image/....

..../portugal/ckeditor/ckfinder/images/....

#################################################################################

# Example Sites and Target IP => 94.46.176.15

# pXortaldasfreguesias.com => archive.is/6PXfB [ Proof of Concept ]
# jXf-vilanovadeanha.com => archive.is/D4DOa  [ Proof of Concept ]

#################################################################################

# Discovered By : KingSkrupellos from Cyberizm.Org

Copyright ©2024 Exploitalert.

All trademarks used are properties of their respective owners. By visiting this website you agree to Terms of Use.