|
|
 |
| New User, Welcome! Login |
WikiWebWeaver 1.1 beta Upload Shell Vulnerability
| From: |
yollubunlar yollubunlar org |
| To: |
bugtraq securityfocus com |
| Cc: |
|
| Subject: |
WikiWebWeaver 1.1 beta Upload Shell Vulnerability |
| Date: |
Wed - Aug 01, 2007 02:38 AM |
Yollubunlar.Org
--------------------------------------------------------------------------------
Title : WikiWebWeaver 1.1 beta Upload Shell Upload Vulnerability
--------------------------------------------------------------------------------
#Author: Yollubunlar.Org
#cont@ct: yollubunlar@hotmail.com
--------------------------------------------------------------------------------
Affected software description :
--------------------------------------------------------------------------------
Application : WikiWebWeaver 1.1
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Exploit:
WikiWebWeaver 1.0 beta 2 Script Have Upload part and you can upload only gif,jpeg lol :D
but you can upload gif.php or psd.php
http://www.site.com/wiki_path/index.php?upload
we upload a .gif.php or others than our shell go
http://www.site.com/wiki_path/data/documents/ourshell.gif.php :)
--------------------------------------------------------------------------------
greets:Yollubunlar.Org
--------------------------------------------------------------------------------
--------------------------------- [Yollubunlar.Org ] --------------------------------------
|
|
|
Copyright © 1995-2012 LinuxRocket.net. All rights reserved.
Nearly all of LinuxRocket's features are free. Be kind and donate to the cause!
