Mini File Host 1.x - Arbitrary '.PHP' File Upload

EDB-ID:

7509


Platform:

PHP

Published:

2008-12-18

#########################################################
---------------------------------------------------------
Portal Name: Mini File Host
Version: All version
Vendor : http://www.galaxyscripts.com
Dork: inurl:index.php?page=img Powered By Mini File Host
Author : Pouya_Server , Pouya.s3rver@Gmail.com
Vulnerability : (Uploader Bypass)
---------------------------------------------------------
#########################################################
[Mime Check Bypass]:
create a file called name.php and fill it as below:
----------
GIF89aP;
[shell]
----------
Save and upload !

[Video]:
http://pouya2006.persiangig.com/UploadVideo/minifile.rar
---------------------------------

# milw0rm.com [2008-12-18]