eking CMS Shell Upload

Posted on 14 September 2012

~~ In The Name Of God

~~ eking CMS File Upload Vulnerability
=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
# Name:eking CMS
# Vendor: http://www.eking.cc/
# Date: 2012-09-13
# Author: Mh0122
# Thanks to: MojiRider
# Contact: Mh0122.An0n@Gmail.CoM
=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
[+] Dork: inurl:admin/upload.php

[+] Vulnerability ~>

[+] Vulnerability: http://127.0.0.1/admin/upload.php

[+] UPLOAD DIR : http://127.0.0.1/admin/upfile/[shell].php

[+] Demo : http://www.chenhe.cn/admin/upload.php

=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
Hacking Just Not Deface !!

./By Mh0122 (^_^)

TOP

Malware :

RATDispenser
whispergate
Borat RAT
Trojanized X_Trader
BlackLotus

Last 20

Exploits :

Drupal-Wiki 8.31 / 8.30 Cross Site Scripting
Kortex 1.0 SQL Injection
POMS PHP 1.0 SQL Injection / Shell Upload
iboss Secure Web Gateway Cross Site Scripting
Clinic Queuing System 1.0 Remote Code Execution

Last 20