AtomatiCMS – Upload Arbitrary File

• Exploit Database
• 33 阅读

• 作者： Abysssec
  日期： 2010-09-28
• 类别：

  • webapps
  平台：

  • asp
• 来源：https://www.exploit-db.com/exploits/15139/

• '''
  ________ __ ____
   |\/|/ __ \ /\| || |_ \ 
   | \/ | || | /\ | || | |_) |
   | |\/| | || |/ /\ \| || |_ < 
   | || | |__| / ____ \ |__| | |_) |
   |_||_|\____/_/\_\____/|____/ 
  
  '''
  
  
  
  Abysssec Inc Public Advisory
   
   
  Title:AtomatiCMS Upload arbitrary file Vulnerability
  Affected Version :AtomatiCMS 10_all
  Discovery:www.abysssec.com
  Vendor	 :http://www.atomaticsoftware.com
  Download Links :http://sourceforge.net/projects/atomaticms/
  
   
  Description :
  ===========================================================================================
  This version of AtomatiCMS have Upload arbitrary file Vulnerabilitywith fckEditor
  in this Paths:
  
   http://Example.com/FCKeditor/editor/filemanager/browser/default/connectors/test.html
   http://Example.com/FCKeditor/editor/filemanager/upload/test.html
  
  
   Which your files will be in this path:
   .../UserFiles/
  
  
  
  ===========================================================================================