Responsive E-Learning System 1.0 – Unrestricted File Upload to RCE

• Exploit Database
• 20 阅读

• 作者： Kshitiz Raj
  日期： 2021-01-06
• 类别：

  • webapps
  平台：

  • php
• 来源：https://www.exploit-db.com/exploits/49375/

• # Exploit Title: Responsive E-Learning System 1.0 - Unrestricted File Upload to RCE
  # Date: 2020-12-24
  # Exploit Author: Kshitiz Raj (manitorpotterk)
  # Vendor Homepage: https://www.sourcecodester.com/php/5172/responsive-e-learning-system.html
  # Software Link: https://www.sourcecodester.com/download-code?nid=5172&title=Responsive+E-Learning+System+using+PHP%2FMySQLi+with+Source+Code
  # Version: 1.0
  # Tested on: Windows 10/Kali Linux
  
  Step 1 -Login to the application with admin credentials.
  Step 2 - Click on Student or go to http://localhost/elearning/admin/student.php
  Step 3 - Click on Add Student and fill the required things.
  Step 4 - In image upload any php reverse shell.
  Step 5 - Visit "http://localhost/elearning/admin/uploads/" and select your uploaded PHP web shell.