ImageBrowser FileUpload Vulnerabillity
# Author : SPEEDY-03
# Exploit Title : ImageBrowser FileUpload Vulnerabillity
# Date 05/26/2018
# Tested On Windows 7
# Greetz : Typical idiot Security & ZeroByte.id
===============================================
# Exploit Title : ImageBrowser FileUpload Vulnerabillity
# Date 05/26/2018
# Tested On Windows 7
# Greetz : Typical idiot Security & ZeroByte.id
===============================================
* Demo : http://intranet.kemendag.go.id/modules/itpc/
* Default Login : admin/admin
* Dork : /ckeditor/plugins/imageuploader/uploads/
* Exploit : /ckeditor/plugins/imageuploader/imgbrowser.php
* Proof : http://intranet.kemendag.go.id//6242d094.jpg
* Default Login : admin/admin
* Dork : /ckeditor/plugins/imageuploader/uploads/
* Exploit : /ckeditor/plugins/imageuploader/imgbrowser.php
* Proof : http://intranet.kemendag.go.id//6242d094.jpg
NB : EXPLOIT INI HANYA BISA UPLOAD .JPG / IMAGE
Post a Comment