Konuyu Oyla:
  • Derecelendirme: 0/5 - 0 oy
  • 1
  • 2
  • 3
  • 4
  • 5
MyBB Uploader 1.1.2 Shell Upload
#1
***************************************************
# Exploit Title: Mybb Plugin uploader 1.1.2 plugin Upload shell
# Date: 2014
# Exploit Author: IRH
# Tested on : 7,8
# version: 1.1.2
# Software Link: http://mods.mybb.com/download/plugin-uploader
# ScreenShot : http://uploaderx.persiangig.com/pluginup...upload.png

***************************************************
Exploit :http://localhost/mybb/admin/index.php?module=config-plugins&action=pluginuploader
İnfo: Mybb eklentiyi zip olarak kabul edicektir.
Dosya yolu: Info :/inc/plugins/pluginName/sh3ll.php

***************************************************
Vulnerability code :
PHP Kod:
if($mybb->input['from_mods_site'] == 1)

{
$plugin_temp_name $mybb->input['plugin_name'];

$path MYBB_ROOT "inc/plugins/temp/" $plugin_temp_name;
$pathinfo = array('extension' => 'zip');

$file_path MYBB_ROOT "inc/plugins/temp/" $plugin_temp_name ".zip";

}

------------------------------

// try to open the zip
if(!@$zip->open($file_path))
{
flash_message($lang->pluginuploader_error_upload'error');
admin_redirect("index.php?module=config-plugins&action=pluginuploader");
}

// try to create a temporary directory for the files
if(!pluginuploader_create_temp_dir($plugin_temp_name))
{
flash_message($lang->pluginuploader_error_temp_dir'error');
admin_redirect("index.php?module=config-plugins&action=pluginuploader");
}

// try to extract the files to the temp directory
if(!@$zip->extractTo($path))
{
flash_message($lang->pluginuploader_error_extract'error');
admin_redirect("index.php?module=config-plugins&action=pluginuploader");
}

$zip->close();
break;
case 
"php":
// try to create a temporary directory for the file
if(!pluginuploader_create_temp_dir($plugin_temp_name))
{
flash_message($lang->pluginuploader_error_temp_dir'error');
admin_redirect("index.php?module=config-plugins&action=pluginuploader");

İnsɑnlɑr değişmez değişen tek şey şɑrtlɑr ve çıkɑrlɑr...
Beğenenler:
#2
teşekkürler exciting
www.deccal.org


Beğenenler:
#3
Ooo Başkan Döktürdün Yine kiss
http://iranhack.org/acc/thread-1988.html
Beğenenler:
#4
Eline Sağlık....
Beğenenler:

Konu ile Alakalı Benzer Konular
Konular Yazar Yorumlar Okunma Son Yorum
  Wordpress "Js Support Ticket" File Upload Bypass Extensions Mr.F92 16 535 03-12-2016, Saat: 00:10
Son Yorum: Slowycan
  sacro CMS unrestricted upload You LosT 3 189 30-11-2016, Saat: 02:51
Son Yorum: 0xfans
  WordPress store theme Upload Acıgı archavin 72 4,771 24-11-2016, Saat: 17:33
Son Yorum: Mrxxx
  Admin Paneli ile Direk upload için Dorklar 2016 ERTUĞRUL 61 1,793 24-11-2016, Saat: 13:32
Son Yorum: Efetimi
  WP Reflex Gallery Plugin Shell Yükleme Açığı KingSkrupellos 6 93 23-11-2016, Saat: 16:41
Son Yorum: ferdimeric
Anahtar Kelimeler

MyBB Uploader 1.1.2 Shell Upload indir, MyBB Uploader 1.1.2 Shell Upload Videosu, MyBB Uploader 1.1.2 Shell Upload Online izle, MyBB Uploader 1.1.2 Shell Upload Bedava indir, MyBB Uploader 1.1.2 Shell Upload Yükle, MyBB Uploader 1.1.2 Shell Upload Hakkında, MyBB Uploader 1.1.2 Shell Upload Nedir, MyBB Uploader 1.1.2 Shell Upload Free indir, MyBB Uploader 1.1.2 Shell Upload Oyunu, MyBB Uploader 1.1.2 Shell Upload Download


1 Ziyaretçi