Opencart remote file Upload Vulnerability

vendor:

Opencart

by:

Net.Edit0r

7,5

CVSS

HIGH

Remote File Upload

434

CWE

Product Name: Opencart

Affected Version From: N/A

Affected Version To: N/A

Patch Exists: No

Related CWE: N/A

CPE: N/A

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: Linux/PHP

2013

Opencart remote file Upload Vulnerability

A vulnerability in Opencart allows an attacker to upload a malicious file to the server. The vulnerability exists in the 'File Upload' feature of the FCKeditor, which is used by Opencart. An attacker can exploit this vulnerability by sending a malicious file to the server via the 'File Upload' feature. The malicious file can then be accessed via the URL http://server/admin/view/javascript/fckeditor/editor/filemanager/connectors/php/shell.php or http://server/shell.php.

Mitigation:

The vulnerability can be mitigated by disabling the 'File Upload' feature of the FCKeditor, or by using a web application firewall to block malicious requests.

Source

Exploit-DB raw data:

==========================================
Opencart remote file Upload Vulnerability
==========================================

#Exploit Title: Opencart remote file uploade
#Author: Net.Edit0r
#Email: Net.Edit0r@Att.Net ~ Black.Hat.tm@Gmail.com
#Google dork: [inurl:Powered By OpenCart
#Software Link: http://www.opencart.com/index.php?route=download/download
#Platform :linux/php

######################################Iranian HackerZ####################################

# http://target.com/admin/view/javascript/fckeditor/editor/filemanager/connectors/test.html
# Example site: http://server
# Select the "File Upload" To use = php
# http://server/admin/view/javascript/fckeditor/editor/filemanager/connectors/test.html
# Sh3ll : http://server/admin/view/javascript/fckeditor/editor/filemanager/connectors/php/shell.php
# OR
# http://server/shell.php

######################################Demo Example####################################

#Demo : http://www.site.com/admin/view/javascript/fckeditor/editor/filemanager/connectors/test.html#
#Demo : http://www.site.com/admin/view/javascript/fckeditor/editor/filemanager/connectors/test.html#

#########################################################################################

#Spical Thanks To >> Darkcoder ~ Classic ~ Jenne bamaram ~ S3Ri0uS ~
_AriaNet_ And All B0x ((Web : ( http://houseofhackers.net/forum/ )))

########################################## End ##########################################