header-logo
Suggest Exploit
vendor:
ProfileCMS
by:
milw0rm.com
7.5
CVSS
HIGH
Shell Upload
CWE
Product Name: ProfileCMS
Affected Version From: ProfileCMS v1.0
Affected Version To: ProfileCMS v1.0
Patch Exists: NO
Related CWE:
CPE:
Metasploit:
Other Scripts:
Platforms Tested:
2007

ProfileCMS v1.0 Shell Upload Exploit

This exploit allows an attacker to upload a PHP shell instead of an image while creating a profile on ProfileCMS v1.0. The vulnerable script can be found at http://slrate.com/profiles. By exploiting this vulnerability, an attacker can gain unauthorized access to the system and execute arbitrary commands.

Mitigation:

The vendor should release a patch or update to fix this vulnerability. In the meantime, users are advised to restrict file uploads to only allow specific file types and validate the content of the uploaded files to prevent the execution of malicious code.
Source

Exploit-DB raw data:

ProfileCMS v1.0 Shell Upload Exploit

Demo : http://slrate.com/

You can direct upload PHP shell instead of image while creating profile  at this script, For example http://slrate.com/profiles here you can direct upload shell instead of images.

Dorks :

"Total Generators & Widgets"
"Powered By ProfileCMS v1.0"

# milw0rm.com [2007-10-29]

Navigation

Suggest Exploit

Services By CQR