header-logo
Suggest Exploit
vendor:
Duhok Forum
by:
BrOx-Dz
7,5
CVSS
HIGH
Remote File Upload
264
CWE
Product Name: Duhok Forum
Affected Version From: all versions
Affected Version To: all versions
Patch Exists: NO
Related CWE: N/A
CPE: N/A
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: Windows XP, Linux Ubuntu 10
2010

Duhok Forum Remot upload Vulnerability

Duhok Forum is vulnerable to a remote file upload vulnerability. Attackers can exploit this vulnerability by uploading a malicious file to the vulnerable webpages such as /admin/up_xml.php, /admin/up_style.php, /idara/up_xml.php, and /idara/up_style.php. The malicious file can be uploaded by using a tool such as Tamper Data. Once the malicious file is uploaded, the attacker can access the file by going to www.site.com/patch/style/style_shell.php

Mitigation:

Ensure that the webpages are not vulnerable to remote file uploads. Restrict access to the vulnerable webpages and ensure that only authorized users can access them.
Source

Exploit-DB raw data:

==============================================
Duhok Forum Remot upload Vulnerability
==============================================

####################################################################
# Exploit Title: Duhok Forum Remot upload Shell Vulnerability
# Date: 30-11-2010
# Author: BrOx-Dz
# email : E.dz@hotmail.fr
# Software Link: http://www.duhoktimes.com/df/
# Version: all version
# Tested on: windows xp pack 3 linux ubuntu 10
# home  : algerie // Free  Gaza// 
 
####################################################################

===[  Vulnerable File ]===

/admin/up_xml.php
/admin/up_style.php
/idara/up_xml.php
/idara/up_style.php
 
===[ Exploit ]===

1- go www.site.com/patch/admin/up_style.php or www.site.com/patch/idara/up_style.php

2- upload shell "shell.css" and use tamper data

3- and go www.site.com/patch/slyle/style_shell.php


 .. enjoy --
 
####################################################################

greetz : kader11000 lagripe-dz  mca_crb NetCat-Dz    all dz members

www.h4kz.net   www.v4-team.com   www.vbspiders.com  www.dz4all.com/cc

Navigation

Suggest Exploit

Services By CQR