kcfinder 2.2 upload shell

vendor:

KCFinder

by:

saudi0hacker

9,3

CVSS

HIGH

Remote Code Execution

CWE

Product Name: KCFinder

Affected Version From: 2.x

Affected Version To: 2.x

Patch Exists: Yes

Related CWE: N/A

CPE: KCFinder

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: Linux

2010

This exploit allows an attacker to upload a malicious shell to the vulnerable KCFinder 2.2 application. The attacker can then access the shell by visiting the browse.php page and executing the shell. The attacker can then execute arbitrary code on the vulnerable system.

Mitigation:

The vendor has released a patch to address this vulnerability. It is recommended to upgrade to the latest version of KCFinder.

Source

Exploit-DB raw data:

: # Exploit Title: kcfinder 2.2 upload shell                                                 :
: # Date: 15/10/2010                                                                         :
: # Author: saudi0hacker                                                                     :  
: # Software Link:  http://kcfinder.sunhater.com/                                            :
: # Version: 2.x                                                                             :
: # Tested on: linux b0x                                                                     : 
: # Greetz to : All of my Friends                                                            :
----------------------------------------------------------------------------------------------

 [~] STEP 1 > Go to target link

     http://localhost/KCFinder/browse.php

 [~] STEP 2 > upload your shell as [shell.php.jpg]
  
 [~] Th3 End