(Webiz) local SHELL Upload Vulnerability

vendor:

Web content Management Tool

by:

kannibal615

7,5

CVSS

HIGH

Local File Upload Vulnerability

N/A

CWE

Product Name: Web content Management Tool

Affected Version From: 2004

Affected Version To: 2004

Patch Exists: NO

Related CWE: N/A

CPE: N/A

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: PHP

2010

(Webiz) local SHELL Upload Vulnerability

Webiz is a web content management tool (wmt) with a version 2004. It has a local file upload vulnerability which allows an attacker to upload a malicious shell.php file. The attacker needs to have an administrator right to exploit this vulnerability.

Mitigation:

Ensure that the application is not vulnerable to file upload attacks by validating the file type and size before accepting it.

Source

Exploit-DB raw data:

# Exploit Title: (Webiz) local SHELL Upload Vulnerability
# Date: 23-05-2010
# Author: kannibal615
# Software Link: N/A
# Version: 2004
# Tested on: PHP
# CVE : N/A
# Code : 


         @@    @@  @@@@@@     @@    @@    @@@@    @@@@@@@  @@  @@   @@@@@@@  @@@@@
         @@    @@  @@   @@    @@    @@   @@  @@   @@       @@ @@    @@       @@   @@
         @@    @@  @@ @@@     @@@@@@@@  @@    @@  @@       @@@@     @@@@@@   @@   @@
          @@  @@   @@ @@@     @@@@@@@@  @@@@@@@@  @@       @@ @@    @@@@@@   @@ @@
           @@@@    @@   @@    @@    @@  @@    @@  @@       @@  @@   @@       @@   @@
            @@     @@@@@@     @@    @@  @@    @@  @@@@@@@  @@   @@  @@@@@@@  @@    @@ dot NET

                                       KANNIBAL615
			
=========================================================================
       WEBIZ REMOTE SHELL UPLOAD VULNERABILITY
=========================================================================
                      BY
                 KANNIBAL615
=========================================================================

== Found By   : kannibal615
== website    : www.vbhacker.net/vb
== email      : zn[at]live[dot]de
==
== Thanks to  : THE PIRATOR
==            : Pc-InSeCt / emptyzero
==            : DAK / l3G3NDS / m0j4h3d
==            : V!Ru$_T4ckJ3n / __MiM0__ 
==            : ruqa / PrideArabs / DIESEL
==            : yassine_hell / mu$lim
==            : ALL VBHACKER MEMBERS
=========================================================================

                                 EXPLOIT
                        
=========================================================================
==  CMS     :  Web content Management Tool [ wmt ]
==  version :  2004
==  risk    :  hight
==  dork    :  Powered by Webiz
==  Rating  :  *****
==  
==  -------------------------------------------
==  *** YOU MUST HAVE A ADMINISTRATOR RIGHT ***
==  -------------------------------------------
==
==  BUG
==  ../wmt/siteadmin/videos.php
==
==
==
==  PHP file Upload
==  
==
==
==  upload your shell from here
==  http://[localhost]/wmt/siteadmin/videos.php >> shell.php
==
==
==
==  Get it
==  http://[localhost]/wmt/userfiles/Media/videos/shell.php
==
==
==
==  enjoy  ;)
==
==  kannibal615 Copyright 2010
==
==  www.vbhacker.net/vb
==========================================================================