header-logo
Suggest Exploit
vendor:
[WS] upload
by:
ViRuSMaN
7.5
CVSS
HIGH
Remote File Upload Vulnerability
434
CWE
Product Name: [WS] upload
Affected Version From: N/A
Affected Version To: N/A
Patch Exists: N/A
Related CWE: N/A
CPE: N/A
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
N/A

[WS] upload Remote File Upload Vulnerability

A vulnerability exists in [WS] upload, where an attacker can upload a malicious file to the server. The attacker can then access the malicious file by navigating to the file path. This vulnerability can be exploited by an attacker to gain access to the server.

Mitigation:

The application should validate the file type before allowing the file to be uploaded. The application should also restrict the file types that can be uploaded.
Source

Exploit-DB raw data:

##############################################################
|
| [WS] upload Remote File Upload Vulnerability
|
| Author : [ViRuSMaN]
|
| Contact : [v.-m@live.com]
|
| Home : [Islam-Attack.CoM , HackTeach.OrG]
|
| Download : [http://www.phpshark.dk/download.php?file=phpshark_dk_52_multiupload.zip&id=52]
|
##############################################################
|
|
| Exp :
|
| 1- Choose number of files 2 upload
|
| 2- Upload your shell format "shell.php.rar"
|
| 3- Pwd Your Shell "localhost/[WS] upload/fil/shell.php.rar"
|
##############################################################
|
| Greets : All members of islam-attack.com , hackteach.org & Sec-Sni.Com All Muslim's
|
##############################################################