توییت
CKFinder 3 - latest version File Browser Remote File Upload Vulnerability
تا نسخه 5 میشه اکسپلویت کرد به راحتی
کد:
Description : This vulnerability could allow a remote attacker to bypass certain security restrictions. This vulnerability allows an attacker to upload any file with an unauthorized extension due to insufficient authentication and bypassing security restrictions. Configured to allow only certain file extensions. This vulnerability affects CKFinder for ASP, CKFinder for ASP.NET, CKFinder for ColdFusion, and CKFinder for PHP. Decrease : Not fixed (Be sure to install future updates from the vendor's website.) Vulnerable software versions CKFinder 3 - latest version ========================================= CKFinder 3 - File Browser Remote File Upload Vulnerability ========================================= Description : This vulnerability could allow a remote attacker to bypass certain security restrictions. This vulnerability allows an attacker to upload any file with an unauthorized extension due to insufficient authentication and bypassing security restrictions. Configured to allow only certain file extensions. This vulnerability affects CKFinder for ASP, CKFinder for ASP.NET, CKFinder for ColdFusion, and CKFinder for PHP. Decrease : Not fixed (Be sure to install future updates from the vendor's website.) Vulnerable software versions CKFinder 3 - latest version #Author: E1.Coders #Dork : site: .ir/assets/ckfinder/ckfinder.html #Google Dark : https://www.google.com/search?q=site%3A+.ir%2Fassets%2Fckfinder%2Fckfinder.html&rlz=1C1CHBD_enUS1050US1050&oq=site%3A+.ir%2Fassets%2Fckfinder%2Fckfinder.html&aqs=chrome..69i57j69i58.4101j0j4&sourceid=chrome&ie=UTF-8 #Google Dark : https://www.google.com/search?q=%C2%A9+%D8%AA%D9%85%D8%A7%D9%85%DB%8C+%D8%AD%D9%82%D9%88%D9%82+%D8%A7%DB%8C%D9%86+%D8%B3%D8%A7%D9%85%D8%A7%D9%86%D9%87+%D9%85%D8%AA%D8%B9%D9%84%D9%82+%D8%A8%D9%87+%D8%B2%D8%A7%DA%AF%D8%B1%D8%B3.+%D8%B3%D8%A7%D9%85%D8%A7%D9%86%D9%87+%D9%85%D8%AF%DB%8C%D8%B1%DB%8C%D8%AA+%D9%87%D9%85%D8%A7%DB%8C%D8%B4+%D9%88+%D9%86%D8%B4%D8%B1%DB%8C%D8%A7%D8%AA+%D8%B9%D9%84%D9%85%DB%8C+%D8%B2%D8%A7%DA%AF%D8%B1%D8%B3+%D9%85%DB%8C+%D8%A8%D8%A7%D8%B4%D8%AF+%D9%86%D8%B3%D8%AE%D9%87%3A3.0+%7C&rlz=1C1CHBD_enUS1050US1050&oq=%C2%A9+%D8%AA%D9%85%D8%A7%D9%85%DB%8C+%D8%AD%D9%82%D9%88%D9%82+%D8%A7%DB%8C%D9%86+%D8%B3%D8%A7%D9%85%D8%A7%D9%86%D9%87+%D9%85%D8%AA%D8%B9%D9%84%D9%82+%D8%A8%D9%87+%D8%B2%D8%A7%DA%AF%D8%B1%D8%B3.+%D8%B3%D8%A7%D9%85%D8%A7%D9%86%D9%87+%D9%85%D8%AF%DB%8C%D8%B1%DB%8C%D8%AA+%D9%87%D9%85%D8%A7%DB%8C%D8%B4+%D9%88+%D9%86%D8%B4%D8%B1%DB%8C%D8%A7%D8%AA+%D8%B9%D9%84%D9%85%DB%8C+%D8%B2%D8%A7%DA%AF%D8%B1%D8%B3+%D9%85%DB%8C+%D8%A8%D8%A7%D8%B4%D8%AF+%D9%86%D8%B3%D8%AE%D9%87%3A3.0+%7C&aqs=chrome..69i57.432j0j4&sourceid=chrome&ie=UTF-8 #Software Link: https://ckeditor.com/docs/ckfinder/ckfinder3/ #Cms Detector : https://whatcms.org/?s=rmhj.ir #Cms Detector : https://www.wappalyzer.com/lookup/psyj.ir #Exploit : http://target.com #http://target.com/assets/ckfinder/ckfinder.html #Select the "Upload" To use = txt . xml . exe . mp3 . and .. #http://target.com/assets/ckfinder/ckfinder.html #Show File : http://target.com/[path]/Your File.Your file extension #Demo : https://target/assets/ckfinder/ckfinder.html ######################################################################################################################### # # # | Security Is JOCK | # # # # | Russian Black Hat | # # # #########################################################################################################################