PRIVATE CSR config/config.izo *youtube

2015-10-08 / 2015-11-03
Credit: Ashiyane Digital Security Team
Risk: Medium
Local: No
Remote: Yes
CVE: N/A
CWE: N/A
Dork: inurl:/"config/config.izo"

######################################################## #[+] Exploit Title: PRIVATE CSR # [+] Date: 7/10/2015 # [+] Google Dork : inurl:/"config/config.izo" # [+] Exploit Author: Ashiyane Digital Security Team # [+] Discovered By: Syborg # [+] Security Risk: High # [+] Tested on: Windows 8.1/Google Chrome ######################################################## # # [+] VULNERABILITY: # Priv8 SCR Editors # ####################################################### # Use Editors To Edit Config Files And Deafce The Site Via CSR Editors. ####################################################### # # [+] Example: #http://lom-radioX.com/config/config.izo #http://kesbangpolbuXlukumba.info/config/config.izo #http://www.mirgosXtinits.ru/config/config.izo #http://sacredodysXsey.com/config/config.izo #http://www.biohXgienica.com/config/config.izo ####################################################### # [+] Deface Page: www.site.com/config/tar.tmp ####################################################### # # [+] Discovered By : Syborg # [+] We Are : Behrooz_Ice,C4T,eb051,CRISIS,Synorg And All Member Ashiyane Digital Security Team # [+] SpTnx : Behrooz_Ice,C4T,eb051,CRISIS And All Member Ashiyane Digital Security Team # [+] Home : http://ashiyane.org/forums/index.php #

References:

https://www.youtube.com/watch?v=xygGVZo-E5M


See this note in RAW Version
Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}
Copyright 2024, cxsecurity.com

 

Back to Top