Bizlist Sdn. Bhd. Admin Page Noredirect Upload Sh3ll

2017.08.25
Credit: iranonymous
Risk: Medium
Local: No
Remote: Yes
CVE: N/A
CWE: N/A

[+][+][+][+][+][+][+][+][+][+][+][+][+][+][+][+][+][+][+][+][+][+] [+] [+] Exploit Title : [bizlist] Admin Page Noredirect Upload Sh3ll :) [+] [+] Dork : "Copyright © 2017 Bizlist Sdn. Bhd. (1225769-M). All Rights Reserved. " [+] [+] Vendor https://www.bizlist.my [+] [+] Author: iranonymous [+] [+] Tested : win - Linux [+] [+][+][+][+][+][+][+][+][+][+][+][+][+][+][+][+][+][+][+][+][+][+] [+] -----------------------------------------------------------| |[+] Exploit : |[+] |[+] Note: Download Tool [NoRedirect] di addons Mozilla Firefox |[+] |[+] |[+] Admin Url :- |[+] http://[$host]/admin/ Atau http://[$host]/admin/index.php |[+] |[+] |[+] 1- Jalankan Tool NoRedirect [Mozilla] |[+] 2- Add Site New |[+] 3- Add: ^[$site]/admin/ OR [$site]/admin/index.php |[+] 4-Demo : https://www.bizlist.my/admin/ -----------------------------------------------------------| # Thanks to : ~~> MR.Khatar || Blackwolf_Iran ||Ormazd || Sh@d0w ||Hellish_PN (mamad khodesh) ||Rabinson || Danger BoY # Iranian Anonymous # Discovered By: Saman.Khan


Vote for this issue:
100%
0%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}

Copyright 2017, cxsecurity.com

 

Back to Top