xupload - Arbitrary File Upload

2017.08.27
Risk: Low
Local: No
Remote: Yes
CVE: N/A
CWE: N/A

============================================================================ # Exploit Title: xupload - Arbitrary File Upload # Date: 8/27/2017 # Exploit Author: Sarbaz_Vatan # Tested on: Windows 7 # Dorks: inurl:"upload_form.html" |OR| intitle:"xupload" inurl:"upload_form.html" ============================================================================ [+]Demo: - http://www.aphr.ir/android/PanelForm/upload_form.html - http://majlisashura.com/upload_form/upload_form.html - http://www.imageurl.ir/index.php - http://juxtamedia.com/upload_form.html - http://www.cocobest.net/doc/upload_form.html - ftp://www.lhotkanet.cz/mirror/asterisk-gui/team/rbrindley/features_revamp/config/upload_form.html - http://www.jameschang.com/upload_form.html - http://www.ourwebprojects.com/xupload/upload_form.html - http://www.855quiktax.com/upload_form/upload_form.html


Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}

Copyright 2024, cxsecurity.com

 

Back to Top