risema.pt CMS Responsive FileManager

2017.10.23
Risk: Medium
Local: No
Remote: Yes
CVE: N/A
CWE: N/A

******************************************************** * Exploit Title : Responsive FileManager * Date : 2017-10-23 * Vendor Homepage : http://www.responsivefilemanager.com * Dork 1 : "Webdesign by: risema.pt" * Dork 2 : "Webdesign by: criativo.net" * Dork 3 : "Webdesign by: basicamente.pt" * Tested on Win 8 * POC : [ Sitetarget.com/filemanager/dialog.php ] Upload Your File. Ur file [Sitetarget.com/uploads/yourfile.html] [!] If u want to upload a backdoor. Rename the file to Shell.php.fla * Demo : http://www.darkseashoes.com http://www.hotelalbano.pt/ http://www.joiadaeuropa.com/ http://www.jcplda.com/ http://www.hupashoes.net/ *************************************************************

References:

Magelang1337.com


Vote for this issue:
100%
0%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}

Copyright 2018, cxsecurity.com

 

Back to Top