orientation4success Web Design israil Insert Image. File Manager upload

2018.07.29

Guardiran Security Team (IR)

Risk: Low

Local: No

Remote: Yes

CVE: N/A

CWE: N/A

Dork: insert_image.php site:il

 Web Design israil Insert Image. File Manager upload
# Exploit : Web Design israil Insert Image. File Manager upload

# Exploit Author : Guardiran Security Team 

# Vendor Homepage : http://www.orientation4success.co.il

# Google Dork :insert_image.php site:il

my team: Guardiran Security Team 

# category : webapps

# Tested on : Win8 , Kali Linux

me:rednofozi@yahoo.com
sisitan we love zabol city

Proof of Concept :

search google Dork : insert_image.php site:il

Demo : http://www.orientation4success.co.il/js/xinha/plugins/ExtendedFileManager/manager.php

http://www.idan-hadli.co.il/xinha/plugins/ExtendedFileManager/manager.php 

# Discovered by : Rednofozi

 Long live SistanAs long as I live in my body, I defend this soilLong live Seyyed Ali Khamenei

guard iran hackers

tnx to :REX , DeMoN, C0d3!Nj3ct!0n ,Mr.Python , virtual_hate Comrade،, JOK3R ,  Ruiner , mr_null -  1TED

See this note in RAW Version

Vote for this issue:

50%

Thanks for you vote!

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.

Nick (*)

Email (*)

Video

Text (*)

(*) - required fields.

{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1

{{ x.comment }}

orientation4success Web Design israil Insert Image. File Manager upload

Dork: insert_image.php site:il

Thanks for you vote!

Thanks for you comment!Your message is in quarantine 48 hours.

Thanks for you comment!
Your message is in quarantine 48 hours.