gbrchm2Blog: Tinymce P file Manager, Remote File upload vulnrablity

Wednesday, May 18, 2016

Tinymce P file Manager, Remote File upload vulnrablity

Title :Tinymce P file Manager, Remote File upload vulnrablity
server : Linux
Author: NoentryPHC
Type : webapp
Hamr : remote shell upload
Dork : inurl:/file_manager.p?type=img

Goto google.com and type dork inurl:/file_manager.p?type=img & inurl:/file_manager.p?type=file to Find vulnrable websites, to get more sites you can modify this dork,
: http://www.site.com/directory/tinymce/file_manager.p?type=file
so Goto http://www.site.com/directory/tinymce/file_manager.p?type=file and upload your file there,
if p & html uploading is denided, you can try Tamper Data and Live Http Hders
Live demo :
http://piter-ka.ru/media/tinymce/file_manager.p?type=file
http://www.oki-iroda.hu/72h2010/tinymce/jscripts/file_manager.p?type=img

gbrchm2Blog

Wednesday, May 18, 2016

Tinymce P file Manager, Remote File upload vulnrablity

No comments:

Post a Comment