Re: Phorm v3.0 Remote File Upload Vulnerability

To: ilkerkandemir@xxxxxxxxx
Subject: Re: Phorm v3.0 Remote File Upload Vulnerability
From: security curmudgeon <jericho@xxxxxxxxxxxxx>
Date: Fri, 7 Dec 2007 02:24:20 +0000 (UTC)
Cc: bugtraq@xxxxxxxxxxxxxxxxx
In-reply-to: <20070730191206.2642.qmail@xxxxxxxxxxxxxxxxx>
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm
References: <20070730191206.2642.qmail@xxxxxxxxxxxxxxxxx>

: # Phorm v3.0  Remote File Upload Vulnerability
: 
: # ilker kandemir <ilkerkandemir[at]mynet.com>
: 
: 
: # Exploit: http://[site]/[phorm_path]/lib/fileupload.php           [+]=====>> 
upload your shell.php
: 
: # http://[site]/[phorm_path]/files/phpshell.php

This also won't work unless an administrator makes changes to 
intentionally compromise the installation.

http://attrition.org/pipermail/vim/2007-July/001735.html

References:
- Phorm v3.0 Remote File Upload Vulnerability
  - From: ilkerkandemir

Prev by Date: [ISecAuditors Security Advisories] wwwstats is vulnerable to Persistent XSS
Next by Date: R7-0031: JFreeChart Image Map Cross-Site Scripting Vulnerabilities
Previous by thread: Phorm v3.0 Remote File Upload Vulnerability
Next by thread: phpVoter v0.6 Remote File Include Vulnerability
Index(es):
- Date
- Thread