RStickets! versions 1.0.0 and below suffer from a remote shell upload vulnerability.
b53c228a0ee7cc0f11b1201eab5c487dad45beaaf327134c1d88aa7bcf5f863b###################################################################################
RStickets! <= 1.0.0 - Remote Shell Upload Vulnerability
# Author: Ibrahim Raafat
# Twitter: https://twitter.com/RaafatSEC
# Reported to vendor : 7 September 2014
# Response: 8 September 2014 -> RSTickets!" is no longer sold / developed
# POC:
Upload shell.php.zip from the form and the shell will be uploaded to the server on this path
components/com_rstickets/files/
and it will be executable
May be another versions are vulnerable also to the same vulnerability
=> XSS In name parameter of the form You can execute javascript
" onmouseover=prompt(1)>
######################################################################################
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed