EzWeb Calendar suffers from a remote shell upload vulnerability.
cedee4084efb833603e32661d6e22ae7deedf823cc31ea5d7df9b25280ddffa4
Hello Bro;
###########################################
#EzWeb Calendar | Shell Upload Bug
###########################################
#1. Register Calendar
#2. Add Calendar and Add File(Shell)
#3. http://[target]/[path]/[UserName]/UploadedFiles/uploadedfile.php
###########################################
#I'm Suggestions : Upload to ASP Shell
###########################################
# Cyber-Warrior & Security | Bug Researchers Group
# Greetz : BARCOD3, BHDR, Cem, Asil Bey...
###########################################
You Test : http://www.ezwebcalendar.com/demo/mainCal.cfm?CFID=8293226&CFTOKEN=86859464
_________________________________________________________________
Anýlarýnýzý istediðiniz herkesle çevrimiçi paylaþýn.
http://www.microsoft.com/turkiye/windows/windowslive/products/photos-share.aspx?tab=1