==================================================================================================================================== | # Title : Gold Filled CRM v 2.0 Remote File Upload vulnerability | | # Author : indoushka | | # Tested on : windows 10 Français V.(Pro) / browser : Mozilla firefox 66.0.3(32-bit) | | # Vendor : https://codecanyon.net/ | | # Dork : | ==================================================================================================================================== poc : [+] Dorking İn Google Or Other Search Enggine. [+] The following html code upload your file remotely [+] infected file : /feltolt2.php . [+] This is the path where you will find your uploaded files ( product_images/original/)Exmpl : /product_images/original/index.svg [+] save code as poc.html .

Képek felvitele

Termék azonosítója :

Greetings to :========================================================================================================================= | jericho * Larry W. Cashdollar * brutelogic* hyp3rlinx* 9aylas * shadow_00715 * LiquidWorm* | | =======================================================================================================================================