======================================================                PHPAuctionSystem Upload Vulnerability        ====================================================== 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0     _                   __           __       __                     1 1   /' \            __  /'__`\        /\ \__  /'__`\                   0 0  /\_, \    ___   /\_\/\_\ \ \    ___\ \ ,_\/\ \/\ \  _ ___           1 1  \/_/\ \ /' _ `\ \/\ \/_/_\_<_  /'___\ \ \/\ \ \ \ \/\`'__\          0 0     \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/           1 1      \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\           0 0       \/_/\/_/\/_/\ \_\ \/___/  \/____/ \/__/ \/___/  \/_/           1 1                  \ \____/ >> Exploit database separated by exploit   0 0                   \/___/          type (local, remote, DoS, etc.)    1 1                                                                      1 0  [+] Site            : Inj3ct0r.com                                  0 1  [+] Support e-mail  : submit[at]inj3ct0r.com                        1 0                                                                      0 1               ##########################################             1 0               I'm Sid3^effects member from Inj3ct0r Team             1 1               ##########################################             0 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1 Name : PHPAuctionSystem Upload Vulnerability Date : june, 16 2010 Vendor url :http://www.phpauctions.info/ Critical Level     : HIGH Author : Sid3^effects aKa HaRi special thanks to : r0073r (inj3ct0r.com),L0rd CruSad3r,MaYur,gunslinger_ greetz to :All ICW members and my friends :) luv y0 guyz #######################################################################################################   PHPAuctionSystem had various vulnerablities which was found ####################################################################################################### DEMO URL :http://phpauctions.info/demo/ Xploit:Upload Vulnerability  Step 1: register as a user :)    Step 2: goto "sell an item" option  DEMO URL :http://phpauctions.info/demo/select_category.php?  Step 3: post ur evil-code in the item description  Step 4:check your item and ur evil script is executed and upload your shell and enjoy :P  demo url :http://phpauctions.info/demo/sell.php :) ############################################################################################################### # 0day no more # Sid3^effects