found by : d3c0der - h3x ###################################################################### # [+] HAM3D Shop Engine remot file upload Vulnerability # [+] Portal Name : HAM3D Shop Engine # [+] software : http://ham3d.net/shop.html # [+] found by : d3c0der , h3x # [+] Contact : d3c0der@hotmail.com , h.3.x@att.net # [+] special tnx : attackerz.ir , phc.ir , security-war.ir #[-]-------------------------------------------------------------------------[-] # # [+] Vulnerability # # [+] path # # http://[site]/shop/admin/editor/filemanager/upload/test.html # [+] result http://[site]/shop/admin/editor/filemanager/upload/php/ # #[-]-------------------------------------------------------------------------[-] # # [+] Demo # # http://ham3d.net/shop/admin/editor/filemanager/upload/test.html # # ######################################################################