Memberkit 1.0 - Arbitrary File Upload

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1057204 漏洞类型
发布时间 2009-01-01 更新时间 2009-01-01
CVE编号 N/A CNNVD-ID N/A
漏洞平台 PHP CVSS评分 N/A
|漏洞来源
https://www.exploit-db.com/exploits/7638
|漏洞详情
漏洞细节尚未披露
|漏洞EXP
=================================================================
=================Memberkit 1.0 Remote File Upload================
=================================================================

Vendor: http://www.memberkit.com/
Discovered: 12-30-08
Discovered By: Lo$er

====Exploit====

After registered and logged in, a user can upload any type of file in "My Picture Album" where a picture would usually be uploaded. 
For example, if the file "shell.php" was uploaded to somesite.com, its location would likely be

http://somesite.com/uploads/pictures/pictures/[user]/[picture number]_shell.php 

The location of the file can also easily be found by using your browser's "view image" function where the image would appear regularly. 

===<3===
lots of lub to (irc.)r00tsecurity.org and all of #r00tsecurity

# milw0rm.com [2009-01-01]