[Exploit]  [Remote]  [Local]  [Web Apps]  [Dos/Poc]  [Shellcode]  [RSS]

# Title : Ultimate Fade-in slideshow 1.51 Shell Upload Vulnerability
# Published : 2009-08-18
# Author : NeX HaCkeR
# Previous Title : phpfreeBB 1.0 Remote BLIND SQL Injection Vulnerability
# Next Title : Re-Script v.0.99 Beta ( listings.php op ) SQL Injection Vulnerability


==================

NaMe: Ultimate Fade-in slideshow 1.51  <= Shell Upload Vulnerability
Author : NeX HaCkeR
Contact: c2l@hotmail.com

==================

Script site : http://www.dynamicdrive.com

==================

ExplOiT:

1: register in site

http://www.xxx.com/path/user_register.php

2: go to your Add New Events

http://www.xxx.com/path/events_uadd.php

Now upload shell.php

==================

Live DemO:

http://www.deals2cops.com



+========================================================+
|                                                                                   
| Greetz.: ~ CrazyMaN ~ Dr.KAsBeR ~ DaMi ~                                          
|               And All Friends!!!!                                         |
+========================================================+

# www.Syue.com [2009-08-18]