lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite for Android: free password hash cracker in your pocket
[<prev] [next>] [day] [month] [year] [list]
Message-ID: <20070105071429.11367.qmail@securityfocus.com>
Date: 5 Jan 2007 07:14:29 -0000
From: null_hack@...oo.com
To: bugtraq@...urityfocus.com
Subject: Uber Uploader 4.2 Arbitrary File Upload Vulnerability

++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
|
|Uber Uploader 4.2 Arbitrary File Upload Vulnerability
|Gamma Security Team
|www.nullak.com	
|www.gammahack.com
|Discovered:Null
|Official Site:http://sourceforge.net/projects/uber-uploader
|Download Link:http://belnet.dl.sourceforge.net/sourceforge/uber-uploader/Uber-Uploader_4.2.zip
|Risk:High
|Type:Arbitrary File Upload Vulnerability
|Vuln:
|1-First Rename Your shell.php to shell.phtml then upload it and use it
|(This Script Do Not Allow To Upload php But U Can Upload phtml File)
|
|
|Contact:null_hack@...oo.com
|
|Gr33tz to : All Iranian Hackerz

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ