KCFinder version 2.2 suffers from a remote shell upload vulnerability.
24aa10372071f766797972627df47860c20e6dc0b6f692ce3160830e7115f8aa: # Exploit Title: kcfinder 2.2 upload shell :
: # Date: 15/10/2010 :
: # Author: saudi0hacker :
: # Software Link: https://kcfinder.sunhater.com/ :
: # Version: 2.x :
: # Tested on: linux b0x :
: # Greetz to : All of my Friends :
----------------------------------------------------------------------------------------------
[~] STEP 1 > Go to target link
https://localhost/KCFinder/browse.php
[~] STEP 2 > upload your shell as [shell.php.jpg]
[~] Th3 End
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed