SpawCMS Editor - Arbitrary File Upload
| EKU-ID: 18444 | CVE: | OSVDB-ID: |
| Author: j4ck | Published: 2010-01-06 | Verified:
 |
| Download: | ||
Rating☆☆☆☆☆ |
| EKU-ID: 18444 | CVE: | OSVDB-ID: |
| Author: j4ck | Published: 2010-01-06 | Verified:
|
| Download: | ||
Rating☆☆☆☆☆ |
# Author: j4ck # j4ck from elitehackers.pl [j4ck.root@gmail.com] ####### just go to directory http:/server/[path]/spaw/demo.php then use image Upload, select all filetypes, and You can upload your evil PHP code, for example phpshell. Shell will be uploaded to selected directory.