LATEST: We are offering PENTESTING and WEB DEVELOPMENT service with low price Learn More

2/16/2012

KindEdior Remote File Upload exploit



KindEdior Remote File Upload exploit 

image_2317127.original.jpg (250×251) 
Google Dork :
 intitle:index of? inurl:kindeditor
inurl:examples/uploadbutton.html

 exploit:http://www.vulnrabewebsite.com/path/kindeditor/examples/uploadbutton.html

Choose any website from google search results and goto vulnrabel url
like http://www.vulnrabewebsite.com/kindeditor/examples/uploadbutton.html
now click on upload n select your file, it will be automaticly uploaded,
 and you'll got your uploaded file Link/URL there, and if you can't get your uploaded file link then goto http:// www.vulnrabewebsite.com/path/kindeditor/attached/file/
and you'll se lot of folders here, click on last folder and in the folder click on last file, its your uploaded file ..Enjoy & Must leave a Comment if you want more exploit like that, because 
new article's posting depends on old article's popularity

Live Demo : 
http://www.arimlab.com/themes/default/js/kindeditor/examples/uploadbutton.html

About Author:

Hi, Its me Aamir Khan, Owner of HACKING ARTICLES. I am an Ethical Hacker, Pro Blogger, addicted Web Developer and Security Researcher with experience in various aspects of Information Security. I am from Pakistan.Hacking is my passion and i wanna myself to be called as a LEGEND in this field.

Follow him @ Twitter | Facebook


0 comments:

Post a Comment

Your feedback is always appreciated. We will try to reply to your queries as soon as time allows.
Note:
1. Make sure to click the "Subscribe By Email" link below the comment to be notified of follow up comments and replies.
2. Please "Do Not Spam" - Spam comments will be deleted immediately upon our review.
3. Please "Do Not Add Links" to the body of your comment as they will not be published.
4. Only "English" comments shall be approved.
5. If you have a problem check first the comments, maybe you will find the solution there.