##############################################################################
#Title: osCMax 2.0 (fckeditor) Remote File Upload # |
#Vendor: http://www.oscdox.com # |
#Dork: "Powered by osCMax v2.0" , "Copyright @" "RahnemaCo.com" # |
############################################################################## |
#Email: Bug@ITSecTeam.com # |
#Website: http://www.itsecteam.com # |
#Forum : http://forum.ITSecTeam.com # |
#Original Advisory: www.ITSecTeam.com/en/vulnerabilities/vulnerability20.htm # |
#Thanks: r3dm0v3, limpizik_neo # |
############################################################################## |
#DESCRIPTION (by vendor):##################################################### |
osCMax v2.0 is a powerful e-commerce/shopping cart web application. There are many advantages to using osCMax as your |
e-commerce/shopping cart for your web site. It has all the features needed to run a successful internet store and can |
be customized to whatever configuration you need. |
osCMax v2.0 is based on osCommerce 2.2 RC2a. |
#BUG:######################################################################### |
file FCKeditor/editor/filemanager/browser/default/connectors/php/config.php: |
25: $Config['AllowedExtensions']['File'] = array() ; |
26: $Config['DeniedExtensions']['File'] = array('php','asp','aspx','ascx','jsp','cfm','cfc','pl','bat','exe','dll','reg') ; |
It is still to upload files with some dangerous extensions like php3 ! |
#EXPLOIT:#################################################################### |
http://site.com/path_to_oSCMax/FCKeditor/editor/filemanager/browser/default/connectors/test.html |
Post Published: 16 March 2010
Author: Georges Kut
Found in section:
Security
Tags: osCMax
![Joomla Component XOBBIX [prodid] SQL Injection Vulnerability](http://news.dreamings.org/wp-content/themes/news-magazine-theme-640/cropper.php?src=http://news.dreamings.org/wp-content/uploads/2010/02/Coffee-Time-150x150.png&h=50&w=50&zc=1&q=95)