 |
Menu |
 |
|
 Home |
| |
|
 Discussions |
| |
|
 Tools |
| |
|
| Affiliates |
| |
|
 Content |
| |
|
 Info |
| | |
|
|
|
|
|
User Info |
|
 Membership:
 Latest: MichaelSnaRe
 New Today: 0
 New Yesterday: 0
 Overall: 9144
 People Online:
 Visitors: 59
 Members: 0
 Total: 59
|
|
|
|
|
|
Full disclosure |
|
CyberDanube Security Research 20251014-0 | Multiple Vulnerabilities in Phoenix Contact QUINT4 UPS
apis.google.com - Insecure redirect via __lu parameter(exploited in the wild)
Urgent Security Vulnerabilities Discovered in Mercku Routers Model M6a
Re: Security Advisory: Multiple High-Severity Vulnerabilities in Suno.com (JWT Leakage, IDOR, DoS)
Security Advisory: Multiple High-Severity Vulnerabilities in Suno.com (JWT Leakage, IDOR, DoS)
[SBA-ADV-20250730-01] CVE-2025-39664: Checkmk Path Traversal
[SBA-ADV-20250724-01] CVE-2025-32919: Checkmk Agent Privilege Escalation via Insecure Temporary Files
CVE-2025-59397 - Open Web Analytics SQL Injection
Re: [FD]Full Disclosure: CVE-2025-31200 & CVE-2025-31201 – 0-Click iMessage Chain ? Secure Enclave Key Theft, Wormable RCE, Crypto Theft
Re: Full Disclosure: CVE-2025-31200 & CVE-2025-31201 – 0-Click iMessage Chain ? Secure Enclave Key Theft, Wormable RCE, Crypto Theft
Re: Defense in depth -- the Microsoft way (part 93): SRP/SAFERwhitelisting goes black on Windows 11
Re: [FD]: "Glass Cage" – Zero-Click iMessage ? Persistent iOS Compromise + Bricking (CVE-2025-24085 / 24201, CNVD-2025-07885)
Re: [FD]Full Disclosure: CVE-2025-31200 & CVE-2025-31201 – 0-Click iMessage Chain ? Secure Enclave Key Theft, Wormable RCE, Crypto Theft
Samtools v1.22.1 Uncontrolled Memory Allocation from Large BED Intervals Causes Denial-of-Service in Samtools/HTSlib
Samtools v1.22.1 Improper Handling of Excessive Histogram Bin Counts in Samtools Coverage Leads to Stack Overflow
|
|
|
|
|
|
 |
|
 |
 |
|
 |
IT Security and Insecurity Portal |
|
|
Upload shell in vb4 |
|
 Posted: Sun May 16, 2010 7:37 pm |
 |
|
| delta |
| Advanced user |
 |
|
| Joined: Jan 11, 2009 |
| Posts: 60 |
|
|
|
 |
|
 |
|
Already tried every known options. Using plugin, xml, etc, but none worked.
If I try uploading a xml style(old version) with shell i get this:
| Quote: | | The text for the template contains potentially unsafe code. Text in curly style php string substitution expressions (like {$vbulletin->somevalue}) is only allowed to contain the characters in a-z, A-Z, 0-9, square brackets ( [] ), and quotes ( "' ). This prevents possible arbitrary code execution when the phrase is processed. |
Anyone know how can i uplod a shell in this version of vbulletin?
I have all admin permissions. |
|
|
|
|
| Posted: Sun May 16, 2010 9:00 pm |
|
|
| vince213333 |
| Advanced user |
 |
|
| Joined: Aug 03, 2009 |
| Posts: 737 |
| Location: Belgium |
|
|
|
|
|
|
|
|
|
|
| Posted: Sun May 16, 2010 9:07 pm |
|
|
| delta |
| Advanced user |
|
|
| Joined: Jan 11, 2009 |
| Posts: 60 |
|
|
|
|
|
|
|
| Already tried before, but when I open ajax.php only get "There was an error uploading the file, please try again!" |
|
|
|
|
| Posted: Sun May 16, 2010 9:17 pm |
|
|
| vince213333 |
| Advanced user |
|
|
| Joined: Aug 03, 2009 |
| Posts: 737 |
| Location: Belgium |
|
|
|
|
|
|
That's what you should get  It's because you visit the page which executes the script but you didn't specify a file to upload. You might want to have a look at the code if you know something about PHP, it's actually quite easy to understand. But just follow the rest of the tutorial and you'll have your shell up in no time |
|
|
|
|
|
|
|
|
| Posted: Sun May 16, 2010 10:11 pm |
|
|
| delta |
| Advanced user |
|
|
| Joined: Jan 11, 2009 |
| Posts: 60 |
|
|
|
|
|
|
|
Yeah, I know, but already tried to upload the file before, always get a xml error.
| Quote: | O documento XML não está associado a estilos. A estrutura do documento é representada abaixo.
−
<error>
Sua solicitação não pode ser processada porque um marcador de segurança foi considerado inválido.<br />
<br />
Se isso ocorreu de repente, por favor <a href="sendmessage.php">informe o administrador</a> e descreva a ação que você executou antes de obter esta mensagem de erro.
</error> |
|
|
|
|
|
| Posted: Sun May 16, 2010 10:38 pm |
|
|
| vince213333 |
| Advanced user |
|
|
| Joined: Aug 03, 2009 |
| Posts: 737 |
| Location: Belgium |
|
|
|
|
|
|
When exactly did you get that error?  |
|
|
|
|
| Posted: Sun May 16, 2010 10:49 pm |
|
|
| delta |
| Advanced user |
|
|
| Joined: Jan 11, 2009 |
| Posts: 60 |
|
|
|
|
|
|
|
| After the file being "uploaded" by ajax.php |
|
|
|
|
| Posted: Sun May 16, 2010 10:56 pm |
|
|
| vince213333 |
| Advanced user |
|
|
| Joined: Aug 03, 2009 |
| Posts: 737 |
| Location: Belgium |
|
|
|
|
|
|
| Hmm if you want, you can pm me the site url with the admin details and I can try and upload a shell for you? |
|
|
|
|
| Posted: Sun May 16, 2010 11:16 pm |
|
|
| delta |
| Advanced user |
|
|
| Joined: Jan 11, 2009 |
| Posts: 60 |
|
|
|
|
|
|
|
| Sry, I cant, I'm sure that this method don't work for this forum, I need other way to upload the shell. |
|
|
|
|
www.waraxe.us Forum Index -> vBulletin Board
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
|
All times are GMT
Page 1 of 1
|
|
|
|
Powered by phpBB © 2001-2008 phpBB Group
|
|
|
|
|
|
