PHPAuctionSystem - Arbitrary File Upload

Author: Sid3^effects
type: webapps
platform: php
port: 
date_added: 2010-06-15 
date_updated:  
verified: 0 
codes:  
tags: 
aliases:  
screenshot_url:  
application_url: 

Name : PHPAuctionSystem Upload Vulnerability
Date : june, 16 2010
Vendor url :http://www.phpauctions.info/
Critical Level     : HIGH
Author : Sid3^effects aKa HaRi <shell_c99[at]yahoo.com>
special thanks to : r0073r (inj3ct0r.com),L0rd CruSad3r,MaYur,gunslinger_
greetz to :All ICW members and my friends :) luv y0 guyz
#######################################################################################################


PHPAuctionSystem had various vulnerablities which was found


#######################################################################################################

Xploit:Upload Vulnerability

 Step 1: register as a user :)

 Step 2: goto "sell an item" option

 DEMO URL :http://[site]/select_category.php?

 Step 3: post ur evil-code in the item description

 Step 4:check your item and ur evil script is executed and upload your shell and enjoy :P

 demo url :http://[site]/sell.php :)


###############################################################################################################
# 0day no more
# Sid3^effects