Camera Life 2.6.2b4 - Arbitrary File Upload

Author: Mi4night
type: webapps
platform: php
port: 
date_added: 2008-09-26 
date_updated: 2016-12-21 
verified: 1 
codes: OSVDB-49892;CVE-2008-4366 
tags: 
aliases:  
screenshot_url:  
application_url: http://www.exploit-db.comcameralife-2.6.2b4.zip

[+] CameraLife-2.6.2b4 Arbitrary File Upload Vulnerability

[+] Author:Mi4night

[+] Version:cameralife-2.6.2b4

[+] Download Script:
[+] http://sourceforge.net/project/showfiles.php?group_id=70910&package_id=70316&release_id=628868

[+] Exploit:
[+] http://127.0.0.1/cameralife/images/photos/upload/Mi4night/yourshell.php

[+] Description:
[+] After registering you can upload php files which you can access just like in the exploit section! Change Mi4night with your username.

[+] Greets to : nuclear, cAs,zYzTeM, Sys32-Hack, Pepe, G-Emp!RE, ThaWhiteNigga, *Z.i.P*,THE_MAN, I-O-W-A, Digitalfortress, DiGitalX, sys32r, pentest, Pig, d3v1l, watchdog, Gibon

# milw0rm.com [2008-09-27]