ReVou Twitter Clone - Arbitrary File Upload

Author: S.W.A.T.
type: webapps
platform: php
port: 
date_added: 2008-12-20  
date_updated:   
verified: 1  
codes: OSVDB-51706;CVE-2008-6751  
tags:   
aliases:   
screenshot_url:   
application_url:   

raw file: 7531.txt  

#########################################################
---------------------------------------------------------
Portal Name: ReVou Twitter Clone Arbitrary File Upload Vulnerability
Version: All version
Vendor : http://www.revou.com/
Demo: http://www.revou.com/demo/
Author : S.W.A.T. , svvateam@yahoo.com
Vulnerability : wWw.BaTLaGH.CoM
---------------------------------------------------------
#########################################################
[Mime Check Bypass]:
Create A File Called name.php And Fill It As Below:
----------
GIF89aP;
[php_shell_code]
----------
Save This File !
----------
Go To "My photo" (link: http://www.revou.com/demo/settings/my_photo)

Select Your Shell & Upload !
----------
Done ! :-)
---------------------------------

# milw0rm.com [2008-12-21]