"Tmedit Popuop" Deface and Shell upload vulnerability

“Tmedit Popuop” Deface and Shell upload vulnerability
zac+efron+2012.jpg (642×374)
Dork: inurl:/editor/tmedit/popups
Exploit Path : /editor/tmedit/popups/InsertFile/insert_file.php
#start 🙂
open Google.com or Bing.com and type this dork inurl:/editor/tmedit/popups
i got 9740 vulnrable results, now select any site from seacrh result and look for upload option on that Page now upload you shell, deface page, or anyfile there,
After uploading your  file  you’ll see your uploaded file’s url there, if you are not getting any perview url then goto /images directory to view your uploaded file 
for example : http://vulnrablesite.com/images/yourfilehere
Live Demo : 
Result : 
*Note for Hackers [Please Sumbit your exploit here, its will publish with your name and Link]

Read more: "Tmedit Popuop" Deface and Shell upload vulnerability

Incoming search terms

Story added 8. April 2012, content source with full text you can find at link above.