JAVASCRIPT WEB FOLDER MANAGEMENT~SHELL AND DEFACE UPLOAD VULNERABILITY.

This is another remote file upload vulnerability which allows a Hacker to upload a Shell or a Deface on the vulnerable website.

Dorks:
inurl:upload.jsp filetype:.jsp

Use both Google and Bing to get more vulnerable website. Choose any website after searching the dork, and upload your .jsp shell there or upload your Deface. On some websites you can even edit any page includeing the main index page with your own deface page. On some websites .php shell might also work.


Websites For you Guyz:
http://www.shnotary.gov.cn/notarial/UserFiles/Vote/MMYB1330972040320.jsp 
http://www.coalworld.net/detail/09/10/30/00000006/berk.jsp http://jangbiya.com/img/upload/jsp.jsp