Results 1 to 2 of 2

Thread: File Uploading Issue in BillMeLater.com worth $5000 Share/Save - My123World.Com!

  1. #1
    Webapp Secninja
    Join Date
    Aug 2012
    Location
    Ranchi, Jharkhand
    Posts
    41
    Blog Entries
    2

    Cool File Uploading Issue in BillMeLater.com worth $5000

    I want to share my finding on a recent issue I found in a subdomain of BillMeLater.com (a Paypal service).


    On 1st March, during my regular course of bug hunting in Paypal services, I found a file uploading issue that allowed me to upload files of certain extensions on the BillMeLater server.


    Initially I noticed the website was running an outdated version of DotNetNuke (an ASP.NET based CMS) with the file uploader enabled. Allowed extensions were:

    *. docx, *.xlsx, *.pptx, *.swf, *.jpg, *.jpeg, *.jpe, *.gif, *.bmp, *.png, *.doc, *.xls, *.ppt, *.pdf, *.txt, *.xml, *.xsl, *.css, *.zip, *.spin



    File Uploader on BillMeLater server


    So for testing purpose I uploaded a file on the server with some text content:



    I even tried to upload an ASP-shell within the restrictions but It didn't work on the server , If it had run then I could have got the possibility of command execution on the server.

    Anyway, I reported the issue to Paypal Security Team, they addressed the issue quickly with a reward of $5000 USD.

    Last edited by prakhar; 03-13-2013 at 04:25 AM.
    Hacking Wacking Sab Moh Maya Hai
    To view links or images in signatures your post count must be 10 or greater. You currently have 0 posts.

  2. #2
    Nice ... It seems we have one more official bounty hunter in among us :-D
    Orkut id: neo1981
    Blog: infosec-neo.blogspot.com
    Nothing is Impossible*


    *Conditions Apply

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •