Posts
Tutorial Deface Untuk Pemula
simple tutor/exploit deface CMS upload file dari saya....
__ __ __ __ __ __ __ __ __ __ __ __ __ __ __ __ __ __ __ __ __ __
| Application Info:
| Name: Inside hacker
| Autor: Vans skaters Inc
|__ __ __ __ __ __ __ __ __ __ __ __ __ __ __ __ __ __ __ __ __ __
| Vulnerability Info:
| Type: Remote Arbitrary File Upload
| Risk: High
| Dork:inurl:/editor/editor/filemanager/
simple tutor/exploit deface CMS upload file dari saya....
__ __ __ __ __ __ __ __ __ __ __ __ __ __ __ __ __ __ __ __ __ __
| Application Info:
| Name: Inside hacker
| Autor: Vans skaters Inc
|__ __ __ __ __ __ __ __ __ __ __ __ __ __ __ __ __ __ __ __ __ __
| Vulnerability Info:
| Type: Remote Arbitrary File Upload
| Risk: High
| Dork:inurl:/editor/editor/filemanager/
Exploit:http://target.com/editor/editor/filemanager/upload/test.html
dork diatas ^ isi kn d google, cri trget...klo dpt
ex:http://www.dircomext.com/
inject kn exploit ny d atas....
jdinya.......
ex : http://www.tysk.ee/include/editor/editor/filemanager/upload/test.html
pada [Select the "File Uploader" to use: ]
trus upload html kmu.....
klik send it to server, kalo sukses or terapload maka pada kotak [Uploaded File URL:] akan memberikan patch dmn file kmu terupload
ex yg kluar pada kotak [Uploaded File URL:] : /UserFiles/html_kamu.html
maka hasil nya ada di http://target.com/UserFiles/html_kamu.html
mudah kn....hehehehehe
ex hasil ane : http://www.tysk.ee/failid/Image/takbir.htm
silahkan d coba n mdah2an bsa d mengerti...... :D:D
No comments:
Post a Comment
[-] Terimakasih atas kunjungan nya.
[-] Jangan lupa komentar Gan.
[-] Saling Follow Blog akan di follow back 100% aman.