Assalamualaikum WR.WB ,, Hai guys balik lagi sma gua KANG GALAU,Hehe dah lama g nulis artikel nih :v ,, kali ini gua mau ngajarin kelan tutor simple deface dengan CMS OpenCart ,, ya tutor ini terbilang cukup mudah karna cuman up file doang :v yok langsung aja intip tutornya ea :*
Dork : "Support By OPENCART"
Exploit : /admin/view/javascript/fckeditor/editor/filemanager/connectors/test.html
Yok ikutin step per step ea :*
1.Dorking dlu pake dork yang tersedia :*
2.Pilih site yang mau diexploitasi :*
3.Masukkin exploitnya : /admin/view/javascript/fckeditor/editor/filemanager/connectors/test.html
4.Jika vuln maka ada tempat upload mirip kyk FCKeditor
5.lalu di pojok kiri ada bacaan Connector lalu ubah menjadi php
6.Upload File html kalian ,
7.Jika berhasil maka ada bacaan "File Uploaded With No Error"
8.langsung aja akses ke site.com/namasclu.html
9.jeng jeng jeng :v deface berhasil :*
Ok Terima Kasih sorry g ada ss :v lagi males ss :v
Contact : www.facebook.com/chiray.go.id
demo web vuln :
http://www.superbikecarbonparts.com/admin/view/javascript/fckeditor/editor/filemanager/connectors/test.html
titip nick ea : KANG GALAU - Security Ghost :*
Hasil deface ane : http://www.superbikecarbonparts.com/z.txt
Hasil deface ane : http://www.superbikecarbonparts.com/z.txt
ConversionConversion EmoticonEmoticon