Friday, January 13, 2017

Tutorial Deface Metode Wp Themify Arbitrary File Upload

./Mr.Proxy January 13, 2017 Deface

Hallo Guys :D
Kali ini ane bakal Share Tutorial deface metode Wp Themfiy Arbitrary File Upload

Langsung Saja dah ke Tekapeh :V

Bahan :

Dork :
inurl:"/wp-content/themes/Elemin/"
inurl:"/wp-content/themes/Bloggie/"
inurl:"/wp-content/themes/Tisa/"
Exploit : http://target.co.li/nama-tema/themify/themify-ajax.php
CSRF :
CSRF manual : Download Disini
CSRF Onlen : Touch Me Senpai :(
Shell Backdoor
Script Deface
Kuota, Laptop/Komputer
Nyawa :V

Tutorial :

Masukan Dork di atas ke mesin pencarian kalian ( Google )
Cari Target yang perawan :D
Masukan Exploit nya
Contoh : http://target.co.li/wp-content/themify/nama-tema/themify/themify-ajax.php
Jika Vuln maka akan Blank Putih ( Blank White )
Masukan Link kedalam CSRF
Setelah itu kalian pilih file yang kalian mau upload
Lalu kalian Klik upload
Lalu panggil File yang kamu tadi upload
Cara manggilnya : Maling oi maling ;V becanda ane :V
Cara manggilnya : wp-content/themify/nama-theme/uploads/filekamu.php
Sukses , Eksekusi Lah tuh web :V

Mungkin sampai disini saja tutorialnya dan semoga bermanfaat buat kalian :)

See You Next Time :*

Sumber : surgoBLOG

About ./Mr.Proxy
Templatesyard is a blogger resources site is a provider of high quality blogger template with premium looking layout and robust design. The main mission of templatesyard is to provide the best quality blogger templates.

Latest

./Mr.Proxy

Friday, January 13, 2017

Tutorial Deface Metode Wp Themify Arbitrary File Upload

No comments:

Post a Comment

Beauty

About & Social

Garooda Security Squad

Popular

Sponsor

Categories

Tags

Categories

Popular Posts

Latest

./Mr.Proxy

Friday, January 13, 2017

Tutorial Deface Metode Wp Themify Arbitrary File Upload

Subscribe via email

No comments:

Post a Comment

Beauty

About & Social

Garooda Security Squad

Popular

Sponsor

Categories

Tags

Categories

Popular Posts