Dork :
/assets/global/plugins/jquery-file-upload/
inurl:"assets/global/plugins/jquery-file-upload/"
intext:"assets/global/plugins/jquery-file-upload/"
inurl:"/assets/global/plugins/jquery-file-upload/server/php/files/"
Exploit : /assets/global/plugins/jquery-file-upload/server/php/
CSRF Untuk Upload : Here 
Live Demo : http://www.puglisiweb.com.br/
Akses Shell : Path/Path/plugins/jquery-file-upload/server/php/ 

Di dalam CSRF jangan lupa edit
http://www.target.com/assets/global/plugins/jquery-file-upload/server/php/ dengan targetmu. & simpan dengan .html. Jika sukses maka akan ada nama shell mu.

 
Axact

Axact

Vestibulum bibendum felis sit amet dolor auctor molestie. In dignissim eget nibh id dapibus. Fusce et suscipit orci. Aliquam sit amet urna lorem. Duis eu imperdiet nunc, non imperdiet libero.

Post A Comment:

0 comments: