BackBox Indonesia

BackBox Indonesia > Attacking > Web Attack > eXploit CMS Sitefinity Editor Dialogs File Upload Vulnerability
Full Version: eXploit CMS Sitefinity Editor Dialogs File Upload Vulnerability
You're currently viewing a stripped down version of our content. View the full version with proper formatting.

Nue Bhandell

04-26-2016, 08:22 AM
[Image: bug.jpg]
xixixhi siang gengs, sorry kalo tutorial cupu hihi #cumasharekok
*nyari Bug mulu, nyari pacarnya kapan* xD
iseng2 share exploit lama, kali aja masih crotz awkakw.

yg dh master minggir dlu beb  :heart:

Dork : 
inurl:"/Sitefinity/login.aspx"
"UserControls/Dialogs"
"Sitefinity: Login"

Exploit: /sitefinity/UserControls/Dialogs/DocumentEditorDialog.aspx

Ciri ciri Vuln o.O ?
Muncul form Upload kak  :D

[Image: Ag3acR5.png]

Langsung Upload Shell/file 

Shell/file Akses: http://www.target.co.li/Files/namafilemu

[Image: xdgQ0wN.png]

Live target: 
http://www.borrowmind.com/
http://www.belco.org/

Yuk yang regional Jakarta Join Grup FB:
BackBox Jakarta Team

xixihi kunjungin juga blog ane  :rolleyes: TKJ Cyber Art

semoga bermanfaat Gengs, maap kalo post cupu  [Image: smile.png] 
waktunya Nue dan tim Katakan Putus cabut dulu gengs,   [Image: cool.png] 
Bye~

SUMUR

koboi

04-26-2016, 09:06 AM
Mantep nih, perlu di coba (y)
Sering" nge post ya kang..

Nue Bhandell

04-26-2016, 09:33 AM
(04-26-2016, 09:06 AM)koboi Wrote: [ -> ]Mantep nih, perlu di coba (y)
Sering" nge post ya kang..

hehehe makasih bang budi :D
maaf ya kalo thread2 yg ane tulis di forum ini garing semua :'D

idk_ootb

07-03-2016, 06:58 PM
Di Insert ko gamau ya bang ?
BackBox Indonesia > Attacking > Web Attack > eXploit CMS Sitefinity Editor Dialogs File Upload Vulnerability