Cara Deface FormCraft File upload

              Cara Deface FormCraft File Upload

Hai gaes ketemu lagi sama Mr.Greatskiller
 udah lama gak post
Biasa faktor males :v
Langsung ae
Dork :
- inurl:"wp-content//plugins/formcraft/"
- inurl:"wp-content//plugins/formcraft/" site:.de
(sisanya kembangin lagi ya Om dorknya, biar dapet banyak web Vuln and Verawan :v wkwkw )

Exploit :

1. wp-content/plugins/formcraft/file-upload/server/php/upload.php
2. wp-content/plugins/formcraft/file-upload/server/php/


Script CSRF : Disini
*Save AS: .html
*ganti target.co.li ~> menjadi url link target sobat

Cari target menggunakan dork di atas
Lalu masukkan exploitnya
Sekarang tinggal apa ? Ya lo masukin target csrf lah lu upload shell atau script lo

Shell Access :
target.co.li/wp-content/plugins/formcraft/file-upload/server/php/files/namashell.php

3 comments: