API tools faq
paste
Advertisement
Kyfx

RTE Exploit web vuln upload

Kyfx
Jun 6th, 2015
1,614
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 2.54 KB | None | 0 0
raw download clone embed print report
  1. 1). Expolits:-
  2. site.com/rte/RTE_popup_file_atch.asp
  3. site.com/admin/RTE_popup_file_atch.asp
  4. 2). Go to google and type one of the following dorks.
  5.  
  6. inurl:rte/my_documents/my_files
  7. inurl:/my_documents/my_files/
  8.  
  9. 3). Open any site ..say
  10.  
  11. site.com/rte/my_documents/my_files/
  12.  
  13. 4). Now replace every thing after site.com with
  14.  
  15. rte/RTE_popup_file_atch.asp
  16.  
  17. so it will look like-
  18. site.com/rte/RTE_popup_file_atch.asp
  19.  
  20.  
  21. 1.)1). First 0Day Shell Upload ASP | PHP
  22.  
  23. # Google Dork -|-
  24. 'prod1.aspx?pid=' site:il or You can also create your own Dork
  25.  
  26. # Exploit Upload 1 -|-
  27. /admin/adminbanners.aspx
  28.  
  29. # Exploit Upload 2 -|-
  30. /admin/AdminPics.aspx
  31.  
  32.  
  33.  
  34. 2). Second 0day Upload
  35.  
  36. # Dork -|-
  37. inurl:/index.php?categoryID= site:il
  38. inurl:/index.php?ukey=auth
  39. inurl:/index.php?ukey=feedback
  40. inurl:/index.php?ukey=pricelist
  41. inurl:/index.php?ukey=auxpage_faq
  42. inurl:/shop/index.php?categoryID=
  43. inurl:ukey=product&productID=
  44.  
  45. # Exploit -|-
  46. /published/common/html/xinha/plugins/ImageManager/manager.php
  47. ‪#‎Exploit‬ -|-
  48. /published/common/html/xinha/plugins/ExtendedFileManager/manager.php
  49.  
  50. 3). Third 0day Upload Blind Sql Injection
  51.  
  52. This just Targets with havij or manually and admin page of the script is www.target.co.il/QAdmin
  53. # Dork -|-
  54.  
  55. intext:cybercity site:il
  56. inurl:index.php?id= <-- Page 4
  57. intext:medicine site:il
  58. inurl:index.php?id= <-- page 2
  59.  
  60.  
  61.  
  62. Image exploit
  63.  
  64. inurl:simple-upload-53.php
  65.  
  66.  
  67.  
  68.  
  69. 1). Get I.P. Address
  70.  
  71. First step is to get a I.P. address of a Website or a Server which you wanna hack. So for this we have to ping our target. To do this..
  72. Go to start
  73. Open CMD
  74. and type :-
  75. ping www.yourtarget.com
  76.  
  77. So, now you have Ip Address of your Target..
  78.  
  79.  
  80. 2). Search for Websites hosted on Targeted Server.
  81.  
  82. Now our second Step is to search for vulnerabilities in your targeted server or a website..So for this you have to do is:-
  83. Go to www.bing.com
  84. And in the search box type:-
  85. ip:[targets I.P server]
  86.  
  87. Example:- ip:74.145.128.97
  88.  
  89. Now by doing this will Display all the websites hosted on your targeted server..
  90.  
  91. 3). Search for vulnerabilities..
  92.  
  93. Now third step is to search for vulnerabilities..So for this you can use normal dorks such as .php?id= for SQL Injection Vulnerable websites or you can also try any other exploit. Example:-
  94. ip:74.145.128.97 .php?id=
  95.  
  96.  
  97. Now try to find a injectable hole or vulnerability in And hack into the Server or A website. That's it :)
  98.  
  99. You can do the same if you have other bugs for joomla and other scripts. This method might be old, but its still works as gold. I hope it helps..
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!