I here give an well-known Hacking Tutorials. But Here is a extension I give you in this tutorial.
First: You Find Via Google Search For This U use a inurl:
Example:
First: You Find Via Google Search For This U use a inurl:
Example:
inurl:"/portals/0"
Second: See the exploit
Providers/HtmlEditorProviders/Fck/fcklinkgallery.aspx
Third: Then U use it as a extension of vulnerable site
Example:
www.site.com/Providers/HtmlEditorProviders/Fck/fcklinkgallery.aspx
Then You will see the portal where it will ask you to upload.
Select the Third option File ( A File On Your Site).
After selecting the third option, replace the URL bar with below script:
javascript:__doPostBack('ctlURL$cmdUpload','')
After running this JAVA script:
You will see the option for Upload Selected File.
Now select you image file which you have renamed as Hack.jpg & upload here.
Go to main page and refresh...THAT'S IT
Have Fun with JRH Idea
Asked To Join JRH Idea Hacker Group in Facebook:
Extensions is added:
Now if you want to more advance then find a asp shell upload that in that site. Though I see most of the times they are not uploaded or if uploaded not work. So is it your luck to get it to deface a site completely.
Another for .aspx site shell download from here:
Another for .aspx site shell download from here:
If you not find it in net then just download from here:
Here Is a idea from me:
1. upload the shell as txt file.
2. Then use ? as the last of this txt file like asp.txt?
Ok That's all. Nothing more....Any ques then write in comment box.
কোন মন্তব্য নেই:
একটি মন্তব্য পোস্ট করুন