Deface CMS Wordpress | Add Admin






langsung aja ya gan gak usah banyak cocot :v

Bahan :

Dork :  Inurl:/wp-login.php?action=register
            Inurl:/register-2/
            inurl:/wp-content/themes/averin
            inurl:/wp-content/themes/dagda
            Intext: Powered by Wordpress
            ( kembangin dork nya ya mas )

Exploit : /wp-admin/theme-editor.php

Rokok surya + Kopi hitam biar lu gk stress :v


Tutorialnya :

Dorking di google pilih salah satu site





Kalo vuln maka kayak gini, klik register/daftar






Isi form nya dengan email lu yang aktif terus klik register /daftar




Buka email cari pesan konfirmasi register tadi terus klik link konfirmasinya




Tinggal login dah taraaaa masuk dashboard :v





Upload shell gimana? Use your brain bro masa di suapin terus :v

Nih hasil deface saya http://www.approachingwomenfast.com/


Sekian.




Post a Comment

Thanks for sharing this quality information with us. I really enjoyed reading. Will surely going to share this URL with my friends. logo design

[blogger]

Zaenal Arifin

{facebook#https://www.facebook.com/darkvenom.gov} {twitter#https://twitter.com/steviefar07} {google-plus#https://plus.google.com/u/0/117673850650242989379} {youtube#https://www.youtube.com/c/KaizenJavaHaxor}

Contact Form

Name

Email *

Message *

Powered by Blogger.
Javascript DisablePlease Enable Javascript To See All Widget