Skip to main content

Joomla Com_media Shell Bypass uploading tutorial

Hello World ; Soree Fans, Please Say Hello Haters ;*
Lanjut Walking Blog geenggs, yoo Kali ini Nue bakal Share Tutorial Upload Shell di eXploit com_media dengan Cara Bypass ekstensi Shell
Bagi agan yang belum tau mengenai seputar exploit / bug yg ada pada CMS Joomla, bisa ke artikel yang dulu Nue posting: Tutorial Deface Joomla menggunakan com_media

Let's CroOtz ,Baby ;p


Untuk Dork dan Cara eksploitasinya silahkan Cek di link artikel yang gua kasih di atas yoo..
disini Nue tinggal bahas cara salah satu Bypass Ekstensi shellnya doang, biar bisa Upload shell :D

eXploit:
/index.php?option=com_media&view=images&tmpl=component&fieldid=&e_name=jform_articletext&asset=com_content&author=&folder=

Shell Bypass: rename shell jadi shell.PhP.txt

1. Pertama Dorking dan temukan target yang Vuln
2. abiss ituu yaa rename (ubah ekstensi Shell .php lu , jadii contoh.PhP.txt)
3. jozz langsung Upload shell yang dh lu ubah tadii ekstensinye deh :p


4. Akses Shell o.O ?? target.c0li/images/namashell.PhP.txt


dan tarraaa ,, target sekarang bisa kite eksploitasi sesuka lu mblo.
Udeh dulu ye enyaak, Babeh , encang, encing, engkong, om ,tante, abang , dan BossQ,,,
gua mau lanjut Maraton Bobo dulu ~ wkwkkw

Stay Cool and Keep ./Crotz , gaes <(")

bila ada kesalahan mohon di maafkan dan dibenarkan di kolom komentar kak. 
bila ada kritik, dan pertanyaan langsung aja kak ke wall fanspage kami: TKJ CYBER ART
Nue cuma niat untuk Share Tutorial, yg bertujuan utk membantu para pemula kek Nue :')
Happy Joomla Defacing Om ~
Sekian dan semoga bermanfaat .. terimakasih


Source and Thanks to: redsm0ke zone | Home Of 3xploit  


./Nuenomaru

Cepat Bangkit dan berFikir, semua tak berakhir disini ^_^
Editing By: ~Yiyop[s]

Pokoknyee mah Om yiyop Bijak, kalo lagi Sange wkwkwk.







Visit and follow :

FP         : TKJ Cyber Art
G+         : TKJ Cyber Art
youtube : TKJ Cyber Art
BBM      : C0018D1A2
Line       : http://line.me/ti/p/%40hjl8740i

Comments

Popular posts from this blog

How to install CUCM 8.0.2 on Vmware | Call Manager Installation Guide

CUCM is a software-based call-processing component which serves as the main engine for Cisco VOIP infrastructure. This article can be used as a reference for your CUCM installation, This article can be used for any version of CUCM like 8.0, 8.6, 9.1 or 10.5. Let's jump to the installation directly. Make sure you have.. Before we begin, I want to make sure that you have the below softwares installed in your machine. Vmware Workstation Bootable Cisco Unified Call Manager ISO File GNS3 (Optional) - To Configure NTP Server A minimum of 2GB RAM and 80 GB HDD for Virtual Machine At this stage I assume that you have both Vmware Workstation and GNS3 installed. During installation you will be prompted to enter NTP server details. Follow the below steps to make a router to act as a NTP server in GNS3. Open ncpa.cpl from Run window. Find a Vmware network adapter. Double click the adapter and configure a private range IP, for example 120.0.0.1. Next open GNS3, Put a router and take console. Pa...

6 Url Shorteners Yang Menghasilkan Uang Selain AdF.ly

Salam sobat GBX nah di pertemuan kita kali ini ane akan membahas 6 Url Shorteners Yang Menghasilkan Uang Selain AdF.ly seperti yang anda tau adf.ly adalah url shortener terbaik yang membayar kita karena telah menggunakan jasannya, tapi selain adf.ly ternyata masih banyak lagi Url Shorteners Yang Menghasilkan Uang, sekarang kita lihat saja ulasan di bawah.  6 Url Shorteners Yang Menghasilkan Uang Selain AdF.ly 1. Adfly adf.ly Yup yang ini memang patut diletakkan di peringkat satu ya, Adfly sudah ada dan terpercaya sejak bertahu-tahun lalu dan sudah menjadi pemendek link / url terbaik selama ini.  Selain menyediakan fasilitas penyingkat url, adfly juga merupakan situs penghasil dollar yang sudah sangat terkenal (melalui Pay Per Click dan Referal). Banyak juga teman-teman di internet yang sudah sukses mendapatkan dollar lho. (adfly ini sudah terpercaya dan ya semoga terus aman begitu dech). Komisi yang telah anda dapatkan dari adfly ini bisa langsung di transfer ke pay...

Ethical Hacking - Cisco HSRP with Kali linux - Example Demonstration and Security precautions

The Hot Swappable Router Protocol (HSRP) is a way to build redundancy into your network by allowing two or more routers to continuously test each other for connectivity, and take over if a router fails.As multiple routers can participate in the HSRP group, there has to be an election to determine who's the primary router. This HSRP election is based on a priority value (0 to 255) that is configured on each router in the group. By default, the priority is 100. The router with the highest priority value (255 is highest) becomes the active router for the group. If all router priorities are equal or set to the default value, the router with the highest IP address on the HSRP interface becomes the active router. In this post, we are going to make our Kali machine a HSRP participant and to become the active router by setting the highest priority to it. Yersinia tool (in built in Kali) helps us to perform this test with ease. For more information on HSRP, please refer  RFC 2281 Yersinia Y...