Deface Wordpress Themes Sportimo File Upload

Monday, June 24, 2019 4 Comments Edit
Hallo semuanya kali ini saya akan share Tutorial Deface Wordpress Themes Sportimo

Oke langsung weh..

Bahan - Bahan
- Dork : inurl:/wp-content/themes/sportimo-theme
- Exploit : /wp-content/themes/sportimo-theme/functions/upload-handler.php
- CSRF : Disini *save dengan extensi .html
- Shell Backdoor / Script Deface

Pertama - tama kalian dorking site nya terlebih dahulu menggunakan dork di atas, tapi disini saya mempunyai live target
Live Target : http://ichd.ma/
Selanjutnya masukkan exploit nya
http://ichd.ma/wp-content/themes/sportimo-theme/functions/upload-handler.php
Jika muncul tulisan error itu tandanya vuln.
Selanjutnya kita masukkan sitenya ke CSRF.
Buka CSRF nya di browser anda, lalu pilih Shell Backdoor/Script Deface kalian.
Klik upload, jika sukses maka akan muncul nama file yang kalian upload
Contoh :
Tinggal kita akses file nya di
site.com/wp-content/uploads/tahun/bulan/filekalian
Contoh : http://ichd.ma/wp-content/uploads/2019/06/dot.html

Oke mungkin cukup sekian tutorial kali ini
Terima Kasih



4 Responses to " Deface Wordpress Themes Sportimo File Upload"

  1. seo masterDecember 10, 2019 at 11:21 PM

    Thanks for your insight for your fantastic posting. I’m glad I have taken the time to see this. wordpress plugin

    ReplyDelete
  2. Firman HadiDecember 27, 2020 at 12:20 AM

    gokil bet wordpress sportimo

    ReplyDelete
  3. Brian21January 4, 2021 at 12:42 AM

    Many people think before you buy Botulinum toxin A you have to see a dermatologist for a prescription and you have to go a pharmacy to ask for the product with a lot of fear and trembling. Which all these have been made easy and safe online where you order your product without fear and you pay from home directly. We also made it possible for you to buy botulinum toxin A online with common payment methods such as; Bitcoins, Paypal and other discreet methods of payment. Buy Botox Online With Discreet Home Delivery
    Botox can aid medical conditions to improve muscles relaxation within the face, Top selling 100%. Authentic at the best wholesale cost. Fast worldwide shipping & secure online shopping. Buy Botox Online, Buy Botox Online With PayPal, Buy Botox Online With Credit Card
    CONTACT US:
    Website: http://www.arjunihair.com
    Email: arjunibeautystore@protonmail.com
    Phone: +17622232514

    ReplyDelete
  4. UnknownJanuary 19, 2021 at 8:11 AM

    Welome to millinium online pharmacy Purchase Dexedrine Online Without Prescription Legit in a Legal Way.
    Dexedrine is a drug used to treat Attention Deficit Hyper-innovativeness Disorder (ADHD). It changes the measure of certain common substances in the cerebrum. Dextroamphetamine likewise has a place with a class of medications known as energizers. it encourages increment your capacity to remain concentrated on a movement, focus improves ones listening aptitudes. More to that this medicine is likewise used to treat some dozing issue (narcolepsy) which encourages you remain conscious during the day. anyway it ought to be utilized to hold off rest or to treat tiredness in those that don’t have a rest issue. Purchase Dexedrine Online Here Without Prescription.

    Best Place to Buy Dexedrine Online Without Prescription–Dexedrine available to be purchased Here Safely and Legit Buy ADHD Medication Online
    Here, you can securely and safely purchase Dexedrine online without remedy. Our Products are of the best quality from FDA Approved offices. Bundling is sheltered and sending is 100% attentive and conveyance is quick. We transport with different expedited delivery conveyance administrations like DHL, FedEx, EMS…
    www.milliniumpharmacy.com

    ReplyDelete

Subscribe to: Post Comments (Atom)

Iklan Atas Artikel

Iklan Tengah Artikel 1

Iklan Tengah Artikel 2

Iklan Bawah Artikel