Home of WhiteHat CyberArmy
 
HomeFAQSearchMemberlistUsergroupsRegisterLog in

Share | 
 

 Upload Vulnerabilites (MEGA THREAD)

Go down 
AuthorMessage
W-P
Admin
avatar

Posts : 80
Join date : 2013-11-12
Age : 32
Location : Cyber World

PostSubject: Upload Vulnerabilites (MEGA THREAD)   Tue Nov 12, 2013 12:47 pm

Q: What are they?


A: They are files uploaded on websites that allow you to upload your files.


Q: How can I use them to hack a website or deface it?


A: Most of them don't accept php and html so check if it accepts them.


If it does, upload your shell (php) or your defacement (html or php)

depending on what the site allows and you have hacked it!


If it doesn't accept these file types you can either upload your
defacement as an image or you can upload your shell as shell.php.jpg and
then change it to shell.php once uploaded (A tut for that could be
useful)



Q: Is there another way to use these?


A: you can upload your jdb or phish passwords pretending to be the owner of the site.

====================================

OpenCart vulnerability


1) Use this google Dork:
Code:
Index of /fckeditor/editor/filemanager/connectors/
2)Now open a site that shows files and folders. Navigate to connectors if it's not there already and press the file test.html

3) Now, change the settings from ASP to PHP, select where your file will
be uploaded (default is root), browse your shell and press upload. Now
you have a shell uploaded!

4) If it doesn't let you upload php, upload your deface in html or if
that's disabled too, try uploading it as an image or use some special
shells with image extentions.

5) If none of these work then your target is not vulnerable!

====================================

Drupal Remote File Upload Vulnerability

1) Search this google dork:

Code:
inurl:"/imce?dir=" intitle:"File Browser"
2) Click on any link that its title is "File Browser" among with something else

3) Click on the "Upload" button

4) Upload your Deface Page

5) Click the link in the box to View the URL

You can also upload a shell as shell.php.html and then change it to shell.php to hack the website.

====================================

RTE Webwiz Vulnerability

1) go to google.com and search one of these two google dorks.

Code:
inurl:rte/my_documents/my_files
Code:
inurl:/my_documents/my_files/
2) When you find a site change the url from

Code:
site.com/rte/my_documents/my_files/something or site.com/my_documents/my_files/something
to:
Code:
site.com/admin/RTE_popup_file_atch.asp or site.com/rte/RTE_popup_file_atch.asp
3) from there you will be able to upload your deface!

====================================

AJAX File Upload vulnerability

1st. use one of these 3 dorks:



dork:
Code:
intitle:Max's AJAX File Upload - AJAX F1
dork2:
Code:
Powered by AJAX F1
dork3:
Code:
intitle:File Uploader intext:Powered by AJAX F1
2nd. Choose a site and upload a shell. (google C99.php for a good shell)

3rd. the url must be:
Code:
http://www.asite.com/something/
change it to:

Code:
http://www.asite.com/something/yourshell.extention
4rth. You are done! You have shelled the site!

====================================

Bugtraq File Upload Vulnerability

1. Open Google.com and type this dork

Code:
intitle:"QuiXplorer 2.3 - the QuiX project"
2. You'll see a lot of sites, some big websites are vulnerable too

select any website from search results

3. Vulnerablity:

Code:
http://[localhost]/[path]/index.php?action=list&order=name&srt=yes
Code:
http://site.com/[xyz]/index.php?action=list&order=name&srt=yes
4. After Going to this you will see a file manager and you can upload your files there

5. find this edit file create file etc icons in page and click on last, the upload option

====================================

PhUploader Upload Vulnerability

Google Dork :
Code:
intitle:Powered By phUploader
Go to [You must be registered and logged in to see this link.] and enter this Dork, see each results


1. Select any website and upload your file there.

2. Website will allow you to upload .jpg .png .gif anf .png files only.

3. Anyway you can upload your deface in .jpg or if want to upload a shell then upload as

shell.php.jpg

4. after uploading your file you'll got a message

"Your file(s) have been uploaded!"

====================================

Infin8 Upload Vulnerability

1. Got to [You must be registered and logged in to see this link.]

2. Search this dork:
Code:
allinsite:design-your-own-stamp filetype:php
3. Find a website and upload your image defacement or shell.php.jpg

4. Your file will be uploaded here:

Code:
thesite.com/images/uploads/upload_5612/yourimage.extention
====================================

Wordpress fckeditor Arbitrary File Upload Vulnerability

1. Go to [You must be registered and logged in to see this link.]

2. Paste this dork:
Code:
inurl:/wp-content/plugins/fckeditor-for-wordpress-plugin/fckeditor/editor/filemanager/browser/default/
3. Choose a website and browser to
Code:
/wp-content/plugins/fckeditor-for-wordpress-plugin/fckeditor/editor/filemanager/browser/default/
4. Now open browser.html and you are in a web based file manager!


Credits to the original Author Very Happy
Back to top Go down
View user profile http://whitehatcyberarmy.pro-forums.co.uk
 
Upload Vulnerabilites (MEGA THREAD)
Back to top 
Page 1 of 1

Permissions in this forum:You cannot reply to topics in this forum
Home of Ethical WhiteHat CyberArmy :: WhiteHat CyberArmy Community :: Hacking & Security Tutorials-
Jump to: