Advertisement
CVE | Category | Price | Severity |
---|---|---|---|
CVE-2016-9026 | CWE-434 | $500 | High |
Author | Risk | Exploitation Type | Date |
---|---|---|---|
Unknown | High | Remote | 2018-07-04 |
CVSS | EPSS | EPSSP |
---|---|---|
CVSS:4.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H | 0.02192 | 0.50148 |
*************************************************** # Exploit Title: Lokomedia CMS Arbitrary File Upload # Google Dork: intitle:..::: Login User :::.. "Pegawai yang belum" # Date: 04/07/2018 # Author: 0N3R1D3R # Team: Error Violence # Tested on: Windows 10 x64 *************************************************** [+] Save this csrf in html ( https://pastebin.com/raw/50BWjtuz ) [+] Search the dork in Google [+] Change form action with your target [+] Complete the form and up your backdoor ( Sometimes the backdoor should be bypassed ) [+] Login with username and password 1 [+] Copy image address and remove small_ for access your backdoor *************************************************** [+] Demo Site [+] http://pegawai.ibmb.ac.id/ [+] https://www.pegawai.apikescm.ac.id/ [+] http://staffsite-hukum.umpwr.ac.id/ *************************************************** Thanks To Error Violence
Copyright ©2024 Exploitalert.
All trademarks used are properties of their respective owners. By visiting this website you agree to Terms of Use.