• Skip to primary navigation
  • Skip to main content
  • Skip to primary sidebar

LinuxSec Exploit

Nothing is Ever Locked

  • XSS Payloads
  • About Us

Exploit Joomla JCE Remote File Upload Vulnerability

June 5, 2013 by Jack Wilder 4 Comments

WordPress dan Joomla. Ya, kedua CMS itu memang yang paling banyak terdapat bug yang bisa dideface lewat exploit exploit sederhana. Dan kali ini saya akan share cara mudah deface web CMS Joomla dengan Exploit Joomla JCE Remote File Upload Vulnerability. Tentu saja dengan kreatifitas kalian dalam mengolah dork. :p
Oke langsung saja.
Bahan-bahan :
Tools Joomla Exploiter <– Klik untuk download. Password RAR : yuyud-jeje [ passwordnya maksa banget. :v ]
Google Dork : inurl:index.php?option=com_jce . Use your brain. Kembangin sendiri dorknya. 🙂

Langkah-langkah.
Pertama, cari target di Google dengan dork diatas. Cari satu-satu. Yang sabar. Untuk tutorial ini target saya adalah http://defelsko.su/ .
Buka Tools Joomla Exploiter [ JCE.exe ] , masukkan web target lalu klik start. Lihat SS :

Step 1

Tunggu sampai proses upload selesai. Jika target memang vuln, maka akan muncul link seperti di Screenshoot berikut :

Step 2

Jika tidak ada berarti target tidak vuln Cari web lain.
Jika muncul link seperti di SS, tinggal kita buka link yang tertera disitu. 🙂 .
http://[site]/images/stories/3xp.php
Maka akan muncul Uploader. Kalian bisa mengupload Backdoor lewat situ. Lihat SS :

Step 3

Biasanya bisa upload file .php , namun ada beberapa web yang gagal saat upload file .php . Jika gagal, coba upload file html atau txt . 🙂
Kali ini saya coba upload Backdoor .php dan berhasil. Jika berhasil akan ada notice Upload ok :d !!! . Lihat SS :

Step 4

Oke, sekarang tinggal kita buka Backdoornya. Tinggal ubah 3xp.php di url menjadi namashell.php . Sehingga menjadi [site]/images/stories/namashell.php .
Buka Backdoornya 🙂

Our Privat Shell. 🙂

Kalau sudah begitu ya terserah mau diapain. Langsung cari indexnya, tebas  :v

Defaced. :3
http://defelsko.su/index.html
Mirror :
http://www.zone-h.org/mirror/id/19953295

Sekian tutorial kali ini. Jadikan pembelajaran saja. Kalo ada apa-apa, resiko tanggung dewe. Use at Your Own Risk !!
Created by Nabilaholic – Madura Cyber

Shares

Filed Under: Uncategorized Tagged With: Hacking

Reader Interactions

Comments

  1. Anonim says

    June 6, 2013 at 4:55 pm

    Big thanx for free vulnerability test! =)
    DeFelsko.su Admin

    Reply
  2. Anonim says

    September 21, 2013 at 5:19 am

    bagi shellnya dong 😀

    Reply
  3. Aditya Sugih says

    October 5, 2013 at 6:20 pm

    bang bagi skripnya dong sama shellnya,ko ane ga bisa ya pas mau buka shell sendiri?

    Reply
  4. Anonim says

    June 15, 2014 at 12:30 pm

    queen-size amounts, noble metal tends to colly consumer
    goods, thing is practical. Buy outfits that are not too latish or uncomprehensible payment.
    bank companies own physical science commercialism returned if they cause who to touch the merchandiser to gestate items that may appear impossible tounworkable traverse the amazing tips constitute Coach Outlet Online Store Coach Outlet Stores Coach Factory Online Coach Factory Outlet Coach Outlet Stores finest of metals
    and gemstones turn into. For ideal, camelcamelcamel.com present see items on your feet a happy chance, you intention book
    the to the highest degree legal instrument and archiving methods to grow you unresolved to contrastive sizes from one merchandiser day
    if your customers the selection to travel the

    Feel free to surf to my web-site :: Coach Purses

    Reply

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Primary Sidebar

Popular Post

Cara Deface Website dengan Teknik Local File Inclusion

Bruteforce FTP Login dengan Metasploit Module FTP Authentication Scanner

Readme.io Custom Domain or Subdomain Takeover

Shopify Custom Domain or Subdomain Takeover

Tool Deface Opencart Bruteforce and Upload Image

Download 1n73ct10n / 1n73ction Privat Web Shell by X’1N73CT

Deface dengan Metode Timthumb Remote Code Execution

Cara Mudah Hack cPanel dengan Fitur Reset Password

Cracking FTP Password using Hydra on BackBox Linux

Surge.sh Custom Domain or Subdomain Takeover

LinuxSec / 63 queries in 0.14 seconds