AJAX File Upload vulnerability
Hello Everyone!
What you are going to see is a very old exploit but since almost noone knows it, I decided to release it here.
It's old but still works sometimes.
1st. use one of these 3 dorks:
dork: intitle:Max's AJAX File Upload - AJAX F1
dork2: Powered by AJAX F1
dork3: intitle:File Uploader intext:Powered by AJAX F1
2nd. Choose a site and upload a shell. (google C99.php for a good shell)
3rd. the url must be: www.asite.com/something/ change it to: www.asite.com/something/yourshell.extention
4rth. You are done! You have shelled the site!
What you are going to see is a very old exploit but since almost noone knows it, I decided to release it here.
It's old but still works sometimes.
1st. use one of these 3 dorks:
dork: intitle:Max's AJAX File Upload - AJAX F1
dork2: Powered by AJAX F1
dork3: intitle:File Uploader intext:Powered by AJAX F1
2nd. Choose a site and upload a shell. (google C99.php for a good shell)
3rd. the url must be: www.asite.com/something/ change it to: www.asite.com/something/yourshell.extention
4rth. You are done! You have shelled the site!
Comments
Post a Comment