Drupal Remote File Upload Vulnerability
Steps:
1) Search this google dork:
inurl:"/imce?dir=" intitle:"File Browser"
2) Click on any link that its title is "File Browser" among with something else
3) Click on the "Upload" button
4) Upload your Deface Page
5) Click the link in the box to View the URL
You can also upload a shell as shell.php.html and then change it to shell.php to hack the website.
Enjoy!
1) Search this google dork:
inurl:"/imce?dir=" intitle:"File Browser"
2) Click on any link that its title is "File Browser" among with something else
3) Click on the "Upload" button
4) Upload your Deface Page
5) Click the link in the box to View the URL
You can also upload a shell as shell.php.html and then change it to shell.php to hack the website.
Enjoy!
Comments
Post a Comment