Labels

Powered by Blogger.

ur-solution

chase what you want

Featured Post

Script Phising Fortnite - Redeem Season 8

Script Phising Fortnite - Redeem Season 8 1. Event Display 2. Login Display 3. Display After Login Note : u can...

Search This Blog

Blog Archive

Categories

Backdoor (5) Script (1) Tutorials (12)

Blogger templates

Blogger news

ngewek

haha

Recent Posts

About

Iklan Atas Artikel

Iklan Tengah Artikel 1

Iklan Tengah Artikel 2

Iklan Bawah Artikel

Home » » TinyUpload Arbitrary File Upload Vulnerability

TinyUpload Arbitrary File Upload Vulnerability

TinyUpload Arbitrary File Upload Vulnerability


# Exploit Title: TinyUpload Arbitrary File Upload Vulnerability
# Google Dork: [if applicable]
# Date: 28/11/2018
# Exploit Author: p0r7s
# Vendor Homepage: http://www.tinyupload.com/
# Tested on: Windows 7 Ultimate 64bit


Tampilan uploader nya , langsung saja kita upload dengan CSRF Kalau upload manual kadang bisa kadang tidak


CSRF : HERE
Save Dengan extensi .html dan edit target kalian


Dan save , upload file kalian dengan exetensi php,txt,jpg,fla,gif etc.
Kalau Sudah upload dan tidak muncul error Warning: move_uploaded_file() file berhasil di upload

Untuk akses path nya kalian bisa View source di tampilan uploader nya 


"site.com/tinymce-uploads/urfile.php.gif"

Sekian Dari saya
Thanks For Visiting :D








Share: