Deface Poc CMS SEKOLAHKU default U/P

<img border="0" data-original-height="1333" data-original-width="2000" height="426" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEidwqonqEg3hnB7CaYDVz2FSDzyC1PbB2nKHxugL07ttNDIRseqoAA4D2ah1aZ6RZ7XvIY1L3wy5hIP2pLRBJbrF5EqtllTor75UW3rG6eefXrKYhXiEToSdBkqTJgtWLT8R2Oby-qNOVuJlxu-E4CY0UaBPT8RenhrBqjUrO5BF5BOJgOaiWbgZCGH/w640-h426/To%20Love%20Ru%20-%20Golden%20Darkness%20Cosplay.jpeg" width="640" /> Deface Poc CMS SEKOLAHKU default U/P - Assalamualaikum salken, ane Nfex dari team NineSec akan membagikan tutorial Deface Poc Cms Sekolahku Default U/P, ok langsung saja ke tutorialnya

Dork :

- "Powered by CMS SEKOLAHKU" site:sch.id

- intext:"CMS SEKOLAHKU"

* kembangin lagi

Default u/p :

username : administrator

password : administrator

step :

1. Dorking menggunakan Dork diatas / yang sudah dikembangkan sendiri

2. Pilih salah satu web, lalu masukan /login pada url. contoh : web.sch.id/login

<img border="0" data-original-height="706" data-original-width="1366" height="331" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiJNT-DTBrfVa_d56Zjm71pdNBxD2UaVyUzHsjoneeXtlBDuEjNJauTiX-147wsamNlm5x5arnhxxkviZAtXv8xML6p8RZWQRmQOl7vfjfScH6jLIKxPWuZKIrRqsTfsIpvfe_mWrYdWL5nDbhuspgXqU03qFwmKTSQLveRdlWXymVgnMT9GrfKaVT1/w640-h331/Screenshot%20from%202022-04-11%2016-41-35.png" width="640" /> 3. Masukan Default U/P seperti diatas, lalu login

4. Jika Vuln maka akan masuk ke dashboard admin.

<img border="0" data-original-height="707" data-original-width="1366" height="332" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEg_d-9Xvbe9Fe4-kEgd6_TZk3Dy1zlZ6SQej8lL5NWPmMJ1a1BAP61xFx8Lk246WNOVSS5J-EWa3W4b6d9LrDhD7-Rd_QgjfpjfXFjNAwJRYFJYbdGqqJislRth3-bgDYHIQ04_Lg5eaQEfgQZKGxPwF5AC4WFlddosFpmoIh3HpBcRKHnYMe6BwJJC/w640-h332/Screenshot%20from%202022-04-11%2016-44-28.png" width="640" /> 5. Untuk Upload shell, kalian bisa ke Menu Media =&gt; File

<img border="0" data-original-height="647" data-original-width="239" height="640" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhv-ikbMxjG-dGpfy92cT7vbH4SRHomiXtFNzq9Qu-aeiN2KN88Lhns6tH2EQGCK10ZjmjSf-DOUVhL0vK0P66LVVF0jXjkmpVXbfYMk-K5uJpDPCDGt06vDGPRmkheAh7kKqKXrXf61Zr7RLz57aDVHUqxkP3dNNsA7ctnf6LDdOY-tfiMsSxaH2DF/w236-h640/Screenshot%20from%202022-04-11%2016-46-51.png" width="236" /> 6. Klik tanda + seperti digambar

7. Kalian isi ngasal saja, jangan lupa di save

<img border="0" data-original-height="348" data-original-width="909" height="246" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEj40N0lteZzuKNVQzZCJf0Jg_273gmt8tYgDq2sIdOseKd81WfSAs8I-QfZ4aDiSbGC4kf3-lEck0eeaXhQCrm23KjMDX_V6lzf4VmVCAzAh35Z9Gmz1pkF8dK8nZkpiIxdcI0X5SEKLS7NMKsEtmKYqXk3FkwONr-FoR5fXNM1YkqqgQlhHCKCTPiN/w640-h246/Screenshot%20from%202022-04-11%2016-53-17.png" width="640" /> 8. Lalu klik icon upload, lalu upload shell kalian.

9. Jika sudah klik upload

<img border="0" data-original-height="206" data-original-width="613" height="216" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgaR_ywE_xreJ9FTx4X1uhTEKyUJdhtWmv-9T9NBJtf0tKfciyr1xlBkbAbnA4twpcHB5ij-5W9i_JJ6da7E0o4itpYIT5jihc2LYsbFl8sM8J2dR3ccu21vrUOXrHF2hR7CxYPAhKVGc11RwVNhbQYfsPMA96LokoE42qXcHIhEPtHQNy5Czb05Vxv/w640-h216/Screenshot%20from%202022-04-11%2016-56-05.png" width="640" /> 10. Untuk Meng akses shellnya, kalian klik icon Download dan akan otomatis akan masuk ke shell kalian.

<img border="0" data-original-height="58" data-original-width="131" height="283" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjqMV2vPFIhgGYke3YnAnkIVPGIbBDvMMRrK71bmovyweRCD78u8oUJl7qIp8tslyv6THq0MLrpwzCf4TYmQ25m-LTCCs_ryzpDpAZtlViAKZjycLe66xtapc5lM1lA2bYajIBdXWSPR84Ur8NpcRJZBypvxUEGOiw-qzic9yb_mxOJkictDBfAJvJJ/w640-h283/Screenshot%20from%202022-04-11%2017-09-45.png" width="640" /> And Boom :v

<img border="0" data-original-height="706" data-original-width="1364" height="332" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgoDq6Kzo1eAUboxDRAiG4OyVRt9W2CkVUFg24G9A3Bdp9ZDFyi6vcM9cqbnsuDeU21oLTF8_03YWMGtJWO7PJ1n_iaDZpNjBhKld5Vi2cih9j4mkJzbkVxZY2znFQhLh8hr_yXyJbPh-RXf_Waw9jSepyrT30RmnBklcKh26hqWNuk5v15bNSQmKEh/w640-h332/Screenshot%20from%202022-04-11%2017-10-42.png" width="640" /> Sekian tutorial kali ini, jika kurang mengerti / ada yang ingin ditanyakan bisa lewat komentar.

Tutorial Video :

Keep calm and Deface!.

NineSec Team

Deface Poc CMS SEKOLAHKU default U/P

Posting Komentar

Cara Deface Poc Druppal Hidden