Hi Wats Up Friends ...
Here Comes Another Web Vulnerability...
Ok Google Dork For This Is
Google Dork : "inurl:tinybrowser/upload.php"
Lets Start : Open google.com/ncr or you country dOmain like Google.co.in and enter This dork
"inurl:tinybrowser/upload.php"
Vulnerable website's title will TinyBrowser :: Upload in search results
and in sOme sites it will show you website directory in title :)
click on Vulnerable website only ... igNore sOme extra results
Now You'll Got a page Like this image
For uploading Your files click on upload ... and click on browse to view Your Uploaded File :)
you can upload [.html],[.txt],[.jpg],[.gif],[.bmp] [.php not allowed] but atleast you can try as
php.jpg :P ... but in sOme websites you can upload images and txt file Only .. but
dont worry ... u can notify your deface as image or text file :D
Demo:
http://writers-well.com/wp-content/plugins/simple-forum/editors/tinymce/plugins/tinybrowser/upload.php
Must levae a comment if you like this Post :)
Stay Tuned If You want MOrRe Such Vulnerability To hack And Deface Site..:)
Home
»
Exploits
»
Hacking
»
Website Vulnerability
» TinyFileBrowser Remote file Upload Deface Vulnerability
Subscribe to:
Post Comments (Atom)
Post a Comment
Post a Comment
Feel Free To Ask Your Query we Love To Answer