I didn't knew how to upload this type of vulnerability in report section . Please have look
Exploit Title: Simple Upload dan Download File Cross Site Scripting ( XSS ) Vulnerability
# Google Dork: inurl:/download.php "Tgl. Upload"
# Exploit: /upload.php
# Date: 24/02/2019
# Author: Aaryan Saharan
# Tested on: Linux 32 bits
***************************************************
[+] Search the dork in Google
[+] Exploit the site with /upload.php
[+] Give your payload xss and upload docx file or other
[+] Success? Look at /download.php
***************************************************
[+] Demo Site
[+] http://muhammadsyarif.my.id/ti15e1/upload.php
[+] http://www.spareparttruk.com/data/upload.php
[+] http://www.ifaupdate.com/upload.php
*************************************************** [
+] Proof Of Concept
[+]http://cvindomedia.com/login/donlodsimw ... wnload.php
Simple Upload dan Download File Cross Site Scripting
-
aaryansaharan
- Posts:17
- Joined:Fri Feb 15, 2019 1:31 pm
Who is online
Users browsing this forum: r00t3d and 2 guests