Deface Exploit Slims CMS Senayan Arbitrary File Upload Vulnerability


Cara Deface Exploit Slims CMS Senayan Arbitary File Upload Vulnerability - Sebenarnya POC ini sudah lama banget dan banget cuman baru kali ini bisa di writeup karena masih banyak kesibuka lain, so langsung aja berikut tutorialnya ...

Exploit Slims CMS Senayan Arbitrary File Upload Vulnerability


#Exploit Title : Slims CMS Senayan OpenSource Library Management System The Winner in the Category of OSS Indonesia ICT Award 2009 Arbitrary File Upload Vulnerability and Auto Exploiter
#Author [ Discovered By ] : KingSkrupellos from Cyberizm Digital Security Team
#Vendor Homepage : slims.web.id
#Software Download Link : github.com/slims/ * slims.web.id/web/ * slims.web.id/goslims/
#Date : 28/05/2018
#Affected Version : 5/6/7
#Tested on : Windows / Linux
#Exploit Risk : High
 
Google Dorks:
#Google Dork 1 :  intext:''The Winner in the Category of OSS Indonesia ICT Award 2009''
#Google Dork 2 : inurl:''index.php?p=show_detail&id='' site:id
#Google Dork 3 : inurl:''/slims5-meranti/'' site:id
#Google Dork 4 : intext:This software and this template are released Under GNU GPL License Version 3. The Winner in the Category of OSS Indonesia ICT Award 2009''
#Google Dork 5 : Powered by SLiMS site:id
#Google Dork 6 : Powered by SLiMS | Design by Indra Sutriadi Pipii
#Google Dork 7 : Beranda Depan · Info Perpustakaan · Area Anggota · Pustakawan · Bantuan Pencarian · MASUK Pustakawan. 
#Google Dork 8 : Akses Katalog Publik Daring - Gunakan fasilitas pencarian untuk mempercepat penemuan data katalog.
#Google Dork 9 :  SLiMS (Senayan Library Management System) is an open source Library Management System. 
                           It is build on Open source technology like PHP and MySQL.
#Google Dork 10 : PERPUSTAKAAN - Web Online Public Access Catalog - Use the search options to find documents quickly
This software and this template are released Under GNU GPL License Version 3
#Google Dork 11 : inurl:''/index.php?select_lang='' site:sch.id
#Google Dork 12 : Web Online Public Access Catalog - Gunakan fasilitas pencarian untuk mempercepat anda menemukan data katalog
#Google Dork 13 : Welcome To Senayan Library's Online Public Access Catalog (OPAC). Use OPAC to search collection in our library.
#Google Dork 14 : O.P.A.C. (On-line Public Access Catalogue)
#Google Dork 15 : inurl:''/perpustakaan/repository/'' site:id
#Google Dork 16 : Senayan | Open Source Library Management System :: OPAC 

Vuln terdapat disini :
 /admin/modules/bibliography/pop_attach.php
 Contoh: 
www.target.com/senayan/admin/modules/bibliography/pop_attach.php atau
www.target.com/admin/modules/bibliography/pop_attach.php

Lalu ...


 Lalu isi terserah kalian,
Upload file ext: txt,jpg,gif,png


Dan aksesnya ada di : /repository/Rev9.png 


Sekian TerimaKasih :)

SHARE THIS

Author:

Previous Post
Next Post