Tmedit Popuop Deface and Shell upload vulnerability


Dork: inurl:/editor/tmedit/popups
Exploit Path : /editor/tmedit/popups/InsertFile/insert_file.php
#start :)
open Google.com or Bing.com and type this dork inurl:/editor/tmedit/popups
i got 9740 vulnrable results, now select any site from seacrh result and look for upload option on that Page now upload you shell, deface page, or anyfile there,
After uploading your file youll see your uploaded files url there, if you are not getting any perview url then goto /images directory to view your uploaded file
for example : http://vulnrablesite.com/images/yourfilehere

Comments

Post a Comment

Popular posts from this blog

Free Download Billboard Hot Top 100 Singles Chart 2014

Image
Free Download Billboard Hot Top 100 Singles Chart 2014 Tracklist: 01. Pitbull � Timber (Feat. Ke$Ha) 03:24 02. Onerepublic � Counting Stars 04:17 03. Eminem � The Monster (Feat. Rihanna) 04:10 04. Lorde � Royals 03:10 05. A Great Big World � Say Something (Feat. Christina Aguilera) 03:49 06. Katy Perry � Dark Horse (Feat. Juicy J) 03:35 07. Passenger � Let Her Go (Radio Edit) 03:38 08. Avicii � Wake Me Up 04:09 09. Miley Cyrus � Wrecking Ball 03:43 10. Imagine Dragons � Demons 02:57 11. Katy Perry � Roar 03:43 12. One Direction � Story Of My Life 04:05 13. Ellie Goulding � Burn 03:51 14. Lorde � Team 03:13 15. Beyonc� � Drunk In Love (Feat. Jay Z) 05:23 16. Drake � Hold On, We�re Going Home (Feat. Majid Jordan) 03:47 17. Lady Gaga � Do What U Want (Feat. R. Kelly) 03:47 18. Bastille � Pompeii 03:34 19. Robin Thicke � Blurred Lines (Feat. T.I. & Pharrell) 04:21 20. The Neighbourhood � Sweater Weather 04:00 21. Macklemore & Ryan Lewis � White Walls (Feat. Schoolboy Q & Hollis...
Keep reading

List of Google Dorks

Image
Just use the dorks in Googles search box. [color=#32CD32]admin account info” filetype:log !Host=*.* intext_enc_UserPassword=* ext:pcf “# -FrontPage-” ext:pwd inurl:(service | authors | administrators | users) “# -FrontPage-” inurl:service.pwd “AutoCreate=TRUE password=*” “http://*:*@www” domainname “index of/” “ws_ftp.ini” “parent directory” “liveice configuration file” ext:cfg -site:sourceforge.net “parent directory” +proftpdpasswd Duclassified” -site:duware.com “DUware All Rights reserved” duclassmate” -site:duware.com Dudirectory” -site:duware.com dudownload” -site:duware.com Elite Forum Version *.*” Link Department” “sets mode: +k” “your password is” filetype:log DUpaypal” -site:duware.com allinurl: admin mdb auth_user_file.txt config.php eggdrop filetype:user user enable password | secret “current configuration” -intext:the etc (index.of) ext:asa | ext:bak intext:uid intext:pwd -”uid..pwd” database | server | dsn ext:inc “pwd=” “UID=” ext:ini eudora.i...
Keep reading

Lego Star Wars The Complete Saga Full Version Pc Game Free Download

Image
Lego Star Wars The Complete Saga Full Version Pc Game Free Download Leg Star Wars The Complete Saga Fully Full Version Pc Game Free Download Game File Size : 4.1 GB SYSTEM REQUIREMENTS : Windows-Xp,Vista,7,8 Cpu - Pentium 4 Ram - 512 MB Video Card - 512 MB Hard Disk Free Space -5 GB DESCRIPTION :  Leg Star Wars The Complete Saga is an Action, video game based on Star Wars. The game was Developed by Lego Group and Published by Fully gaming world. This game was first released for PlayStation 3 and Xbox 360, when it was get most famous most played, Later the Lego Group and Team Decide to release latest version with the all new features and things, So they released this game  Leg Star Wars The Complete Saga. This game is the 3rd version of the Star Wars Series. This game Includes lots of new features and interesting features, Such as high quality graphics, new maps, new powers or weapons, highly sound effects and much more. In this game the players have allow to play this game in ...
Keep reading