[JUST FOR YOU]_$type=ticker$count=15$cols=4$cate=0$sn=0$src=random-posts

All about Magento exploit

78 0 Tuesday, 19 April 2016

Exploit magento, all about magento, semua tentang magento, auto exploit magento, magento exploit php, cara tanam shell magento, cc log magento, pp log magento, magento logger, sabun massal magento, Test inbox magento, email test sender magento, cara upload file system, Letak smtp magento, Ciri ciri cms magento, ciri ciri magento, Dork magento, dork fresh magento, credit card magento logger, paypal magento logger, download file system magento, file system magento


[UPDATED 11:39 AM 5/27/2016]

Magento Scanner + Mass Exploiter PHP :
KESINI

Dork :
- intext:/skin/adminhtml/default/default/
- intitle:computer inurl:account/login/ site:.com
- intitle:computer inurl:account/login/create/ site:.com
- intext:"2016" inurl:account/login site:.com
- "shirt" inurl:customer/account/login/ site:.com
- "jeans" inurl:account/login site:.com
- intitle:shop inurl:account/login/create site:.com
- intext:2016 inurl:customer/account/ site:.com
- ganti site, intitle dan intext dengan apa saja / use your brain !

Ciri" cms magento :

 
LETAK SMTP :
- system > configuration > view menu SMTP pro
- kalau ada SMTP PRO klik dan lihat username, password, port dan server nya
- kalau password masih bentuk ******* ( inspect element > ganti value "password" dengan "text" )


Upload shell :
- perlu di ketahui tidak semua bisa di tanam shell , atau jika sembarangan tanam shell webnya bakal error
- kalau vuln dan bisa di tanam shell pergi ke : system > file system > IDE > cari file > edit UPLOADER atau LANGSUNG EDIT SHELL di dalamnya > save > dan kunjungi file yang tadi di edit

Ngelog PP&CC :
- tanem  shell dulu
- trus masuk ke /app/code/core/Mage/Payment/Model/Method/Cc.php
- masukin skrip logmu
- kalo bingung replace pake skripku, log v2
- cari kode ini $yuzamail = "eXV6YWMwZGVyQGFzaWEuY29t";
- ganti eXV6YWMwZGVyQGFzaWEuY29t sama emailmu, nanti log dikirim ksini (kalau web target support send mail) Cara test send mail ada di bawah..
- jgn lupa encript dulu dgn base64, bisa make punya si x'inject disini




Patching bug magento 1.7.0.2 :
- tanem shell dulu
- masuk ke /app/code/core/Mage/Catalog/Model/Product/Option/Type/File.php
- cari code ini:
protected function _getOptionDownloadUrl($route, $params)
{

   return Mage::getUrl($route, $params);
}
- ganti dengan code ini:
protected function _getOptionDownloadUrl($route, $params)
{
    $websites = Mage::app()->getWebsites();
    $code = $websites[1]->getDefaultStore()->getCode();
    $params['_store'] = $code;

    return Mage::getUrl($route, $params);
}

Cara Upload File System :
*Catatan: jika ada ketidak sesuaian/ditemukan error tdak sperti gambar yg saya sertakan brarti tidak bisa di upload file system!
- Download dulu file system disini
Pass: yuzanotes.blogspot.co.id
- Masuk ke System > Magento Connect > Magento Connect Manager
- Jika Vuln maka akan muncul form login, jadi lu harus login ulang. Setelah login lu akan masuk ke halam ini, lihat gambar dibawah, dan upload file systemnya
- Nanti akan otomatis scrolling ke bawah sendiri dan jika sukses akan muncul notif seperti gambar dibawah
- Balik lagi ke dashboard admin, scrol ke atas ja terus klik Return to Admin
- Sekarang lihat file system udah terinstall. Dah sampe disini terserah mo diapain. Untuk cara upload shell baca lagi di atas dah jelas

Email Test Sender :
- Harus nanem shell dulu, gak tau caranya? baca lagi dari atas
- Taruh script di bawah terserah d taruh mana..



- Setelah itu buka lewat url, jika support kirim email akan nampak seperti gambar dibawah
- Masuk inbox nih :D


Semoga bermanfaat :)

Label:

SHARE:

Twitter Facebook Google Pinterest

COMMENTS

BLOGGER: 78
Loading...
Kalo ada yang mo ditanyain/saran/kritik monggo komen ndan
DISQUS
Name

Domain,17,Knowledge,58,Movie,6,Security,16,Source Code,20,
ltr
item
Yuzaway: All about Magento exploit
All about Magento exploit
Exploit magento, all about magento, semua tentang magento, auto exploit magento, magento exploit php, cara tanam shell magento, cc log magento, pp log magento, magento logger, sabun massal magento, Test inbox magento, email test sender magento, cara upload file system, Letak smtp magento, Ciri ciri cms magento, ciri ciri magento, Dork magento, dork fresh magento, credit card magento logger, paypal magento logger, download file system magento, file system magento
https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgQho2jc4-WNguPdJK79UAbaGM5c9CAQ1lEwuRHTrLthHboJWHTMQEKtCKjbTzSNIS-fBDSs6_-2v8bKT8FMdZ6sU2y9zUwQw-gayLTW2Mmg3m_IjN3Y9mFsTKyxstUIftk15qf7tPcco8/s1600/Magento-security.jpg
https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgQho2jc4-WNguPdJK79UAbaGM5c9CAQ1lEwuRHTrLthHboJWHTMQEKtCKjbTzSNIS-fBDSs6_-2v8bKT8FMdZ6sU2y9zUwQw-gayLTW2Mmg3m_IjN3Y9mFsTKyxstUIftk15qf7tPcco8/s72-c/Magento-security.jpg
Yuzaway
http://old.sudo.party/2016/04/all-about-magento-exploit.html
http://old.sudo.party/
http://old.sudo.party/
http://old.sudo.party/2016/04/all-about-magento-exploit.html
true
1835467259161587483
UTF-8
Loaded All Posts Not found any posts VIEW ALL Readmore Reply Cancel reply Delete By Home PAGES POSTS View All RECOMMENDED FOR YOU LABEL ARCHIVE SEARCH ALL POSTS Not found any post match with your request Back Home Sunday Monday Tuesday Wednesday Thursday Friday Saturday Sun Mon Tue Wed Thu Fri Sat January February March April May June July August September October November December Jan Feb Mar Apr May Jun Jul Aug Sep Oct Nov Dec just now 1 minute ago $$1$$ minutes ago 1 hour ago $$1$$ hours ago Yesterday $$1$$ days ago $$1$$ weeks ago more than 5 weeks ago Followers Follow THIS PREMIUM CONTENT IS LOCKED STEP 1: Share. STEP 2: Click the link you shared to unlock Copy All Code Select All Code All codes were copied to your clipboard Can not copy the codes / texts, please press [CTRL]+[C] (or CMD+C with Mac) to copy