Ah.... I keep trying to upload a picture but it won't let me anyway I guess I will have to try to explain this in the best way possible I am trying to upload a php shell.....I have found the place to do so /fckeditor/editor/filemanager/browser/default/frmupload.html .......but every time I try to upload the shell I get an HTTP verb error is this because of the .php and if so how do I by pass this I have seen somewhere that I can use tamper data and first name the file .txt and than change it back to .php is that what I am suppose to do????
Forum Thread: Http Verb Error When Trying to Upload Php Shell
- Hot
- Active
-
Forum Thread: 12 Ways How to Hack Any Social Network and Protect Yourself 2018 1 Replies
9 hrs ago -
Metasploit Error: Handler Failed to Bind 40 Replies
3 days ago -
Forum Thread: How to Know if You Are a Script Kiddie? 9 Replies
2 wks ago -
Forum Thread: How to Identify and Crack Hashes 8 Replies
2 wks ago -
Forum Thread: How to Hack School Website 8 Replies
3 wks ago -
Forum Thread: Whenever I Try "Airmon-Ng Start wlan0" There's an Error? 16 Replies
3 wks ago -
Forum Thread: How to Fix 'Failed to Detect and Mount CD-ROM' Problem When Installing Kali Linux 14 Replies
3 wks ago -
Forum Thread: Awesome Keylogging Script - BeeLogger 30 Replies
1 mo ago -
Forum Thread: How to Hack Android Phone Using Same Wifi 27 Replies
1 mo ago -
Forum Thread: Complete Guide to Creating and Hosting a Phishing Page for Beginners 48 Replies
1 mo ago -
Forum Thread: Create and Use Android/Meterpreter/reverse_tcp APK with Msfvenom? 121 Replies
1 mo ago -
How to: Minecraft DoS'Ing with Python. 1 Replies
2 mo ago -
Forum Thread: HELP I Created an Apk for Hacking My Phone Using Kali Linux in Virtual Box How Can I Install That Apk on My Phone 17 Replies
2 mo ago -
Forum Thread: Tools for Beginner Hacker 3 Replies
2 mo ago -
Forum Thread: How to Embed an Android Payload in an Image? 9 Replies
3 mo ago -
Forum Thread: Metasploit reverse_tcp Handler Problem 46 Replies
3 mo ago -
Forum Thread: HACK ANDROID with KALI USING PORT FORWARDING(portmap.io) 11 Replies
3 mo ago -
Forum Thread: Fix Initramfs Problem 5 Replies
3 mo ago -
Forum Thread: Kali Wont Start, Stuck at Kali Login: 21 Replies
4 mo ago -
Forum Thread: How to View Your Child's What's App And Many More! 3 Replies
4 mo ago
-
How To: Gain SSH Access to Servers by Brute-Forcing Credentials
-
How To: The Hacks Behind Cracking, Part 1: How to Bypass Software Registration
-
How To: Brute-Force Nearly Any Website Login with Hatch
-
How To: Top 10 Things to Do After Installing Kali Linux
-
How To: Crack Shadow Hashes After Getting Root on a Linux System
-
How To: Find Vulnerable Webcams Across the Globe Using Shodan
-
How To: Brute-Force FTP Credentials & Get Server Access
-
How To: Exploit EternalBlue on Windows Server with Metasploit
-
How To: Check if Your Wireless Network Adapter Supports Monitor Mode & Packet Injection
-
How To: Make Spoofed Calls Using Any Phone Number You Want Right from Your Smartphone
-
How To: Enumerate SMB with Enum4linux & Smbclient
-
How to Hack Wi-Fi: Cracking WPA2 Passwords Using the New PMKID Hashcat Attack
-
How To: Hunt Down Social Media Accounts by Usernames with Sherlock
-
How To: Exploit Shellshock on a Web Server Using Metasploit
-
How To: Use SQL Injection to Run OS Commands & Get a Shell
-
How To: Bypass UAC & Escalate Privileges on Windows Using Metasploit
-
How To: Hack Wi-Fi & Networks More Easily with Lazy Script
-
How To: Select a Field-Tested Kali Linux Compatible Wireless Adapter
-
Hack Like a Pro: How to Secretly Hack Into, Switch On, & Watch Anyone's Webcam Remotely
-
How To: Inject Keystrokes into Logitech Keyboards with an nRF24LU1+ Transceiver
3 Responses
also I use dotdotpwn to scan the site now when it says that a certain parameter is vulnerable what does it mean vulnerable to what cause when I try to look them up the website doesn't change its still the same
give you advice about bypass and I don't known if you have right and permission it is not really good idea.You can bypass it and these is couple techniques.It really depends on system security.And about dotdotpwn i never use it but many tool have false positive attack thaats why is good to test it manually
You could try using Burp Suite, it's proxy interceptor allows you to manipulate HTTP traffic from your browser. You can use it to bypass upload restrictions in some cases.
-Defalt
Share Your Thoughts