Ah.... I keep trying to upload a picture but it won't let me anyway I guess I will have to try to explain this in the best way possible I am trying to upload a php shell.....I have found the place to do so /fckeditor/editor/filemanager/browser/default/frmupload.html .......but every time I try to upload the shell I get an HTTP verb error is this because of the .php and if so how do I by pass this I have seen somewhere that I can use tamper data and first name the file .txt and than change it back to .php is that what I am suppose to do????
Forum Thread: Http Verb Error When Trying to Upload Php Shell
- Hot
- Active
-
Forum Thread:
Mostly Need Help Binding Two Exe Files
6
Replies
4 hrs ago -
Forum Thread:
Security in IOT ( Internet of Things ) By [Mohamed Ahmed]
0
Replies
4 hrs ago -
Forum Thread:
How Is Penetration Testing Take Place Over WAN?
10
Replies
5 hrs ago -
COMPLEX MALWARE:
METAMORPHISM, POLYMORPHISM and EPO | THEORY and PRACTICAL EXAMPLES by [Mohamed Ahmed].
0
Replies
5 hrs ago -
Forum Thread:
REVERSE ENGINEERING on ANDROID | CAP 1
0
Replies
9 hrs ago -
Forum Thread:
m
2
Replies
10 hrs ago -
Forum Thread:
Hacking Terminals via Web !!!!! By: [ Mohamed Ahmed ]
0
Replies
10 hrs ago -
Forum Thread:
Network Infrastructure and Hacking Techniques [Theory Theory] [Part 1] by : Mohamed Ahmed .
0
Replies
10 hrs ago -
Forum Thread:
Ichidan, Shodan Clone in the Deep Web
0
Replies
11 hrs ago -
Forum Thread:
How to Hack a Facebook Account Using Kali Linux 2.0 ?
21
Replies
20 hrs ago -
Forum Thread:
Thoughts on Buying Hacking Gear and Anonymity
0
Replies
22 hrs ago -
Forum Thread:
Best Book to Read on Hacking
8
Replies
1 day ago -
Forum Thread:
Cdr File Damaged
0
Replies
1 day ago -
Forum Thread:
Arpspoof - No Connectivity on Physical Machine
2
Replies
2 days ago -
Forum Thread:
How to Build Cheapest Password Cracker on Multiple GPUs?
0
Replies
2 days ago -
Forum Thread:
Active White-Hat Forums?
14
Replies
2 days ago -
Forum Thread:
Apis for Trojans [ a gift from me ]
0
Replies
3 days ago -
Forum Thread:
Creating a Ransomware for Android from 0! By [ Mohamed Ahmed ]
0
Replies
3 days ago -
Forum Thread:
Hack Cheating Wife's Windows 7 Admin Password
12
Replies
3 days ago -
Forum Thread:
BlueBorne - Kali Linux Script?
9
Replies
3 days ago
-
How To:
4 Ways to Crack a Facebook Password & How to Protect Yourself from Them
-
How to Hack Wi-Fi:
Get Anyone's Wi-Fi Password Without Cracking Using Wifiphisher
-
How To:
Exploring Kali Linux Alternatives: How to Get Started with BlackArch, a More Up-to-Date Pentesting Distro
-
How To:
Hack Forum Accounts with Password-Stealing Pictures
-
How To:
Crack Any Master Combination Lock in 8 Tries or Less Using This Calculator
-
How To:
Set Up a Headless Raspberry Pi Hacking Platform Running Kali Linux
-
How to Hack Wi-Fi:
Capturing WPA Passwords by Targeting Users with a Fluxion Attack
-
How To:
Get Unlimited Free Trials Using a "Real" Fake Credit Card Number
-
How To:
Use a Virtual Burner Phone to Protect Your Identity & Security
-
Hack Like a Pro:
How to Crack Online Web Form Passwords with THC-Hydra & Burp Suite
-
How To:
Successfully Hack a Website in 2016!
-
Hack Like a Pro:
How to Secretly Hack Into, Switch On, & Watch Anyone's Webcam Remotely
-
How to Hack Wi-Fi:
Cracking WPA2-PSK Passwords Using Aircrack-Ng
-
How To:
Hack Android Using Kali (Remotely)
-
Hack Like a Pro:
How to Crack Passwords, Part 1 (Principles & Technologies)
-
How To:
Install Kali Live on a USB Drive (With Persistence, Optional)
-
How To:
The Essential Skills to Becoming a Master Hacker
-
How To:
Buy the Best Wireless Network Adapter for Wi-Fi Hacking in 2017
-
How To:
Hack WPA WiFi Passwords by Cracking the WPS PIN
-
How to Hack Bluetooth, Part 1:
Terms, Technologies, & Security
3 Responses
also I use dotdotpwn to scan the site now when it says that a certain parameter is vulnerable what does it mean vulnerable to what cause when I try to look them up the website doesn't change its still the same
give you advice about bypass and I don't known if you have right and permission it is not really good idea.You can bypass it and these is couple techniques.It really depends on system security.And about dotdotpwn i never use it but many tool have false positive attack thaats why is good to test it manually
You could try using Burp Suite, it's proxy interceptor allows you to manipulate HTTP traffic from your browser. You can use it to bypass upload restrictions in some cases.
-Defalt
Share Your Thoughts