Friday, 22 March 2013

JCE ( Joomla Extension Remote File Upload )

^_^ hi ..

Today is how to hack and upload shell in Joomla via JCE ( 0day exploit )

From the picture above is the site for uploading shell via JCE

What do you need is :

download both of the php

1. upload sm.php to your own domain or set up to your localhost
2. enter the dork : inurl:index.php?option=com_jce
3.Choose site and put it like  from the above
do no put http://  and  / at the url the path (ex: /joomla/ or just / ): put the site path

for example :

at the path will be /joomla/

if nothing the path will just  /  only


find through the administrator

5.Choose File : a.php that you has already download
6.Click START

Target is exploitable.
Exploit Succeeded...

this for example
go to the shell then u will get it

1 comment:

  1. She looked at the end of the cord attached
    to the welder. It is also great to watch a movie
    under the stars on a bright screen LCD TV. The only noise is the excess air escaping from the

    my webpage ::