This post is by a banned member (Muhammad8888) - Unhide
OP 23 December, 2020 - 12:44 PM
hi
want to know if it possible to get acces in the panel admin of this site : http://www.mathplus.fr/ is not very secure, but i dont have the knowledges to do that 
This post is by a banned member (Invoked) - Unhide
29 December, 2020 - 09:48 PM
hi. i am very bored so sure ill help you why not.
step 1 enumerate website. it seems to be using wordpress cms and wordpress is notorious for basically giving you the admin username. [i] User(s) Identified: [+] MathPlus | Found By: Rss Generator (Passive Detection) | Confirmed By: Rss Generator (Aggressive Detection) [+] mathplus | Found By: Oembed API - Author URL (Aggressive Detection) | - http://www.mathplus.fr/wp-json/oembed/1....ormat=json | Confirmed By: Author Id Brute Forcing - Author Pattern (Aggressive Detection) step 2, so we have the username, we can double check by trying to login as mathplus:123 and it would say this password isnt correct for this username or some bs confirming we have the right username. from here you can easily bruteforce the password or exploit vuln plugins it uses. digital gangster 4 life fuck my ass aaaaaaaaaaaaaaaaa |
| Create an account or sign in to comment | ||
| You need to be a member in order to leave a comment | ||
|
Create an account
Sign up for a new account in our community. It's easy!
|
or |
Sign in
Already have an account? Sign in here.
|
