Friday, 25 October 2013

Joomla com_fabrik Upload Vulnerability

Today, I'm going to teach you how to deface a website using Joomla com_fabrik Upload Vulnerability.

Understanding Attack Method

Joomla’s com_fabrik component gives you the power to create forms and tables that run inside Joomla without requiring knowledge of mySQL and PHP. Then feed your data into Google Maps, Charts or an AJAX based calendar.But it’s vulnerable :)

Finding Vulnerable Target

Let's get it started

Dork : inurl:index.php?option=com_fabrik or index.php?option=com_fabrik

Exploit : /index.php?option=com_fabrik&c=import&view=import&filetype=csv&table=1

1.Paste the any of the dork in If you want to narrow down the search for .com domains or domains then just append “” in above google dork.

Example: inurl:index.php?option=com_fabrik (This will serach for com_fabrik vulnerability for websites)

Exploiting Target

1. Once you have the list of websites, choose any website and replace put the exploit at the back of the site.


2. Then, you’ll get something like this.

3. Now upload any file to upload such as picture.jpg or shell.php. Once your file successfully uploaded, you need to add /media/yourfilename.jpg to see your file.


4. Example of the vulnerable sites,

5. You also can upload your shell into the site :)

and deface the index.html :P

Live Demo :

Free Download DVD Fab 9.0 Pre Activated

DVDFab is the most powerful and flexible DVD/ Blu-ray copying/burning software. Also it’s a fantastic file converter & transfer which can rip and convert DVD/Blu-ray movies or transfer your local files to various portable devices like iPod, iPhone, PSP, cell phone, ZUNE, etc. With 8 copy modes, you can back up any DVD to DVDR in just a few clicks. DVDFab is simply the easiest way to copy a DVD/ Blu-ray movie. Just insert the movie and a blank DVD/ Blu-ray then press Start. Your entire movie – including menus, trailers and special features – is copied to a single DVD/ Blu-ray with just one click, and everything happens automatically. Backup your entire DVD/ Blu-ray – including menus, trailers, and special features – onto one or multiple discs. DVDFab Blu-ray to DVD Converter is definitely the first software in the world which can decrypt then convert any Blu-ray to DVD-Video disc for playback on DVD player or DVD player software with no third party’s help.

Download Link : 
Screenshot : 

*Thanks For Visiting*

Welcome to Our New Site !

Welcome Visitors ! This is our new Site, Black CyberSec Crew.

  • Principal :
We Are The Lights In The Darkness. We Are The Truth Behind The Lies. We Are Black CyberSec. It's Too Late To Expect US !

  • Biography : 
Black CyberSec Crew was a hacking community. Here, We learn, We Chat, and We made together as Always. We Are Brothers, No matter For The World, Especially Malaysia & Indonesia. 

  • Additional Notes :
  1. If You have any request for posts, Please Request Here
  2. If you have Any problems, Ask for the Admin ? Click Here
  3. Or if you want to contact the Autor, Please Click Here
  4. If you want to be Our Site author, Please ConsultateHere
*Thanks For Visiting*