DNN( DotNetNuke) Hacking

DNN( DotNetNuke) Hacking

Below are the easy steps to implement the attack DNN Web hacking

First use a google dork to find the appropriate target.

inurl:”/portals/0***8243; site:.com

You can change com to your desired domain name like bd ph ae, Now search your website on the google after searching you will get many websites choose any one of it.Its time to check the required vulnerability on the website just place this code after the web address.

Providers/HtmlEditorProviders/Fck/fcklinkgallery.aspx

For example if you got www.victim.com

Replace it http://www.victim.com/Providers/Html...nkgallery.aspx

If you will get this screen means this web is going to hack.

Now choose the third option “A File On Your Site” And than paste this java code on your address bar.

javascript:__doPostBack(‘ctlURL$cmdUpload’,”)

It will allow you to upload a files on this website you can upload text ~ swf ~ jpg ~ gif ~ pdf ~ Files.

After uploading files you can find your file on this address www.victim.com/portals/0/yourfile.extension

here extension is txt jpg swf etc.