MyBB 1.6.x < 1.6.11 Multiple Vulnerabilities

Binary data 8613.prm...

WordPress WP-DB-Backup 2.2.4 Backup Theft

!/bin/bash Larry W. Cashdollar, @larry0 Will brute force and search a Wordpress target site with WP-DB-Backup v2.2.4 plugin installed for any backups done on 20141031 assumes the wordpress database is wordpress and the table prefix is wp...

Supesite 前台注入之四 (select) 及一个小问题。

简要描述： 集齐了supesite的 Select Update insert delete 注入 准备召唤神兽了。 详细说明： 小问题 supesite 备份数据库的路径为 data/backupSAS2n5/141007Pwok71Ei-1.sql backup随机字符/日期随机字符.sql 但是这样的在win apache下 很容易用短文件名找到 写个字典 141007声称类似的时间 然后枚举就行了。 注入 batch.common.php $name = empty$GET'name'?'':trim$GET'name'; $cid =...

ecshop最新版csrf 下载数据库

简要描述： 太阳底下 详细说明： 测试版本，最新的2.7.4 beta1 目测2.7.3所有版本也都没有token 没有新鲜事。翻了好几遍厂商漏洞列表，确实没看到有人提过。 备份数据库的功能。 请求如下：有一个token的字段，但是默认为空，服务端也没有检查该字段，直接为空就可以请求成功。 同样，厂商采用了使用referer的方式来防御csrf，只要为空就可以绕过。可以说是这种防御是没有效果的。 构造好exp，管理员点击之后，在web目录下生成用户可控文件名的sql文件。可以直接下载。 漏洞证明： https://images.seebug.org/upload/201409/12165...

TNG Sitebuilding v. 10.0.3 - Admin Panel Motion Logs Downloader Exploit

Admin adminlog.txt all his movements are recorded file. This log file is displayed in the target's local directory Database backup taken in this file where records are shown to be and you can easily download a database backup Usage Info perl www.target.com /path/ TNG Sitebuilding v. 10.0.3 - Admi...

DZ所有版本都存在一个设计缺陷

简要描述： 试试可以不先吧。 详细说明： 不会分析源码。。木有去分析了。。 最新版本。。目测所有版本都存在。。我们来数据库备份下。 恭喜您，成功创建 3 个备份文件，备份全部完成。 ./data/backupf4b1fa/140811tv3zcb3Z-1.sql ./data/backupf4b1fa/140811tv3zcb3Z-2.sql ./data/backupf4b1fa/140811tv3zcb3Z-3.sql 这个。看起来很长似得。。 data/backupf4b1fa/140811tv3zcb3Z-1.sql...

FengCms交互式Getshell

简要描述： 小问题组合造成。 详细说明： 首先我们来留言这。 http://10.10.10.1/messageadd.html 图中 内容 那个框中具体如下 产品型号 : wooyun - 1 " onmouseover="c=new...

WordPress Plugin WP BackupPlus - Database and Files Backup Download

Exploit Title: Wordpress wpbackupplus Database and files Backup download 0-day Google Dork: Index of:"/wp-backup-plus" Date: 19/07/2014 Exploit Author: pSyCh03D Arfaoui Moslem https://www.facebook.com/lulz.sec Vendor Homepage: http://wpbackupplus.com/ Version: Tested on: win7 32 Bit & Linux Kali ...

webSPELL <= 4.01.01 Database Backup Download Vulnerability

No description provided by source. WebSPELL = 4.01.01 Accessible Database Backup Download Exploit Discovered by: Trex Visit: www.SecuritySector.org / www.UnderGround.ag Exploit: http://SITE/PATH/admin/database.php?action=write&userID=1 Solution: http://cms.webspell.org/index.php?site=files&file=1...

Alwjeez Script Database Backup Exploit

No description provided by source. ::::::::::::::::Exploit::::::::::: html center body text=00FF00 bgcolor=000000 p align=centerbspan lang=en-usSecurity war /span/b/p p align=centerbspan lang=en-usFor more exploits/span/b/p p align=centerspan lang=en-usbvisit/b /span/p p align=centerfont...

AlstraSoft Web Host Directory 1.2 - Multiple Vulnerabilities

No description provided by source. ============================================================================== / \ | | | | / \ | | | | / \ | | | | / \ | || | / \ | | | | / \ | | IN THE NAME OF // \ || || // \ || || ==============================================================================...

torrenttrader classic 1.09 Multiple Vulnerabilities

No description provided by source. waraxe-2009-SA074 - Multiple Vulnerabilities in TorrentTrader Classic 1.09 =============================================================================== Author: Janek Vind waraxe Date: 15. June 2009 Location: Estonia, Tartu Web:...

PHP-Fusion Database Backup Information Disclosure Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/10974/info It is reported that PHP-Fusion is susceptible to a database backup information disclosure vulnerability. An anonymous remote attacker may be able to download a complete database backup from the server...

qEngine CMS 6.0.0 - Multiple Vulnerabilities

No description provided by source. ?php / qEngine CMS 6.0.0 Database Backup Disclosure Exploit Vendor: C97net Product web page: http://www.c97.net Affected version: 6.0.0 and 4.1.6 Summary: qEngine qE is a lightweight, fast, yet feature packed CMS script to help you building your site quickly...

Cart Engine 3.0.0 Database Backup Disclosure Exploit

No description provided by source. ??php / Cart Engine 3.0.0 Database Backup Disclosure Exploit Vendor: C97net Product web page: http://www.c97.net Affected version: 3.0.0 Summary: Open your own online shop today with Cart Engine! The small, yet powerful and don't forget, FREE shopping cart based...

Kemana Directory 1.5.6 Database Backup Disclosure Exploit

No description provided by source. ?php / Kemana Directory 1.5.6 Database Backup Disclosure Exploit Vendor: C97net Product web page: http://www.c97.net Affected version: 1.5.6 Summary: Experience the ultimate directory script solution with Kemana. Create your own Yahoo or Dmoz easily with Kemana...

Picture Rating 1.0 - Blind SQL Injection Exploit

No description provided by source. !/usr/bin/perl -- Picture Rating 1.0 Blind SQL Injection Exploit -- -Info/Instructions- After running this perl script, you will have admin details therefore you will be able to login to the admin area at http://site.com/control/ ok once you have logged in has...

Artiphp CMS 5.5.0 Database Backup Disclosure Exploit

No description provided by source. ?php / Artiphp CMS 5.5.0 Database Backup Disclosure Exploit Vendor: Artiphp Product web page: http://www.artiphp.com Affected version: 5.5.0 Neo r422 Summary: Artiphp is a content management system CMS open and free to create and manage your website. Desc: Artip...

vBulletin <= 3.0.8 Accessible Database Backup Searcher (update 3)

No description provided by source. / Needed to pentest a few vBulletin forums so I wrote this junk real quick. Reference: http://securitytracker.com/alerts/2005/Aug/1014805.html Good paths: /forum/ / /forum/archive/ /forum/cpadmin/ Update 1: Code error fixes. /str0ke [email protected] Update 2:...

Host Directory PRO 2.1.0 - Remote Database Backup Vulnerability

No description provided by source. Host Directory Pro Bypass & Backup DB Disc. Multiple Vulns. ---------------------------------------------------------- Discovered By: ZoRLu msn: [email protected] Date: 28/03/09 Home: yildirimordulari.com / z0rlu.blogspot.com / www.experl.com / woltaj.org N0T...