Praetorian503 Posted February 11, 2013 Report Posted February 11, 2013 Description: After i sent my exploit to exploit-db and 1337day,I made you this demo to show how it works.Links For The Exploit:http://www.exploit-db.com/exploits/24320/1337day Inj3ct0r Exploit Database : vulnerability : 0day : shellcode by Inj3ct0r TeamTools used:HCON STFMy ExploitMusic:Infected Mushroom With Mayumana - Converting Vegetarian (Live)Exploit Description:================================================== =============Exploit Title: SQLiteManager 0Day Remote PHP Code Injection VulnerabilityGoogle Dork: intitle:SQLiteManager inurl:sqlite/Date: 23/01/2013Exploit Author: RealGameVendor Homepage: http://www.Relagame.co.ilSoftware Link: SQLiteManager | Free Development software downloads at SourceForge.netVersion: <=1.2.4Tested on: Windows XP, Debian 2.6.32-46CVE: N/A================================================== =============Vulnerable Softwares:Name: SQLiteManagerOfficial Site: SQLiteManager - administration de bases de données SQLite.Name: AmppsOfficial Site: Softaculous AMPPSName: VertrigoServOfficial Site: VertrigoServ================================================== =============About Software:Official Site: SQLiteManager - administration de bases de données SQLite.SQLiteManager is a database manager for SQLite databases. You can manageany SQLite database created on any platform with SQLiteManager.================================================== =============Easy Way To Fix:Find: SQLiteStripSlashes($_POST['dbpath'])Replace: str_replace('.', '', SQLiteStripSlashes($_POST['dbpath']))On File: ./include/add_database.php================================================== =============Disclaimer: We are a infosec video aggregator and this video is linked from an external website. The original author may be different from the user re-posting/linking it here. Please do not assume the authors to be same without verifying.Original Source: Source: Sqlitemanager Remote Php Code Execution(Injection) Vulnerability - Demo Quote
