|
|
|
|
Menu |
|
|
Home |
| |
|
Discussions |
| |
|
Tools |
| |
|
Affiliates |
| |
|
Content |
| |
|
Info |
| | |
|
|
|
|
|
User Info |
|
Membership:
Latest: MichaelSnaRe
New Today: 0
New Yesterday: 0
Overall: 9144
People Online:
Visitors: 134
Members: 0
Total: 134
|
|
|
|
|
|
Full disclosure |
|
|
|
|
|
|
|
|
|
IT Security and Insecurity Portal |
|
|
|
Not working.
Edit:
Working:
http://www.kisobox.com/area52.php |
|
|
|
|
#!/usr/bin/perl -w
# Author: ShAnKaR
# Title: multiple PHP application poison NULL byte vulnerability
# Applications: phpBB 2.0.21, punBB 1.2.12
# Threat Level: Critical
# Origi ... |
|
|
|
|
a%3A2%3A%7Bs%3A11%3A%22autologinid%22%3Bs%3A32%3A%222c84283947b990d203caede340d1b2bc%22%3Bs%3A6%3A%22userid%22%3Bi%3A3%3B%7D%3B |
|
|
|
|
So how do I execute it? Do I need to user Active perl? Or do I just upload it on my server?
Use linux.
In console.
jed ./test
copy all script
save script
chmod u+x ./test
./test
But.. "yo ... |
|
|
|
|
I don't see any intrest in this exploit because when you have a cookie you can access admin panel. So why to use another explit ? |
|
|
|
|
It seems that it's not working |
|
|
|
|
------------------------------------------------------
HYSA-2006-001 h4cky0u.org Advisory 010
------------------------------------------------------
Date - Wed Jan 25 2006
TITLE:
====== ... |
|
|
|
|
watch http://kisobox.com/area51/phpbb2.0.16xss/ and try figure it out |
|
|
|
|
if docs folder exists of course i always delete it |
|
|
|
|
finally got this to work on the site i wanted it to. but only pulled my cookie. suggestions?
I think forum you wan't to sploit don't have the html tags enabled. |
|
|
|
|
Wate of time because "If in phpbb is Allowed HTML tags "ON"". I know the phpbb forums have HTML tags off after instalation, and there is not mutch forums that have html tags on. |
|
|
|
|
2.0.16 <-- phpBB 2.0.16 XSS Remote Cookie Disclosure Exploit
2.0.17 <-- Don't know if public exploit exsist but i can be wrong.
2.0.18 <-- No public exploit exist yet. |
|
|
|
|
hahahah :} nice one shai-tan my master :} |
|
|
|
|
Best and most satisfying is learning how to make them your-self. And then making them
Shai-tan
Don't have mutch time to do that Work etc :} Maybe some day :] |
|
|
Page 1 of 3 |
Goto page 1, 2, 3Next All times are GMT |
Powered by phpBB © 2001-2008 phpBB Group
|
|
|
|
|
|
|