|
|
|
|
Menu |
|
|
Home |
| |
|
Discussions |
| |
|
Tools |
| |
|
Affiliates |
| |
|
Content |
| |
|
Info |
| | |
|
|
|
|
|
User Info |
|
Membership:
Latest: MichaelSnaRe
New Today: 0
New Yesterday: 0
Overall: 9144
People Online:
Visitors: 101
Members: 0
Total: 101
|
|
|
|
|
|
Full disclosure |
|
|
|
|
|
|
|
|
|
IT Security and Insecurity Portal |
|
|
Using 2015 database details |
|
Posted: Wed Feb 15, 2006 2:50 pm |
|
|
FlezZ |
Regular user |
|
|
Joined: Oct 10, 2004 |
Posts: 6 |
|
|
|
|
|
|
|
So, I managed to get all the details about the database connection.
Also, I got the directory listing (remote command execution).
My question is, how can I use this information? |
|
_________________ Just doing it for the knowledge. |
|
|
|
Posted: Thu Feb 16, 2006 2:06 pm |
|
|
is0t0pe |
Regular user |
|
|
Joined: Jan 10, 2006 |
Posts: 13 |
|
|
|
|
|
|
|
Link me to the exploit you used, becuse I myslef, am curious how to operate a 2015 remote command execution, I seem to be at a loss of how to enter certain commands, You mind helping me?
And an answer to your question would be....Usually the admin account on the forum has the same password as the database password or the hosting account password, try it.. |
|
|
|
|
Posted: Thu Feb 16, 2006 4:05 pm |
|
|
FlezZ |
Regular user |
|
|
Joined: Oct 10, 2004 |
Posts: 6 |
|
|
|
|
|
|
|
|
_________________ Just doing it for the knowledge. |
|
|
|
Posted: Fri Mar 03, 2006 6:31 pm |
|
|
FlezZ |
Regular user |
|
|
Joined: Oct 10, 2004 |
Posts: 6 |
|
|
|
|
|
|
|
An answer is still welcome, |
|
_________________ Just doing it for the knowledge. |
|
|
|
www.waraxe.us Forum Index -> PhpBB
You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum You cannot vote in polls in this forum
|
All times are GMT
Page 1 of 1
|
|
|
Powered by phpBB © 2001-2008 phpBB Group
|
|
|
|
|
|
|