 |
|
 |
 |
Menu |
 |
|
 Home |
| |
|
 Discussions |
| |
|
 Tools |
| |
|
| Affiliates |
| |
|
 Content |
| |
|
 Info |
| | |
|
|
|
|
|
User Info |
|
 Membership:
 Latest: MichaelSnaRe
 New Today: 0
 New Yesterday: 0
 Overall: 9144
 People Online:
 Visitors: 253
 Members: 0
 Total: 253
|
|
|
|
|
|
Full disclosure |
|
|
|
 |
|
 |
 |
|
 |
IT Security and Insecurity Portal |
|
|
|
| Lol No not yet haven't tried. i was going to wait till i could steal my neighbors wifi. |
|
|
|
|
Okay so give me your idea's.
The site is basically set up like this.
http://www.site.com/viewimage/http://www.linkto/image.gif
And it takes that and puts that in the html image code and shows ... |
|
|
|
|
Haha Thanks Lenny...
But still got my worried i know my skill level is still down their.
This would be my first rooting of box and i feel uncomfortable with it. |
|
|
|
|
Dam LOL..
You got me all scared right now.
Someone root this box for me and upload a shell the website i need lol.
I just wanna grab their files and dumb their mysql not even a deface. |
|
|
|
|
1.Yes if you don't clean after your enter in box.
2.Great. tar czf /were/you/want/the/archive.tar.gz /which/folder/you/plain/to/tar
3.After you root the box you have window like command prompt in wi ... |
|
|
|
|
Okay.. I read up and i know how to root a box using netcat.
But here is my question
1. If i root the a box will the owners know it was rooted?
2. Im not trying to deface all the sites i just wa ... |
|
|
|
|
 Thanks! |
|
|
|
|
Other server info.
Software: Apache/2.0.54. PHP/4.4.8
OS Version? - Linux version 2.6.20.2mtv8 (gcc version 4.1.2 20061115 (prerelease) (Debian 4.1.1-21)) #1 |
|
|
|
|
Okay so im trying to go after website1.com but it is not vulnerable.
so I upload a shell on to website2.com because it its on the same box as website1.com But i cant get to website1.com
I used ... |
|
|
|
|
I keep getting Warning: mysql_num_rows(): supplied argument is not a valid MySQL result resource
http://www.site.com/artist.php?id=null%20union%20all%20select%201,2,3,concat(user(), ... |
|
|
|
|
Haha that was it! Thanks alot!!@!@!
Now i just gotta crack these hash's. |
|
|
|
|
Ah i found my new 1 but it prefix is the same?
Date: Wed, 28 Jan 2009 02:22:59 -0500
Error Number: 1064
Error: You have an error in your SQL syntax; check the manual that ... |
|
|
|
|
I guess im lucky kind of? Its not the prefix causing the error?
The Logs are their. it says the prefix is ibf_
Here is an example
I did this from January the latest..
Couldent find the one ... |
|
|
|
|
Ah but /etc/shadow is only viewable by admin..
Local file exploit cant view that. |
|
|
| Page 1 of 6 |
Goto page 1, 2, 3, 4, 5, 6Next
All times are GMT |
Powered by phpBB © 2001-2008 phpBB Group
|
|
|
|
|
|
|
