 |
|
 |
 |
Menu |
 |
|
 Home |
| |
|
 Discussions |
| |
|
 Tools |
| |
|
| Affiliates |
| |
|
 Content |
| |
|
 Info |
| | |
|
|
|
|
|
User Info |
|
 Membership:
 Latest: MichaelSnaRe
 New Today: 0
 New Yesterday: 0
 Overall: 9144
 People Online:
 Visitors: 83
 Members: 0
 Total: 83
|
|
|
|
|
|
Full disclosure |
|
|
|
 |
|
 |
 |
|
 |
IT Security and Insecurity Portal |
|
|
Php exploits. |
|
 Posted: Tue Sep 02, 2008 5:23 pm |
 |
|
| Poison |
| Advanced user |
 |
|
| Joined: Jul 30, 2008 |
| Posts: 126 |
|
|
|
 |
|
 |
|
|
|
|
|
| Posted: Tue Sep 02, 2008 6:53 pm |
|
|
| pexli |
| Valuable expert |
 |
|
| Joined: May 24, 2007 |
| Posts: 665 |
| Location: Bulgaria |
|
|
|
|
|
|
Install php on your PC and do it.  |
|
|
|
|
| Posted: Tue Sep 02, 2008 7:08 pm |
|
|
| Poison |
| Advanced user |
|
|
| Joined: Jul 30, 2008 |
| Posts: 126 |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| Posted: Tue Sep 02, 2008 8:38 pm |
|
|
| lenny |
| Valuable expert |
|
|
| Joined: May 15, 2008 |
| Posts: 275 |
|
|
|
|
|
|
|
Ok, download and install PHP from the php.net website - Make sure you get the windows version. There are *many* tutorials of how to do this online.
Basically: (taken from thesitewizard.com)
| Quote: | Create a folder on your hard disk for PHP. I suggest "c:\php" although you can use other names if you wish. Personally though, I prefer to avoid names with spaces in it, like "c:\Program Files\php" to avoid potential problems with programs that cannot handle such things. I will assume that you used c:\php in this tutorial.
Extract all the files from the zip package into that folder. To do that simply double-click the zip file to open it, and drag all the files and folders to c:\php. |
Once you have PHP installed, navigate to C:\php in a command windows (start -> run -> type in "cmd") and enter "./php.exe <yourscript>.php" where <yourscript>.php is a text file containing the exploit you wish to execute starting with the "<?" tag and ending with the "?>" tag.
Its a little complicated to explain, you are bound to get stuck - post again when you do  |
|
|
|
|
|
|
|
|
| Posted: Wed Sep 03, 2008 2:35 pm |
|
|
| Poison |
| Advanced user |
|
|
| Joined: Jul 30, 2008 |
| Posts: 126 |
|
|
|
|
|
|
|
ok so ive got it all installed im just confused on what to type.?
./php.exe <?sql?>.php ? |
|
|
|
|
| Posted: Wed Sep 03, 2008 2:51 pm |
|
|
| lenny |
| Valuable expert |
|
|
| Joined: May 15, 2008 |
| Posts: 275 |
|
|
|
|
|
|
|
No, sorry - I think ive confused you.
Ok, the file should be called "sql.php" and you execute it with | Quote: | | "./php.exe sql.php" |
Inside the file, the file should start with "<?" and finish with "?>". |
|
|
|
|
| Posted: Sat Sep 06, 2008 2:32 pm |
|
|
| Poison |
| Advanced user |
|
|
| Joined: Jul 30, 2008 |
| Posts: 126 |
|
|
|
|
|
|
|
thanks i sorted it
ijust typed
php.exe <sql>.php |
|
|
|
|
www.waraxe.us Forum Index -> vBulletin Board
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
|
All times are GMT
Page 1 of 1
|
|
|
|
Powered by phpBB © 2001-2008 phpBB Group
|
|
|
|
|
|
|
