|
Ended the summer, we ran out of money.
To overcome the financial crisis had to take sexual halturku home.
Entered only one order for hacking forum worldhyip.com.
I looked at him and vzgrusnul.
Apache does not show his version.
Neither internal nor external inkluda.
Forum Powered by: vBulletin Version 3.0.3.
Patched.
Ambush.
Ports, even filigree Nestan not to rastraivaytes.
Edinsvennoe the way that the heart is prompted to look for other sites bazhnye from the same host.
Using base http://domainsdb.net/ found that here the same host more than 300 sites.
This is encouraging.
The next day I was looking through the list of hosting your websites.
The fifth part is not functioning at all.
Two-thirds were squalid home pages Taiwanese, interspersed with rare Americans.
I found a couple of shops with a cart Zen Cart, but my past experiences have not brought me success in picking it.
There were forums on phpBB 2.0.3 to 2.0.11 and vBulletin Version 3.0.0 to 3.0.6 on, but patched.
There was also here such zamanuha http://xxx.com/pages/pg.php3?ond=Zeep%20maken&cat='zeep but I left it last.
I have been thinking to hammer a wedge on this matter, but I came across a site with phpNuke and phpBB 2.0.10 forum.
Check it for sql-injection, I saw that he was buggy.
That was only one problem, the command fails.
http://xxx.com/modules.php?name=Forums&file=viewtopic&t=2&highlight=%2527.system($_GET[cmd]).%2527&cmd=ls
http://xxx.com/modules.php?name=Forums&file=viewtopic&t=2&highlight=%2527.$poster=%60$cmd%60.%2527&cmd=ls
The effect is zero, only kryakazyabra) \ b # i showing that nepatchenny forum.
Then I tried to look dbuser: dbpasswd:
http://xxx.com/modules.php?name=Forums&file=viewtopic&t=2&highlight=%2527.$poster=$dbuser.%2527
http://xxx.com/modules.php?name=Forums&file=viewtopic&t=2&highlight=%2527.$poster=$dbpasswd.%2527
same.
The day was not mine.
But the query:
http://xxx.com/modules.php?name=Forums&file=viewtopic&t=2&highlight=%2527.$poster=$dbhost.%2527
gave the first positive response: 203.194.240.131
Then I got the idea that the administrator must change the value of $ dbpasswd and $ dbuser.
Little did I know that in versions for phpBB phpNuke these values look for another $ dbpass and $ dbname.
And sure enough, the query:
http://xxx.com/modules.php?name=Forums&file=viewtopic&t=2&highlight=%2527.$poster=$dbpass.%2527
gave me the password: Anarar1 +
With $ dbuser this number is not passed, I was not able to pick up value, digging in the documentation for phpBB, I decided to leave until morning.
I went to sleep.
In the morning I woke up and realized that I was an ass.
I do not know why, but Mozille phpBB forums on phpNuke I always appear crooked.
Login was always before my eyes in the error message:
Warning: Can not modify header information - headers already sent by (output started at /home/login_xxx/www/www/header.php:32)
in /home/login_xxx/www/www/includes/page_header.php on line 492
Past experience showed that the pair login / password at the phpBB sometimes approached and ftp.
Luck.
He went, filled the Web was.
Again, bummer.
The right to view the contents of / home is not, uname is not working.
Pour everything in Linux exploits in hopes of gaining root is not the fort.
Something told that fresh kernel.
Watching the way to the web server / home / login_xxx / www / www /, I climb into the / etc / passwd and similar attempts to open ls -pa / home / worldhyip / www / www
Once again, fate turned to face me.
I see a list of files.
Vyderayu passwords for the forum cat /home/worldhyip/www/www/forum/includes/config.php
Konnekchus Dampleux to MySQL database.
I see passwords on Frontpagi:
/_vti_pvt/service.pwd
and login / passvor to yet another MySQL-database:
/config/config.php
I take away passwords and database dump.
Base sent to the customer and get a coin and drink away.
Your bug Durito.
_________________
EAT THE RICH!
| 
