+++++ Dear ….. Thank you for visiting our booth at the Myanmar Black Hacking. We hope you will have a good time and enjoyed your visit to Underground. In case we won't answer some of your questions about our Real Info, we encourage you to visit our website at www.myanmarblackhacking.com +++++ It will give you a good idea of what we can do for +++++

Feb 16, 2016

0 MyCustomers Cms Sql Injection Vulnerability

ပထမဆံုးတင္တဲ့အတြက္အမွားပါရင္ နားလည္ေပးပါ ........

Exploit Title : MyCustomers Cms Sql Injection Vulnerability
Exploit Author : Persian Hack Team

Google Dork : "Powered By IranPHP" & inurl:/index.php?DPT=IP17 & "Powered+by+MyCustomers-1.3.873"


ကိုျကိုက္တဲ့ Dork နဲ့ ရမ္းလ္ိုက္ပါ
Site ေတြက်လာပါလိမ့္မယ္ က်ြန္ေတာ္ကေတာ့ inurl:/index.php?DPT=IP17 ကိုယူသံုးလုိက္ပါတယ္


Sqli ေပါက္မေပါက္စစ္ျကည့္ပါ့မယ္ ' ေလးနဲ့
စစ္လိုက္တဲ့အခါ
ပံုမွာျပထားသလိုမ်ိုး errror တက္လာပါ့မယ္
Sqli ေပာက္တယ္လို ့ယူဆလို့ ရပါျပီ manual မထိုးခ်င္ရင္ေတာင္ စာဖတ္သူေတြအေနနဲ့ အလြယ္ဆံုး  Sqlmap ကို သံုးသင့္ပါတယ္ သံုးနည္းကိုေတာ့ ေျပာမျပေတာ့ပါဘူး
နားမလည္ပါက YouTube Linkမွာ expoit တစ္ခုလံုး Tuto ကိုျကည့္နိုင္ပါတယ္္-->>>https://www.youtube.com/watch?v=43DVOq5L2hw

 Orginal link--https://www.exploit-db.com/exploits/38830/

                                                                                                    ,  Regards Yur!ko
                                                                                         


0 comments:

Post a Comment