GHDB
GHDB
|
Google Search: Powered by PHP-Fusion v6.00.109 © 2003-2005. -php-fusion.co.uk
rgod rates this entry 10 out of 10. Submitted: 2005-09-28 00:00:00 Added by: rgod Hits: 1861 Score: 10 this is the dork: Powered by PHP-Fusion v6.00.109 © 2003-2005. -php-fusion.co.ukas it is, without quotes, for the version I tested, prone toSQL Injection / administrative credentials disclosurethis my advisory/poc exploit: http://rgod.altervista.org/phpfusion600109.html Comments: 2005-12-04 06:19:00 (kasper5150): RGOD!!! YOU FREAKIN ROX0RZ MAN!!! 2005-12-04 06:19:15 (kasper5150): RGOD!!! YOU FREAKIN ROX0RZ MAN!!! 2006-01-18 21:30:23 (neZa.corp): oki.. i need a little hint, here..hehe i have loged in on my user account @ the victims PHP-Fusion v6.00.109 and i saw that the admin username was: webmaster then i past this in URL:www.[victim]/[fusionbla]/messages.php?msg_send=’ UNION SELECT user_password FROM fusion_users WHERE user_name=’webmaster’/* But i only got a error messsage that says: error, userer ID dosent exist.. :-O repl plz.. greets frm denmark – neZa.corp c”,) |
Does GHDB still updates for now?
The GHDB is alive and well, updated through the ExploitDB: http://www.exploit-db.com/google-dorks.
Hi Johnny,been a while since I’ve came last. Aren’t you gonna update this website anymore???
The GHDB is not updated and lives with the exploitdb: http://http://www.exploit-db.com. Please check out the awesome folks at Offensive Security as well: http://www.offensive-security.com!
Is any offline view-able resources is available of this product ?