FORUM DARKERS

Exploit para o VBulletin 3.0.8 ou menos.

What it does?
Extracts the username, password hash and salt of the specified user from a VBulletin board of version 3.0.8 or less.

Conditions
1.) Requires permissions to access moderator control panel
2.) Requires permissions to add/modify announcements
3.) The board must have remote posting enabled

How to use
1.) Copy the code below into a new html document.
2.) Modify the post action of the form to the server you wish to exploit.
3.) Load it into your web browser.
4.) Follow the instructions from there.

[Obs: Não traduzi para inglês pois não sei falar inglês para consertar os erros do tradutor!]

Exploit:

Quotehttp://www.w3.org/1999/xhtml" >

   

Martin's modcp/Announcement.php SQL Injection

Affects: Vbulletin <=3.0.8

http://www.m-s-d.net/

Conditions:


1.) You must be a moderator


2.) Remote posting must be enabled

Instructions:


1.) Modify the location of the form post in this file


2.) Create an announcement as per normal


3.) Ensure you are logged into the forum


4.) Fill out the form below and then press "Next" and "Launch Exploit"


5.) Read the modified announcement to get the password, hash and username

http://localhost/vb303/upload/modcp/announcement.php" name="aform">

Enter the existing announcement id:

Enter the userid to gather information for:



Enter the title to give the announcement:



Next >>

Fonte: h4ckyou.org