Sign In
Create Account
Yo Leute!
Ich suche code von jeglicher Art von Sicherheitslücke in PHP die ihr finden könnt. So bringen wir mal etwas schwung rein.
Als Gast hast du nur eingeschränkten Zugriff!
Du bist nicht angemeldet und hast somit nur einen sehr eingeschränkten Zugriff auf die Features unserer Community.
Um vollen Zugriff zu erlangen musst du dir einen Account erstellen. Der Vorgang sollte nicht länger als 1 Minute dauern.
- Antworte auf Themen oder erstelle deine eigenen.
- Schalte dir alle Downloads mit Highspeed & ohne Wartezeit frei.
- Erhalte Zugriff auf alle Bereiche und entdecke interessante Inhalte.
- Tausche dich mich anderen Usern in der Shoutbox oder via PN aus.
[Suche] Code von Lücken
Started by
ProHex
, 05.07.2018 15:55
#1
Posted 05 July 2018 - 15:55 Uhr
ProHex
-
- Moderator
-
- 219 posts
- 185 Bedankt
Hacker
Likes
212
- hacked likes this
Back to top
Report
#2
Posted 06 July 2018 - 10:07 Uhr
tpw
-
- Members
-
- 2 posts
- 0 Bedankt
Leecher
Likes
3
#3
Posted 06 July 2018 - 18:10 Uhr
ProHex
-
- Moderator
-
- 219 posts
- 185 Bedankt
Hacker
Likes
212
#4
Posted 09 July 2018 - 12:21 Uhr
IRET
-
- Members
-
- 20 posts
- 8 Bedankt
Lamer
Likes
74
<?php
$db_host = "localhost";
$db_name = "vuln";
$db_user = "root";
$db_pass = "";
try
{
$dbc = new PDO("mysql:host={$db_host};dbname={$db_name}", $db_user, $db_pass);
$dbc->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION);
$stmt = $dbc->prepare("SET NAMES gbk");
$stmt->execute();
}
catch (PDOException $e)
{
die("<div id=\"error\">Error connecting: ".$e->getMessage()."</div>");
}
function db_query($sql)
{
$args = func_get_args();
$stmt = $GLOBALS['dbc']->prepare($sql);
for ($i = 1; $i < func_num_args(); $i++)
$stmt->bindParam(":$i", $args[$i]);
try { $stmt->execute(); }
catch (PDOException $e) { echo "<div id=\"error\">Database error: ".$e->getMessage()."</div>"; }
return $stmt;
}
if ($_POST && isset($_POST['user']) && isset($_POST['pwd']))
{
$stmt = db_query("SELECT `id` FROM `users` WHERE `user` = :1 AND `pass` = :2", $_POST['user'], $_POST['pwd']);
if ($stmt->rowCount() > 0)
{
echo "♥";
}
else
{
echo "Yeah... You definitly got it...";
}
}
else if (!$_POST)
{
echo '<form method="POST">
Username: <input type="text" name="user" placeholder="username"><br>
Password: <input type="password" name="pwd" placeholder="password"><br>
<input type="submit" value="Login">
</form>';
}
else
{
echo "No, there is no magic vuln here. Get back into the form.";
}
?>
- PaulaAbdul, Ch!ller, ProHex and 1 other like this
#5
Posted 10 July 2018 - 02:01 Uhr
PaulaAbdul
-
- Administration
-
- 2157 posts
- 3712 Bedankt
Favoured Management
Likes
3718
-
1337-699
-
verifiziert -
Android [root] -
Windows, Linux
<?php $db_host = "localhost"; $db_name = "vuln"; $db_user = "root"; $db_pass = ""; try { $dbc = new PDO("mysql:host={$db_host};dbname={$db_name}", $db_user, $db_pass); $dbc->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION); $stmt = $dbc->prepare("SET NAMES gbk"); $stmt->execute(); } catch (PDOException $e) { die("<div id=\"error\">Error connecting: ".$e->getMessage()."</div>"); } function db_query($sql) { $args = func_get_args(); $stmt = $GLOBALS['dbc']->prepare($sql); for ($i = 1; $i < func_num_args(); $i++) $stmt->bindParam(":$i", $args[$i]); try { $stmt->execute(); } catch (PDOException $e) { echo "<div id=\"error\">Database error: ".$e->getMessage()."</div>"; } return $stmt; } if ($_POST && isset($_POST['user']) && isset($_POST['pwd'])) { $stmt = db_query("SELECT `id` FROM `users` WHERE `user` = :1 AND `pass` = :2", $_POST['user'], $_POST['pwd']); if ($stmt->rowCount() > 0) { echo "♥"; } else { echo "Yeah... You definitly got it..."; } } else if (!$_POST) { echo '<form method="POST"> Username: <input type="text" name="user" placeholder="username"><br> Password: <input type="password" name="pwd" placeholder="password"><br> <input type="submit" value="Login"> </form>'; } else { echo "No, there is no magic vuln here. Get back into the form."; } ?>
Brainfuck 
- IRET likes this
,,Der blaue Baum" von Prohex (2020)
#6
Posted 10 July 2018 - 12:37 Uhr
pi^2
-
- Premium Member
-
- 181 posts
- 46 Bedankt
Hacker
Likes
273
Wer bekommts raus (CVE)?
if (!empty($meta['dao']) ) {
if (!$wpdb->get_row( $wpdb->prepare( "SELECT id FROM $wpdb->postmeta WHERE key = '_wp_attachment' AND val LIKE %s AND id <> %d", '%' . $wpdb->esc_like( $meta['dao'] ) . '%', $post_id)) ) {
$tf = str_replace(basename($file), $meta['dao'], $file);
$tf = apply_filters( 'wp_delete_file', $tf );
@unlink( path_join($uploadpath['basedir'], $tf) );
}
}
Die Variablen/Arrays wurden umbenannt damit das hier auch ne Challenge wird ;- )
- ProHex, B1nary and SecurityFlaw like this
#7
Posted 12 July 2018 - 21:40 Uhr
SecurityFlaw
-
- Members
-
- 256 posts
- 112 Bedankt
██████████
Likes
212
-
Android, Android [root]
-
Windows, Linux
| Topic | Forum | Started By | Stats | Last Post Info | |
|---|---|---|---|---|---|
Suche Android Rat |
 Suchanfragen
|
Avni |
|
|
|
[SUCHE] Suche ein Crypter der DarkComet FUD macht! DarkComet, RATs, Crypter
|
Suchanfragen
|
optic1337 |
|
|
|
Suche PHP Backdoor - Botnet |
Suchanfragen
|
Zero00m |
|
|
user(s) are reading this topic
members, guests, anonymous users
This topic has been visited by 31 user(s)
Tool Area
Made with in germany.
