2532|Gigs <= 1.2.2 Arbitrary Database Backup/Download Vuln

		BadHackerZ > Hacking Arena > Exploit Codes
2532\|Gigs <= 1.2.2 Arbitrary Database Backup/Download Vuln

Notices

Welcome to the BadHackerz forums.

You are currently viewing our boards as a guest which gives you limited access to view most discussions and access our other features. By joining our free community you will have access to post topics, communicate privately with other members (PM), respond to polls, upload content and access many other special features. Registration is fast, simple and absolutely free so please, join our community today!

If you have any problems with the registration process or your account login, please contact contact us.

Register Now for FREE!

Our records show you have not yet registered to our forums. To sign up for your FREE account INSTANTLY fill out the form below!

Username: Password: Confirm Password: E-Mail: Confirm E-Mail:
Birthday:

Random Question

How many letters are in the word Mississippi? (Please use the actual numbers, and not words)

I agree to forum rules

LinkBack

Thread Tools

Display Modes

08-04-2008

#1 (permalink)

Armageddon

Studentz

Join Date: Jun 2006

Location: On port u forgot to secure!

Age: 18

Posts: 6,125

Thanks: 57

Thanked 171 Times in 126 Posts

Rep Power: 250 Armageddon has a reputation beyond repute

Awards Showcase

Total Awards: 6

2532|Gigs <= 1.2.2 Arbitrary Database Backup/Download Vuln

Code:

--==+================================================================================+==--
--==+          2532|Gigs <= 1.2.2 Arbitrary Remote Database Backup/Download          +==--
--==+================================================================================+==--



Discovered By: t0pPg4y
Discovered On: 18 April 2008
Script Download: http://www.2532gigs.com/?download=2532Gigs_stable
DORK: N/A

Vendor Has Not Been Notified!


DESCRIPTION:
2532|Gigs does not validate a user in "backup.php" this means any user can visit and backup.
of course some GET variables are being used but thats all.

running the below url/path on a server that is running 2532|Gigs will make a backup of the database
and save it too "http://site.com/2532gigs/backup.sql"


Vulnerability:
http://site.com/2532gigs/backup.php?export=1


NOTE/TIP:
you must be logged in to a ordinary user account for this too work!


GREETZ: milw0rm.com, ~removed~.org, CipherCrew !



--==+================================================================================+==--
--==+          2532|Gigs <= 1.2.2 Arbitrary Remote Database Backup/Download          +==--
--==+================================================================================+==--

__________________

To view links or images in signatures your post count must be 10 or greater. You currently have 0 posts.

Similar Threads
Thread	Thread Starter	Forum	Replies	Last Post
e107 My_Gallery Plugin Arbitrary File Download Vulnerability	Armageddon	Exploit Codes	0	08-04-2008 12:50 PM
moziloCMS 1.10.1 (download.php) Arbitrary Download File Expl	Armageddon	Exploit Codes	0	08-04-2008 12:46 PM
vBulletin <= 3.0.8 Accessible Database Backup Searcher (update 3)	MaDHA¢KeR™	Exploit Codes	0	08-02-2008 03:15 PM
832 Gigs porn!! dont believe?? check for your self	The Boss	Graveyard	34	10-04-2007 06:20 PM

Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)

Thread Tools
Show Printable Version Email this Page
Display Modes
Linear Mode Switch to Hybrid Mode Switch to Threaded Mode