header-logo
Suggest Exploit
vendor:
Football Pool v3.1
by:
LionTurk
7,5
CVSS
HIGH
Database Disclosure
200
CWE
Product Name: Football Pool v3.1
Affected Version From: Football Pool v3.1
Affected Version To: Football Pool v3.1
Patch Exists: NO
Related CWE: N/A
CPE: N/A
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2009

Football Pool v3.1 Database Disclosure Vulnerability

Football Pool v3.1 is vulnerable to a database disclosure vulnerability. An attacker can access the NFL.mdb database file located in the /data/ directory. The admin page is located at /userLogin.asp.

Mitigation:

Ensure that the /data/ directory is not accessible to external users and that the admin page is protected with a strong password.
Source

Exploit-DB raw data:

==============================================================================  

                      _      _       _          _      _   _  

                     / \    | |     | |        / \    | | | |  

                    / _ \   | |     | |       / _ \   | |_| |  

                   / ___ \  | |___  | |___   / ___ \  |  _  |  

                  /_/   \_\ |_____| |_____| /_/   \_\ |_| |_|  

   

   

==============================================================================  

        [»] ~ Note : Baska Biri Bulduysa Affettsin :D

==============================================================================  

        [»]Football Pool v3.1   Database Disclosure Vulnerability  

==============================================================================  

   

    [»] Script:             [   Football Pool v3.1 ]  

    [»] Language:           [ ASP ]  

    [»] Download:           [ http://aspindir.com/Goster/742] 

    [»] Founder:            [ LionTurk -  Bylionturk@kafam1milyon.com }

    [»] My Home:            [ RevengeHack.com ]  

    [»]N0T3    :             Yeni Aciklarimi Bekleyin.


###########################################################################  

   

===[ Exploit And Dork  ]===  

   

  [»] http://revengehack.com/[dizin]/data/NFL.mdb

 


  [»] asp football pool v3.1 © 1999-2009 by mike hall. or 2009 Football Pool

  [»]   Admin Page: /userLogin.asp




Author:  LionTurk <-  

Bizim Asiret: eXceptioN,CodeInside,CristaL1o,Hack3ra,eXtReMe,By_HKC,TerrorZveng

                 

- Ben Ne Heykirlar Gordum  site heyklicek exploiti yok.Ben Ne exploitler gordum kullancak heykir yok :D

                                 


###########################################################################

Navigation

Suggest Exploit

Services By CQR