sQuo Posted August 15, 2012 Share Posted August 15, 2012 Re: Pangolin 3.2.4 Cracked work 100% Any one checked it ?, its clean or backdoored....... all files are checked, this file is clean Link to comment Share on other sites More sharing options...
D4rkn3S Posted August 16, 2012 Share Posted August 16, 2012 Re: Pangolin 3.2.4 Cracked work 100% I this topic write how to manual this,sory admin I dont search SQL injeqtion(manual) and this topic writhe ok?(and sory I no dont speack good inglish) So fisrt.we need "BUG"(ERROR in sql sintax)this is vilnerable site [url=( This is the hidden content, please Sign In or Sign Up ) but this site is vulnerable there are This Error (Warning: mysql_fetch_array(): supplied argument is not a valid MySQL result resource in C:\inetpub\vhosts\byrdautomotive.com\httpdocs\cmspages.php on line 4) this good so we need to find hos table this site,its ... (1). This is the hidden content, please Sign In or Sign Up (Eroor) (2). This is the hidden content, please Sign In or Sign Up (and again error) (3). This is the hidden content, please Sign In or Sign Up (so no error,it's good) but we need to find the main table,this is true,sintax ago wrihte ( ----> - ) that's link show (4). This is the hidden content, please Sign In or Sign Up there are number 2.this is main table,so we need to find column.its this ... This is the hidden content, please Sign In or Sign Up ),3+from+information_schema.tables+where+table_schema=database()-- there are many table, we need table"admin" and there find column it's this This is the hidden content, please Sign In or Sign Up ),3+from+information_schema.columns+where+table_name=0x61646d696e-- (61646d696e this is HEX this table name,"admin") we need to password and FName,it's there This is the hidden content, please Sign In or Sign Up ),3+from+admin-- (0x3a <---- it's a hex ----> : ) and there are admin login and password :) thank's adeded Link to comment Share on other sites More sharing options...
Recommended Posts