javascript hit counter


ËÛÑÉ ÌÏíÏÉ ÈÇáãäÊÏíÇÊ ÈÊÇÑíÎ Çáíæã áÌáÈ ãÚáæãÇÊ ÍÓÇÓå ãä ÞÇÚÏÉ ÇáÈíÇäÇÊ

ËÛÑÉ ÌÏíÏÉ ÈÇáãäÊÏíÇÊ ÈÊÇÑíÎ Çáíæã áÌáÈ ãÚáæãÇÊ ÍÓÇÓå ãä ÞÇÚÏÉ ÇáÈíÇäÇÊ


ÇáäÊÇÆÌ 1 Åáì 3 ãä 3
  1. #1
    ÇáÕæÑÉ ÇáÑãÒíÉ Bakenam
    ÇáÍÇáÉ : ÛíÑ ãÊæÇÌÏ
    ÑÞã ÇáÚÖæíÉ : 350
    ÊÇÑíÎ ÇáÊÓÌíá : Nov 2008
    ÇáÏæáÉ : ÞáÈå Úíæäå æÌÏÇäå
    ÇáãÔÇÑßÇÊ : 11,390
    ÇáÊÞííã : 20
    Array
    ãÚÏá ÊÞííã ÇáãÓÊæì : 27
    Array

    vb ËÛÑÉ ÌÏíÏÉ ÈÇáãäÊÏíÇÊ ÈÊÇÑíÎ Çáíæã áÌáÈ ãÚáæãÇÊ ÍÓÇÓå ãä ÞÇÚÏÉ ÇáÈíÇäÇÊ

    ËÛÑÉ ÌÏíÏÉ ÈÇáãäÊÏíÇÊ ÈÊÇÑíÎ Çáíæã áÌáÈ ãÚáæãÇÊ ÍÓÇÓå ãä ÞÇÚÏÉ ÇáÈíÇäÇÊ
    ËÛÑÉ ÌÏíÏÉ ÈÇáãäÊÏíÇÊ ÈÊÇÑíÎ Çáíæã áÌáÈ ãÚáæãÇÊ ÍÓÇÓå ãä ÞÇÚÏÉ ÇáÈíÇäÇÊ
    ËÛÑÉ ÌÏíÏÉ ÈÇáãäÊÏíÇÊ ÈÊÇÑíÎ Çáíæã áÌáÈ ãÚáæãÇÊ ÍÓÇÓå ãä ÞÇÚÏÉ ÇáÈíÇäÇÊ
    ËÛÑÉ ÌÏíÏÉ ÈÇáãäÊÏíÇÊ ÈÊÇÑíÎ Çáíæã áÌáÈ ãÚáæãÇÊ ÍÓÇÓå ãä ÞÇÚÏÉ ÇáÈíÇäÇÊ


     

    ÇÖÛØ åäÇ æÓÇåã ãÚäÇ Ýí äÔÑ ÇáãæÖæÚ Úáì ÇáÝíÓ Èæß

     


    ÇáÓáÇã Úáíßã

    ÇáËÛÑå ÌÏíÏå ÈÊÇÑíÎ ÇãÓ



    ÇÞÊÈÇÓ-----------------------------------------------------------------------------
    vBulletin <= 3.6.4 inlinemod.php "postids" sql injection / privilege
    escalation by session hijacking exploit
    by rgod
    mail: retrog at alice dot it
    site:
    ---

    Works regardless of php.ini settings, you need a Super Moderator account
    to copy posts among threads, to be launched while admin is logged in to
    the control panel, this will give you full admin privileges
    note: this will flood the forum with empty threads even!
    -----------------------------------------------------------------------------
    ');

    if ($argc<7) {
    print_r('
    -----------------------------------------------------------------------------
    Usage: php '.$argv[0].' host path user pass forumid postid OPTIONS
    host: target server (ip/hostname)
    path: path to vbulletin
    user/pass: you need a moderator account
    forumid: existing forum
    postid: existing post
    Options:
    -p[port]: specify a port other than 80
    -P[ip:port]: specify a proxy
    Example:
    php '.$argv[0].' localhost /vbulletin/ rgod mypass 2 121 -P1.1.1.1:80
    php '.$argv[0].' localhost /vbulletin/ rgod mypass 1 143 -p81
    -----------------------------------------------------------------------------
    ');



    ÇáËÛÑå äÒáÊ ÈãæÇÞÚ ÇáÓíßæÑÊí

    åá ãÓãæÍ ÇÍÏ ÑÇÈØåÇ æáÇ ÝíåÇ äÊÝ

    ÈÇáäÓÈÉ ááÊÑÞíÜÚ


    =========================



    ÇÞÊÈÇÓ ÇáãÔÇÑßÉ ÇáÃÕáíÉ ÃÖíÝÊ ÈæÇÓØÉ : ÇáÚäÏáíÈÇáÓáÇã Úáíßã æÑÍãÉ Çááå æÈÑßÇÊå

    ßáÇã ßÇÊÈ ÇáãÞÇá ÕÍíÍ 100% æÈÇáÝÚá íæÌÏ ËÛÑå íÊã ãä ÎáÇáåÇ ÍÞä ÊÚáíãÉ sql áÌáÈ ãÚáæãÇÊ ÍÓÇÓå ãä ÞÇÚÏÉ ÇáÈíÇäÇÊ ÅÐÇ ßÇä ÇáãÓÊËãÑ ááËÛÑå ÃÍÏ ÇáãÔÑÝíä Ãæ ÇáãÔÑÝ ÇáÚÇã ÈäÝÓå.

    áíÓÊ Þæíå ÌÏÇð ÝÊØãä íÇ ÃÎí ÇáßÑíã

    æÇáÊÑÞíÚ ÞÇã ÈÔÑÍå ÇáßÇÊÈ æÞÇá:

    1- ÅÝÊÍ ãáÝ inlinemod.php ÇáãæÌæÏ ÏÇÎá ãÌáÏ vb

    2- ÇÈÍË Úä:
    ÑãÒ PHP:
    foreach ($postids AS $index => $postid)
    {
    if (
    $postids["$index"] != intval($postid
    ))
    {
    unset(
    $postids["$index"
    ]);
    }
    }

    3- ÅÓÊÈÏáå ÈÜ:
    ÑãÒ PHP:
    foreach ($postids AS $index => $postid)
    {
    $postids["$index"]=(int)$postids["$index"
    ];
    }

    4- ÅÈÍË Úä:
    ÑãÒ PHP:
    foreach ($threadids AS $index => $threadid)
    {
    if (
    $threadids["$index"] != intval($threadid
    ))
    {
    unset(
    $threadids["$index"
    ]);
    }
    }

    5- ÅÓÊÈÏáå:
    ÑãÒ PHP:
    foreach ($threadids AS $index => $threadid)
    {
    $threadids["$index"]=(int)$threadids["$index"
    ];
    }



    ÃÔßÑßã Úáì ÇáÊÚÇæä áÝÚá ÇáÎíÑ æÈÇÑß Çááå Èßã Úáì ÇáÊäÈíå æßá ÚÇã æãäÊÏíÇÊßã ÈÎíÑ.

    ãæÝÞíä





    ßáãÇÊ ÇáÈÍË

    ÇÝáÇã,ÇÝáÇã ÚÑÈì,ÇÝáÇã ÇÌäÈì,ÇÝáÇã åäÏì,ÇÝáÇã åäÏíÉ,ÇÝáÇã ßÑÊæä,ÇÝáÇã ÚÑÈíÉ,ÇÝáÇã ãÕÑíÉ,ÇÝáÇã ÌÏíÏÉ,ÇÛÇäí,ÇáÚÇÈ,ÇÛÇäí mp3,ÇÛÇäí ÚÑÈíÉ,ÇÛÇäí ÔÚÈíå,ÇÛÇäí ÇÌäÈíÉ,ÇÛÇäí ØÑÈ,ÇÛÇäí ÊÇãÑ ÍÓäí,ÚãÑæ ÏíÇÈ , ÝíÏíæ,ÝíÏíæ ßáíÈ,ÝíÏíæ ßáíÈÇÊ,ÝíÏíæ ÑÞÕ,ÝíÏíæ ÈäÇÊ,ãÞÇØÚ ÝíÏíæ,ãÞÇØÚ ÝíÏíæ ÈäÇÊ,ãÞÇØÚ ãÖÍßÉ,ãÞÇØÚ ÈáæÊæË,ãÞÇØÚ ÇÛÇäí,ÊÚáíã áÛÇÊ,ÞÇãæÓ,ÞÇäæä,ÔÚÑ,Óáãì ÍÇíß,åíÝÇÁ æåÈì,äÇäÓì ÚÌÑã,äæÑ,ãåäÏ







  2. #2
    ÇáÕæÑÉ ÇáÑãÒíÉ Danna
    ÇáÍÇáÉ : ÛíÑ ãÊæÇÌÏ
    ÑÞã ÇáÚÖæíÉ : 377
    ÊÇÑíÎ ÇáÊÓÌíá : Dec 2008
    ÇáãÔÇÑßÇÊ : 2,153
    ÇáÊÞííã : 10
    Array
    ãÚÏá ÊÞííã ÇáãÓÊæì : 18
    Array

    ÇÝÊÑÇÖí


    ÇáÓáÇã Úáíßã æÑÍãÉ Çááå æÈÑßÇÊå

    ãíÑÓíå Úáì ÇáãæÖæÚ æÏÇíãÇ ãæÖæÚÇÊß ÞíãÉ æããíÒÉ


    æíÇÑÈ ÏÇíãÇ ÈÇáÊæÝíÞ æÝì ÇäÊÙÇÑ ÇáãÒíÏ ãä ãæÖæÚÇÊß Çááì ÈÊÝíÏ ßá ÞÇÑìÁ

    æÈÇáÃÎÕ ÇáãæÖæÚÇÊ Çááì ÝíåÇ ÑÓÇáÉ ÈÊÍãá Ýì ãÖãæäåÇ ÞíãÉ íÓÊÝÇÏ ãäåÇ ÇáÌãíÚ

    æáæ ÓØÑ Ãæ ÕæÑÉ

    æÏå ÏÇíãÇ ãÊÚæÏíä äÔæÝå ãäß æíÇÑÈ ÏÇíãÇ Ýì ÊãíÒ æÊÃáÞ




    <a href=http://www.b7st.com/vb target=_blank><img src=http://i183.photobucket.com/albums/x14/hootblood/7.gif border=0 alt= /></a>
<a href=http://www.b7st.com/vb target=_blank><img src=http://i183.photobucket.com/albums/x14/hootblood/12.gif border=0 alt= /></a>DANNA

  3. #3
    ÇáÕæÑÉ ÇáÑãÒíÉ Danna
    ÇáÍÇáÉ : ÛíÑ ãÊæÇÌÏ
    ÑÞã ÇáÚÖæíÉ : 377
    ÊÇÑíÎ ÇáÊÓÌíá : Dec 2008
    ÇáãÔÇÑßÇÊ : 2,153
    ÇáÊÞííã : 10
    Array
    ãÚÏá ÊÞííã ÇáãÓÊæì : 18
    Array

    ÇÝÊÑÇÖí


    ÇáÓáÇã Úáíßã æÑÍãÉ Çááå æÈÑßÇÊå

    ãíÑÓíå Úáì ÇáãæÖæÚ æÏÇíãÇ ãæÖæÚÇÊß ÞíãÉ æããíÒÉ


    æíÇÑÈ ÏÇíãÇ ÈÇáÊæÝíÞ æÝì ÇäÊÙÇÑ ÇáãÒíÏ ãä ãæÖæÚÇÊß Çááì ÈÊÝíÏ ßá ÞÇÑìÁ

    æÈÇáÃÎÕ ÇáãæÖæÚÇÊ Çááì ÝíåÇ ÑÓÇáÉ ÈÊÍãá Ýì ãÖãæäåÇ ÞíãÉ íÓÊÝÇÏ ãäåÇ ÇáÌãíÚ

    æáæ ÓØÑ Ãæ ÕæÑÉ

    æÏå ÏÇíãÇ ãÊÚæÏíä äÔæÝå ãäß æíÇÑÈ ÏÇíãÇ Ýì ÊãíÒ æÊÃáÞ




    <a href=http://www.b7st.com/vb target=_blank><img src=http://i183.photobucket.com/albums/x14/hootblood/7.gif border=0 alt= /></a>
<a href=http://www.b7st.com/vb target=_blank><img src=http://i183.photobucket.com/albums/x14/hootblood/12.gif border=0 alt= /></a>DANNA


 

ãÚáæãÇÊ ÇáãæÖæÚ

ÇáÃÚÖÇÁ ÇáÐíä íÔÇåÏæä åÐÇ ÇáãæÖæÚ

ÇáÐíä íÔÇåÏæä ÇáãæÖæÚ ÇáÂä: 1 (0 ãä ÇáÃÚÖÇÁ æ 1 ÒÇÆÑ)

     

ÇáßáãÇÊ ÇáÏáÇáíÉ áåÐÇ ÇáãæÖæÚ

ÇáãÝÖáÇÊ

ÇáãÝÖáÇÊ

ÖæÇÈØ ÇáãÔÇÑßÉ

  • áÇ ÊÓÊØíÚ ÅÖÇÝÉ ãæÇÖíÚ ÌÏíÏÉ
  • áÇ ÊÓÊØíÚ ÇáÑÏ Úáì ÇáãæÇÖíÚ
  • áÇ ÊÓÊØíÚ ÅÑÝÇÞ ãáÝÇÊ
  • áÇ ÊÓÊØíÚ ÊÚÏíá ãÔÇÑßÇÊß
  •