Our Feeds

Monday, 29 October 2012

Ajith Kp

phpMyAdmin DB --> Google Dork

some of foolish admins have forgot to hide phpMyAdmin.

We can use this vulnerability to pWn database directy without using other exploits like SQLi.

We can obtain DB directly.

Google Dork: inurl:"index.php?db=information_schema"

Look the bellow image how phpMyAdmin looks...
Lets pWn DataBase....