Re: [Full-disclosure] CCAvenue.com Payment Gateway Vulnerable SQL Injection UPDATE
>> Never trust an Indian software company. > > Sure, go ahead and trust the Pakis instead ;-) > What's wrong with those countries? I've seen users from the both countries advertising services with words such as "leading, professional" and when we look at their contact emails, we'll find "peng...@gmail.com" etc. ;) ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] CCAvenue.com Payment Gateway Vulnerable SQL Injection UPDATE
> Never trust an Indian software company. Sure, go ahead and trust the Pakis instead ;-) ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] CCAvenue.com Payment Gateway Vulnerable SQL Injection UPDATE
On Thu, May 19, 2011 at 3:30 AM, Vipul Agarwal wrote: > And let's trust HBGary. :) > > On Thu, May 19, 2011 at 7:03 AM, David Blanc > wrote: >> >> On Sat, May 7, 2011 at 6:53 PM, Xa Buri wrote: >> > >> > So who finally did it and when? ispy or d3hydr8? and I still don't buy >> > the >> > whole SQL Injection theory. There is no proof. Looks more like an >> > insider >> > dump. >> > >> >> Never trust an Indian software company. >> >> http://hackerstreet.in/item?id=6323 >> >> http://blog.susam.in/2011/05/infosys-tcs-or-wipro.html >> ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] CCAvenue.com Payment Gateway Vulnerable SQL Injection UPDATE
And let's trust HBGary. On Thu, May 19, 2011 at 7:03 AM, David Blanc wrote: > On Sat, May 7, 2011 at 6:53 PM, Xa Buri wrote: > > > > So who finally did it and when? ispy or d3hydr8? and I still don't buy > the > > whole SQL Injection theory. There is no proof. Looks more like an insider > > dump. > > > > Never trust an Indian software company. > > http://hackerstreet.in/item?id=6323 > > http://blog.susam.in/2011/05/infosys-tcs-or-wipro.html > > ___ > Full-Disclosure - We believe in it. > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://secunia.com/ > -- Thanks and Regards, Vipul Agarwal ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] CCAvenue.com Payment Gateway Vulnerable SQL Injection UPDATE
Let's trust software from Microsoft or Apple. On Thu, May 19, 2011 at 12:33 PM, David Blanc wrote: > On Sat, May 7, 2011 at 6:53 PM, Xa Buri wrote: > > > > So who finally did it and when? ispy or d3hydr8? and I still don't buy > the > > whole SQL Injection theory. There is no proof. Looks more like an insider > > dump. > > > > Never trust an Indian software company. > > http://hackerstreet.in/item?id=6323 > > http://blog.susam.in/2011/05/infosys-tcs-or-wipro.html > > ___ > Full-Disclosure - We believe in it. > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://secunia.com/ > -- Regards, webDEViL http://twitter.com/w3bd3vil ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] CCAvenue.com Payment Gateway Vulnerable SQL Injection UPDATE
On Sat, May 7, 2011 at 6:53 PM, Xa Buri wrote: > > So who finally did it and when? ispy or d3hydr8? and I still don't buy the > whole SQL Injection theory. There is no proof. Looks more like an insider > dump. > Never trust an Indian software company. http://hackerstreet.in/item?id=6323 http://blog.susam.in/2011/05/infosys-tcs-or-wipro.html ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] CCAvenue.com Payment Gateway Vulnerable SQL Injection UPDATE
The same thing as the CCbill, CEO has denied that their portal has been hacked/ had SQL injection vulnerabilities. - MG Wiadomość napisana przez w0lf w dniu 2011-05-07, o godz. 11:53: > Hi > > The company CEO denies the attack & claims that the images posted are fake :) > > http://packetstormsecurity.org/news/view/19110/CCAvenue-Denies-Hacking-Attack.html > > ~w0lf > > On Sat, May 7, 2011 at 11:36 AM, CnCxzSec衰仔 wrote: > [ TABLES: 119 ] : jiaozhu > > table `jiaozhu` was made by the auto sql inject tool HDSI for a temp use... > > aparently this sql injection point have been f*cked by a chinese hacker > before(maybe long long time ago)..:) > > > On Sat, May 7, 2011 at 12:33 AM, d3hydr8 D wrote: > ** > (+) Authors : d3hydr8 > (+) WebSite : darkode.com > (+) Date : 06.05.2011 > (+) Hour : 08:21 AM > (+) Targets : CCAvenue.com (Payment Gateway) > (+) Document: ESA.int Full Disclosure (UPDATED) > (+) Method : Hidden SQL Injection > ** > > > > [ + ] Date: Wed May 3 04:47:33 2011 > [ + ] Displaying information about MSSQL host ! > > [ + ] @@VERSION : Microsoft SQL Server 2005 - 9.00.4035.00 (Intel X86) > Nov 24 2008 13:01:59 > > Copyright (c) 1988-2005 Microsoft Corporation > Enterprise Edition on Windows NT 5.2 (Build 3790: Service Pack 2) > > [ + ] USER () : iusr_ccavenueiusr_ccavenue > [ + ] S_USER () : iusr_ccavenue > > [ + ] DB_NAME () : gateway > [ + ] HOST_NAME () : AV-2 > [ + ] SERVER_NAME () : AVDB-3 > [ + ] SERVER_TYPE () : Apache/2.2.14 (Unix) mod_ssl/2.2.3 > OpenSSL/0.9.8e-fips-rhel5 mod_jk/1.2.28 > [ + ] X-POWERED-By () : Servlet 2.5; JBoss-5.0/JBossWeb-2.1 > > [ + ] IP_ADDRESS_INFO : 124.153.83.27 > -- > > [ + ] Displaying list of databases on this MSSQL host ! > > [ DATABASE: 0 ] : gateway > [ DATABASE: 1 ] : master > [ DATABASE: 2 ] : tempdb > [ DATABASE: 3 ] : model > [ DATABASE: 4 ] : msdb > [ DATABASE: 5 ] : Reseller > - > > [ DATABASE: 0 ] : gateway > > [ + ] Displaying Tables inside DB: > > [ TABLES: 0 ] : addl_merchant_details > [ TABLES: 1 ] : admin_details > [ TABLES: 2 ] : Admn_dept_roles > [ TABLES: 3 ] : Admn_depts > [ TABLES: 4 ] : Admn_prvlg_grps > [ TABLES: 5 ] : Admn_prvlgs > > [ TABLES: 6 ] : Admn_role_prvlgs > [ TABLES: 7 ] : Admn_roles > [ TABLES: 8 ] : Admn_user_prvlgs > [ TABLES: 9 ] : Admn_users > [ TABLES: 10 ] : amex_cc_details > [ TABLES: 11 ] : AMEX_CCDETAILS > > [ TABLES: 12 ] : amex_mer_details > [ TABLES: 13 ] : amtShopperCart > [ TABLES: 14 ] : amtShopperCart_MMT > [ TABLES: 15 ] : auctionPayment > [ TABLES: 16 ] : Auto_cancel > > [ TABLES: 17 ] : Bop_bank > [ TABLES: 18 ] : callcenter_user_login_history > [ TABLES: 19 ] : ccav_default_charges > [ TABLES: 20 ] : Ccav_genid > [ TABLES: 21 ] : Ccav_links > > [ TABLES: 22 ] : ccav_merchant_options > [ TABLES: 23 ] : ccav_payout_allocated_keys > [ TABLES: 24 ] : ccav_payout_credit_logs > [ TABLES: 25 ] : ccav_payout_credits > [ TABLES: 26 ] : ccav_payout_credits_realtime_ > > [ TABLES: 27 ] : ccav_payout_debits > [ TABLES: 28 ] : ccav_payout_debits_realtime_bkp > [ TABLES: 29 ] : ccav_payout_details > [ TABLES: 30 ] : ccav_payout_details_10MAY2010 > [ TABLES: 31 ] : ccav_payout_details_10OCT2010 > > [ TABLES: 32 ] : ccav_payout_details_12AUG2010 > [ TABLES: 33 ] : ccav_payout_details_temp > [ TABLES: 34 ] : ccav_payout_summaries_10MAY2010 > [ TABLES: 35 ] : ccav_payout_summaries_10OCT2010 > > [ TABLES: 36 ] : ccav_payout_summaries_12AUG2010 > [ TABLES: 37 ] : ccav_payout_summaries_temp > [ TABLES: 38 ] : ccav_pending_authorizations > [ TABLES: 39 ] : ccav_pending_authorizations_20100918 > > [ TABLES: 40 ] : ccav_pending_authorizations_20100924 > [ TABLES: 41 ] : ccav_recon_sheets > [ TABLES: 42 ] : ccav_recon_sheets_20100918 > [ TABLES: 43 ] : ccav_recon_sheets_20100924 > > [ TABLES: 44 ] : Ccav_sms_providers > [ TABLES: 45 ] : CCAV_tracking_ids > [ TABLES: 46 ] : CCAV_tracking_ids_20100918 > [ TABLES: 47 ] : ccav_tracking_ids_20100924 > [ TABLES: 48 ] : ccav_trans_status_logs > > [ TABLES: 49 ] : CCAV_transactions > [ TABLES: 50 ] : CCAV_transactions_20100918 > [ TABLES: 51 ] : ccav_transactions_20100924 > [ TABLES: 52 ] : CCAV_transactions_logs > [ TABLES: 53 ] : CCAV_transactions_logs_20100918 > > [ TABLES: 54 ] : ccav_transactions_logs_20100924 > [ TABLES: 55 ] : ccav_transactions_realtime_bkp > [ TABLES: 56 ] : ccavenue_scheduler_logs > [ TABLES: 57 ] : centurion_debit > [ TABLES: 58 ] : Chrc_contact_dets > > [ TABLES: 59 ] : Chrc_contact_dets_20100918 > [ TABLES: 60 ] : Chrc_feedback_dets > [ TABLES: 61 ] : Chrc_feedback_dets_20100918 > [ TABLES: 62 ] : Chrc_reasons > [ TABLES:
Re: [Full-disclosure] CCAvenue.com Payment Gateway Vulnerable SQL Injection UPDATE
Hi The company CEO denies the attack & claims that the images posted are fake :) http://packetstormsecurity.org/news/view/19110/CCAvenue-Denies-Hacking-Attack.html ~w0lf On Sat, May 7, 2011 at 11:36 AM, CnCxzSec衰仔 wrote: > [ TABLES: 119 ] : jiaozhu > > > table `jiaozhu` was made by the auto sql inject tool HDSI for a temp use... > > > aparently this sql injection point have been f*cked by a chinese hacker > before(maybe long long time ago)..:) > > > > On Sat, May 7, 2011 at 12:33 AM, d3hydr8 D wrote: > >> ** >> (+) Authors : d3hydr8 >> (+) WebSite : darkode.com >> (+) Date : 06.05.2011 >> (+) Hour : 08:21 AM >> (+) Targets : CCAvenue.com (Payment Gateway) >> (+) Document: ESA.int Full Disclosure (UPDATED) >> (+) Method : Hidden SQL Injection >> ** >> >> >> >> [ + ] Date: Wed May 3 04:47:33 2011 >> [ + ] Displaying information about MSSQL host ! >> >> [ + ] @@VERSION : Microsoft SQL Server 2005 - 9.00.4035.00 (Intel X86) >> Nov 24 2008 13:01:59 >> >> Copyright (c) 1988-2005 Microsoft Corporation >> Enterprise Edition on Windows NT 5.2 (Build 3790: Service Pack 2) >> >> [ + ] USER () : iusr_ccavenueiusr_ccavenue >> [ + ] S_USER () : iusr_ccavenue >> >> [ + ] DB_NAME () : gateway >> [ + ] HOST_NAME () : AV-2 >> [ + ] SERVER_NAME () : AVDB-3 >> [ + ] SERVER_TYPE () : Apache/2.2.14 (Unix) mod_ssl/2.2.3 >> OpenSSL/0.9.8e-fips-rhel5 mod_jk/1.2.28 >> [ + ] X-POWERED-By () : Servlet 2.5; JBoss-5.0/JBossWeb-2.1 >> >> [ + ] IP_ADDRESS_INFO : 124.153.83.27 >> -- >> >> [ + ] Displaying list of databases on this MSSQL host ! >> >> [ DATABASE: 0 ] : gateway >> [ DATABASE: 1 ] : master >> [ DATABASE: 2 ] : tempdb >> [ DATABASE: 3 ] : model >> [ DATABASE: 4 ] : msdb >> [ DATABASE: 5 ] : Reseller >> - >> >> [ DATABASE: 0 ] : gateway >> >> [ + ] Displaying Tables inside DB: >> >> [ TABLES: 0 ] : addl_merchant_details >> [ TABLES: 1 ] : admin_details >> [ TABLES: 2 ] : Admn_dept_roles >> [ TABLES: 3 ] : Admn_depts >> [ TABLES: 4 ] : Admn_prvlg_grps >> [ TABLES: 5 ] : Admn_prvlgs >> >> [ TABLES: 6 ] : Admn_role_prvlgs >> [ TABLES: 7 ] : Admn_roles >> [ TABLES: 8 ] : Admn_user_prvlgs >> [ TABLES: 9 ] : Admn_users >> [ TABLES: 10 ] : amex_cc_details >> [ TABLES: 11 ] : AMEX_CCDETAILS >> >> [ TABLES: 12 ] : amex_mer_details >> [ TABLES: 13 ] : amtShopperCart >> [ TABLES: 14 ] : amtShopperCart_MMT >> [ TABLES: 15 ] : auctionPayment >> [ TABLES: 16 ] : Auto_cancel >> >> [ TABLES: 17 ] : Bop_bank >> [ TABLES: 18 ] : callcenter_user_login_history >> [ TABLES: 19 ] : ccav_default_charges >> [ TABLES: 20 ] : Ccav_genid >> [ TABLES: 21 ] : Ccav_links >> >> [ TABLES: 22 ] : ccav_merchant_options >> [ TABLES: 23 ] : ccav_payout_allocated_keys >> [ TABLES: 24 ] : ccav_payout_credit_logs >> [ TABLES: 25 ] : ccav_payout_credits >> [ TABLES: 26 ] : ccav_payout_credits_realtime_ >> >> [ TABLES: 27 ] : ccav_payout_debits >> [ TABLES: 28 ] : ccav_payout_debits_realtime_bkp >> [ TABLES: 29 ] : ccav_payout_details >> [ TABLES: 30 ] : ccav_payout_details_10MAY2010 >> [ TABLES: 31 ] : ccav_payout_details_10OCT2010 >> >> [ TABLES: 32 ] : ccav_payout_details_12AUG2010 >> [ TABLES: 33 ] : ccav_payout_details_temp >> [ TABLES: 34 ] : ccav_payout_summaries_10MAY2010 >> [ TABLES: 35 ] : ccav_payout_summaries_10OCT2010 >> >> [ TABLES: 36 ] : ccav_payout_summaries_12AUG2010 >> [ TABLES: 37 ] : ccav_payout_summaries_temp >> [ TABLES: 38 ] : ccav_pending_authorizations >> [ TABLES: 39 ] : ccav_pending_authorizations_20100918 >> >> [ TABLES: 40 ] : ccav_pending_authorizations_20100924 >> [ TABLES: 41 ] : ccav_recon_sheets >> [ TABLES: 42 ] : ccav_recon_sheets_20100918 >> [ TABLES: 43 ] : ccav_recon_sheets_20100924 >> >> [ TABLES: 44 ] : Ccav_sms_providers >> [ TABLES: 45 ] : CCAV_tracking_ids >> [ TABLES: 46 ] : CCAV_tracking_ids_20100918 >> [ TABLES: 47 ] : ccav_tracking_ids_20100924 >> [ TABLES: 48 ] : ccav_trans_status_logs >> >> [ TABLES: 49 ] : CCAV_transactions >> [ TABLES: 50 ] : CCAV_transactions_20100918 >> [ TABLES: 51 ] : ccav_transactions_20100924 >> [ TABLES: 52 ] : CCAV_transactions_logs >> [ TABLES: 53 ] : CCAV_transactions_logs_20100918 >> >> [ TABLES: 54 ] : ccav_transactions_logs_20100924 >> [ TABLES: 55 ] : ccav_transactions_realtime_bkp >> [ TABLES: 56 ] : ccavenue_scheduler_logs >> [ TABLES: 57 ] : centurion_debit >> [ TABLES: 58 ] : Chrc_contact_dets >> >> [ TABLES: 59 ] : Chrc_contact_dets_20100918 >> [ TABLES: 60 ] : Chrc_feedback_dets >> [ TABLES: 61 ] : Chrc_feedback_dets_20100918 >> [ TABLES: 62 ] : Chrc_reasons >> [ TABLES: 63 ] : Chrc_reasons_20100918 >> >> [ TABLES: 64 ] : Chrc_srch_dets >> [ TABLES: 65 ] : Chrc_srch_det
Re: [Full-disclosure] CCAvenue.com Payment Gateway Vulnerable SQL Injection UPDATE
[ TABLES: 119 ] : jiaozhu table `jiaozhu` was made by the auto sql inject tool HDSI for a temp use... aparently this sql injection point have been f*cked by a chinese hacker before(maybe long long time ago)..:) On Sat, May 7, 2011 at 12:33 AM, d3hydr8 D wrote: > ** > (+) Authors : d3hydr8 > (+) WebSite : darkode.com > (+) Date : 06.05.2011 > (+) Hour : 08:21 AM > (+) Targets : CCAvenue.com (Payment Gateway) > (+) Document: ESA.int Full Disclosure (UPDATED) > (+) Method : Hidden SQL Injection > ** > > > > [ + ] Date: Wed May 3 04:47:33 2011 > [ + ] Displaying information about MSSQL host ! > > [ + ] @@VERSION : Microsoft SQL Server 2005 - 9.00.4035.00 (Intel X86) > Nov 24 2008 13:01:59 > > Copyright (c) 1988-2005 Microsoft Corporation > Enterprise Edition on Windows NT 5.2 (Build 3790: Service Pack 2) > > [ + ] USER () : iusr_ccavenueiusr_ccavenue > [ + ] S_USER () : iusr_ccavenue > > [ + ] DB_NAME () : gateway > [ + ] HOST_NAME () : AV-2 > [ + ] SERVER_NAME () : AVDB-3 > [ + ] SERVER_TYPE () : Apache/2.2.14 (Unix) mod_ssl/2.2.3 > OpenSSL/0.9.8e-fips-rhel5 mod_jk/1.2.28 > [ + ] X-POWERED-By () : Servlet 2.5; JBoss-5.0/JBossWeb-2.1 > > [ + ] IP_ADDRESS_INFO : 124.153.83.27 > -- > > [ + ] Displaying list of databases on this MSSQL host ! > > [ DATABASE: 0 ] : gateway > [ DATABASE: 1 ] : master > [ DATABASE: 2 ] : tempdb > [ DATABASE: 3 ] : model > [ DATABASE: 4 ] : msdb > [ DATABASE: 5 ] : Reseller > - > > [ DATABASE: 0 ] : gateway > > [ + ] Displaying Tables inside DB: > > [ TABLES: 0 ] : addl_merchant_details > [ TABLES: 1 ] : admin_details > [ TABLES: 2 ] : Admn_dept_roles > [ TABLES: 3 ] : Admn_depts > [ TABLES: 4 ] : Admn_prvlg_grps > [ TABLES: 5 ] : Admn_prvlgs > > [ TABLES: 6 ] : Admn_role_prvlgs > [ TABLES: 7 ] : Admn_roles > [ TABLES: 8 ] : Admn_user_prvlgs > [ TABLES: 9 ] : Admn_users > [ TABLES: 10 ] : amex_cc_details > [ TABLES: 11 ] : AMEX_CCDETAILS > > [ TABLES: 12 ] : amex_mer_details > [ TABLES: 13 ] : amtShopperCart > [ TABLES: 14 ] : amtShopperCart_MMT > [ TABLES: 15 ] : auctionPayment > [ TABLES: 16 ] : Auto_cancel > > [ TABLES: 17 ] : Bop_bank > [ TABLES: 18 ] : callcenter_user_login_history > [ TABLES: 19 ] : ccav_default_charges > [ TABLES: 20 ] : Ccav_genid > [ TABLES: 21 ] : Ccav_links > > [ TABLES: 22 ] : ccav_merchant_options > [ TABLES: 23 ] : ccav_payout_allocated_keys > [ TABLES: 24 ] : ccav_payout_credit_logs > [ TABLES: 25 ] : ccav_payout_credits > [ TABLES: 26 ] : ccav_payout_credits_realtime_ > > [ TABLES: 27 ] : ccav_payout_debits > [ TABLES: 28 ] : ccav_payout_debits_realtime_bkp > [ TABLES: 29 ] : ccav_payout_details > [ TABLES: 30 ] : ccav_payout_details_10MAY2010 > [ TABLES: 31 ] : ccav_payout_details_10OCT2010 > > [ TABLES: 32 ] : ccav_payout_details_12AUG2010 > [ TABLES: 33 ] : ccav_payout_details_temp > [ TABLES: 34 ] : ccav_payout_summaries_10MAY2010 > [ TABLES: 35 ] : ccav_payout_summaries_10OCT2010 > > [ TABLES: 36 ] : ccav_payout_summaries_12AUG2010 > [ TABLES: 37 ] : ccav_payout_summaries_temp > [ TABLES: 38 ] : ccav_pending_authorizations > [ TABLES: 39 ] : ccav_pending_authorizations_20100918 > > [ TABLES: 40 ] : ccav_pending_authorizations_20100924 > [ TABLES: 41 ] : ccav_recon_sheets > [ TABLES: 42 ] : ccav_recon_sheets_20100918 > [ TABLES: 43 ] : ccav_recon_sheets_20100924 > > [ TABLES: 44 ] : Ccav_sms_providers > [ TABLES: 45 ] : CCAV_tracking_ids > [ TABLES: 46 ] : CCAV_tracking_ids_20100918 > [ TABLES: 47 ] : ccav_tracking_ids_20100924 > [ TABLES: 48 ] : ccav_trans_status_logs > > [ TABLES: 49 ] : CCAV_transactions > [ TABLES: 50 ] : CCAV_transactions_20100918 > [ TABLES: 51 ] : ccav_transactions_20100924 > [ TABLES: 52 ] : CCAV_transactions_logs > [ TABLES: 53 ] : CCAV_transactions_logs_20100918 > > [ TABLES: 54 ] : ccav_transactions_logs_20100924 > [ TABLES: 55 ] : ccav_transactions_realtime_bkp > [ TABLES: 56 ] : ccavenue_scheduler_logs > [ TABLES: 57 ] : centurion_debit > [ TABLES: 58 ] : Chrc_contact_dets > > [ TABLES: 59 ] : Chrc_contact_dets_20100918 > [ TABLES: 60 ] : Chrc_feedback_dets > [ TABLES: 61 ] : Chrc_feedback_dets_20100918 > [ TABLES: 62 ] : Chrc_reasons > [ TABLES: 63 ] : Chrc_reasons_20100918 > > [ TABLES: 64 ] : Chrc_srch_dets > [ TABLES: 65 ] : Chrc_srch_dets_20100918 > [ TABLES: 66 ] : Citi_TxtLog_Child > [ TABLES: 67 ] : Citi_TxtLog_Parent > [ TABLES: 68 ] : citibank_cc_details > > [ TABLES: 69 ] : citibank_log > [ TABLES: 70 ] : citibank_wkey > [ TABLES: 71 ] : COMMISSION > [ TABLES: 72 ] : Commission_log > [ TABLES: 73 ] : countries > [ TABLES: 74 ] : country > > [ TABLES: 75 ] : country_ip > [ TABLES: 76 ] : cpa_201009
[Full-disclosure] CCAvenue.com Payment Gateway Vulnerable SQL Injection UPDATE
** (+) Authors : d3hydr8 (+) WebSite : darkode.com (+) Date : 06.05.2011 (+) Hour : 08:21 AM (+) Targets : CCAvenue.com (Payment Gateway) (+) Document: ESA.int Full Disclosure (UPDATED) (+) Method : Hidden SQL Injection ** [ + ] Date: Tue May 3 04:47:33 2011 [ + ] Displaying information about MSSQL host ! [ + ] @@VERSION : Microsoft SQL Server 2005 - 9.00.4035.00 (Intel X86) Nov 24 2008 13:01:59 Copyright (c) 1988-2005 Microsoft Corporation Enterprise Edition on Windows NT 5.2 (Build 3790: Service Pack 2) [ + ] USER () : iusr_ccavenueiusr_ccavenue [ + ] S_USER () : iusr_ccavenue [ + ] DB_NAME () : gateway [ + ] HOST_NAME () : AV-2 [ + ] SERVER_NAME () : AVDB-3 [ + ] SERVER_TYPE () : Apache/2.2.14 (Unix) mod_ssl/2.2.3 OpenSSL/0.9.8e-fips-rhel5 mod_jk/1.2.28 [ + ] X-POWERED-By () : Servlet 2.5; JBoss-5.0/JBossWeb-2.1 [ + ] IP_ADDRESS_INFO : 124.153.83.27 -- [ + ] Displaying list of databases on this MSSQL host ! [ DATABASE: 0 ] : gateway [ DATABASE: 1 ] : master [ DATABASE: 2 ] : tempdb [ DATABASE: 3 ] : model [ DATABASE: 4 ] : msdb [ DATABASE: 5 ] : Reseller - [ DATABASE: 0 ] : gateway [ + ] Displaying Tables inside DB: [ TABLES: 0 ] : addl_merchant_details [ TABLES: 1 ] : admin_details [ TABLES: 2 ] : Admn_dept_roles [ TABLES: 3 ] : Admn_depts [ TABLES: 4 ] : Admn_prvlg_grps [ TABLES: 5 ] : Admn_prvlgs [ TABLES: 6 ] : Admn_role_prvlgs [ TABLES: 7 ] : Admn_roles [ TABLES: 8 ] : Admn_user_prvlgs [ TABLES: 9 ] : Admn_users [ TABLES: 10 ] : amex_cc_details [ TABLES: 11 ] : AMEX_CCDETAILS [ TABLES: 12 ] : amex_mer_details [ TABLES: 13 ] : amtShopperCart [ TABLES: 14 ] : amtShopperCart_MMT [ TABLES: 15 ] : auctionPayment [ TABLES: 16 ] : Auto_cancel [ TABLES: 17 ] : Bop_bank [ TABLES: 18 ] : callcenter_user_login_history [ TABLES: 19 ] : ccav_default_charges [ TABLES: 20 ] : Ccav_genid [ TABLES: 21 ] : Ccav_links [ TABLES: 22 ] : ccav_merchant_options [ TABLES: 23 ] : ccav_payout_allocated_keys [ TABLES: 24 ] : ccav_payout_credit_logs [ TABLES: 25 ] : ccav_payout_credits [ TABLES: 26 ] : ccav_payout_credits_realtime_ [ TABLES: 27 ] : ccav_payout_debits [ TABLES: 28 ] : ccav_payout_debits_realtime_bkp [ TABLES: 29 ] : ccav_payout_details [ TABLES: 30 ] : ccav_payout_details_10MAY2010 [ TABLES: 31 ] : ccav_payout_details_10OCT2010 [ TABLES: 32 ] : ccav_payout_details_12AUG2010 [ TABLES: 33 ] : ccav_payout_details_temp [ TABLES: 34 ] : ccav_payout_summaries_10MAY2010 [ TABLES: 35 ] : ccav_payout_summaries_10OCT2010 [ TABLES: 36 ] : ccav_payout_summaries_12AUG2010 [ TABLES: 37 ] : ccav_payout_summaries_temp [ TABLES: 38 ] : ccav_pending_authorizations [ TABLES: 39 ] : ccav_pending_authorizations_20100918 [ TABLES: 40 ] : ccav_pending_authorizations_20100924 [ TABLES: 41 ] : ccav_recon_sheets [ TABLES: 42 ] : ccav_recon_sheets_20100918 [ TABLES: 43 ] : ccav_recon_sheets_20100924 [ TABLES: 44 ] : Ccav_sms_providers [ TABLES: 45 ] : CCAV_tracking_ids [ TABLES: 46 ] : CCAV_tracking_ids_20100918 [ TABLES: 47 ] : ccav_tracking_ids_20100924 [ TABLES: 48 ] : ccav_trans_status_logs [ TABLES: 49 ] : CCAV_transactions [ TABLES: 50 ] : CCAV_transactions_20100918 [ TABLES: 51 ] : ccav_transactions_20100924 [ TABLES: 52 ] : CCAV_transactions_logs [ TABLES: 53 ] : CCAV_transactions_logs_20100918 [ TABLES: 54 ] : ccav_transactions_logs_20100924 [ TABLES: 55 ] : ccav_transactions_realtime_bkp [ TABLES: 56 ] : ccavenue_scheduler_logs [ TABLES: 57 ] : centurion_debit [ TABLES: 58 ] : Chrc_contact_dets [ TABLES: 59 ] : Chrc_contact_dets_20100918 [ TABLES: 60 ] : Chrc_feedback_dets [ TABLES: 61 ] : Chrc_feedback_dets_20100918 [ TABLES: 62 ] : Chrc_reasons [ TABLES: 63 ] : Chrc_reasons_20100918 [ TABLES: 64 ] : Chrc_srch_dets [ TABLES: 65 ] : Chrc_srch_dets_20100918 [ TABLES: 66 ] : Citi_TxtLog_Child [ TABLES: 67 ] : Citi_TxtLog_Parent [ TABLES: 68 ] : citibank_cc_details [ TABLES: 69 ] : citibank_log [ TABLES: 70 ] : citibank_wkey [ TABLES: 71 ] : COMMISSION [ TABLES: 72 ] : Commission_log [ TABLES: 73 ] : countries [ TABLES: 74 ] : country [ TABLES: 75 ] : country_ip [ TABLES: 76 ] : cpa_20100924 [ TABLES: 77 ] : crs_20100924 [ TABLES: 78 ] : ct_20100918 [ TABLES: 79 ] : ct_20100924 [ TABLES: 80 ] : ct_20101005 [ TABLES: 81 ] : ctl_20100924 [ TABLES: 82 ] : custShopCart [ TABLES: 83 ] : custShopCart_20100918 [ TABLES: 84 ] : custshopcart_20100924 [ TABLES: 85 ] : custShopperCart [ TABLES: 86 ] : DB_SCHEMA [ TABLES: 87 ] : Deprecated_Payment_Invoice [ TABLES: 88 ] : Deprecated_Payment_Invoice_Logs [ TABLES: 89 ] : Dr_Cr_Notes [ TABLES: 90 ] : dtproperties [ TABLES: 91 ] : dummy_shopper_details [ TABLES: 92
Re: [Full-disclosure] CCAvenue.com Payment Gateway Vulnerable SQL Injection UPDATE
> [ + ] Date: Wed May 3 04:47:33 2011 ... > > -- > > Kindly disregard the previous report. I got the date all mixed up. > hah! You must be joking right! Also where exactly was the *hidden" SQL injection you said?? Cmon! come out clean about the source... > Thanks, :) > > d3hydr8 > > ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] CCAvenue.com Payment Gateway Vulnerable SQL Injection UPDATE
> adu_id adu_user adu_pwd adu_status dept_id remote_access mobile_number > . . . > Acc1041 Risk Risk A Acc lol, definitely a risky guy -- Cheers, Kai ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] CCAvenue.com Payment Gateway Vulnerable SQL Injection UPDATE
But the encrypted everything right? On Fri, May 6, 2011 at 5:33 PM, d3hydr8 D wrote: > ** > (+) Authors : d3hydr8 > (+) WebSite : darkode.com > (+) Date : 06.05.2011 > (+) Hour : 08:21 AM > (+) Targets : CCAvenue.com (Payment Gateway) > (+) Document: ESA.int Full Disclosure (UPDATED) > (+) Method : Hidden SQL Injection > ** > > > > [ + ] Date: Wed May 3 04:47:33 2011 > [ + ] Displaying information about MSSQL host ! > > [ + ] @@VERSION : Microsoft SQL Server 2005 - 9.00.4035.00 (Intel X86) > Nov 24 2008 13:01:59 > > Copyright (c) 1988-2005 Microsoft Corporation > Enterprise Edition on Windows NT 5.2 (Build 3790: Service Pack 2) > > [ + ] USER () : iusr_ccavenueiusr_ccavenue > [ + ] S_USER () : iusr_ccavenue > > [ + ] DB_NAME () : gateway > [ + ] HOST_NAME () : AV-2 > [ + ] SERVER_NAME () : AVDB-3 > [ + ] SERVER_TYPE () : Apache/2.2.14 (Unix) mod_ssl/2.2.3 > OpenSSL/0.9.8e-fips-rhel5 mod_jk/1.2.28 > [ + ] X-POWERED-By () : Servlet 2.5; JBoss-5.0/JBossWeb-2.1 > > [ + ] IP_ADDRESS_INFO : 124.153.83.27 > -- > > [ + ] Displaying list of databases on this MSSQL host ! > > [ DATABASE: 0 ] : gateway > [ DATABASE: 1 ] : master > [ DATABASE: 2 ] : tempdb > [ DATABASE: 3 ] : model > [ DATABASE: 4 ] : msdb > [ DATABASE: 5 ] : Reseller > - > > [ DATABASE: 0 ] : gateway > > [ + ] Displaying Tables inside DB: > > [ TABLES: 0 ] : addl_merchant_details > [ TABLES: 1 ] : admin_details > [ TABLES: 2 ] : Admn_dept_roles > [ TABLES: 3 ] : Admn_depts > [ TABLES: 4 ] : Admn_prvlg_grps > [ TABLES: 5 ] : Admn_prvlgs > > [ TABLES: 6 ] : Admn_role_prvlgs > [ TABLES: 7 ] : Admn_roles > [ TABLES: 8 ] : Admn_user_prvlgs > [ TABLES: 9 ] : Admn_users > [ TABLES: 10 ] : amex_cc_details > [ TABLES: 11 ] : AMEX_CCDETAILS > > [ TABLES: 12 ] : amex_mer_details > [ TABLES: 13 ] : amtShopperCart > [ TABLES: 14 ] : amtShopperCart_MMT > [ TABLES: 15 ] : auctionPayment > [ TABLES: 16 ] : Auto_cancel > > [ TABLES: 17 ] : Bop_bank > [ TABLES: 18 ] : callcenter_user_login_history > [ TABLES: 19 ] : ccav_default_charges > [ TABLES: 20 ] : Ccav_genid > [ TABLES: 21 ] : Ccav_links > > [ TABLES: 22 ] : ccav_merchant_options > [ TABLES: 23 ] : ccav_payout_allocated_keys > [ TABLES: 24 ] : ccav_payout_credit_logs > [ TABLES: 25 ] : ccav_payout_credits > [ TABLES: 26 ] : ccav_payout_credits_realtime_ > > [ TABLES: 27 ] : ccav_payout_debits > [ TABLES: 28 ] : ccav_payout_debits_realtime_bkp > [ TABLES: 29 ] : ccav_payout_details > [ TABLES: 30 ] : ccav_payout_details_10MAY2010 > [ TABLES: 31 ] : ccav_payout_details_10OCT2010 > > [ TABLES: 32 ] : ccav_payout_details_12AUG2010 > [ TABLES: 33 ] : ccav_payout_details_temp > [ TABLES: 34 ] : ccav_payout_summaries_10MAY2010 > [ TABLES: 35 ] : ccav_payout_summaries_10OCT2010 > > [ TABLES: 36 ] : ccav_payout_summaries_12AUG2010 > [ TABLES: 37 ] : ccav_payout_summaries_temp > [ TABLES: 38 ] : ccav_pending_authorizations > [ TABLES: 39 ] : ccav_pending_authorizations_20100918 > > [ TABLES: 40 ] : ccav_pending_authorizations_20100924 > [ TABLES: 41 ] : ccav_recon_sheets > [ TABLES: 42 ] : ccav_recon_sheets_20100918 > [ TABLES: 43 ] : ccav_recon_sheets_20100924 > > [ TABLES: 44 ] : Ccav_sms_providers > [ TABLES: 45 ] : CCAV_tracking_ids > [ TABLES: 46 ] : CCAV_tracking_ids_20100918 > [ TABLES: 47 ] : ccav_tracking_ids_20100924 > [ TABLES: 48 ] : ccav_trans_status_logs > > [ TABLES: 49 ] : CCAV_transactions > [ TABLES: 50 ] : CCAV_transactions_20100918 > [ TABLES: 51 ] : ccav_transactions_20100924 > [ TABLES: 52 ] : CCAV_transactions_logs > [ TABLES: 53 ] : CCAV_transactions_logs_20100918 > > [ TABLES: 54 ] : ccav_transactions_logs_20100924 > [ TABLES: 55 ] : ccav_transactions_realtime_bkp > [ TABLES: 56 ] : ccavenue_scheduler_logs > [ TABLES: 57 ] : centurion_debit > [ TABLES: 58 ] : Chrc_contact_dets > > [ TABLES: 59 ] : Chrc_contact_dets_20100918 > [ TABLES: 60 ] : Chrc_feedback_dets > [ TABLES: 61 ] : Chrc_feedback_dets_20100918 > [ TABLES: 62 ] : Chrc_reasons > [ TABLES: 63 ] : Chrc_reasons_20100918 > > [ TABLES: 64 ] : Chrc_srch_dets > [ TABLES: 65 ] : Chrc_srch_dets_20100918 > [ TABLES: 66 ] : Citi_TxtLog_Child > [ TABLES: 67 ] : Citi_TxtLog_Parent > [ TABLES: 68 ] : citibank_cc_details > > [ TABLES: 69 ] : citibank_log > [ TABLES: 70 ] : citibank_wkey > [ TABLES: 71 ] : COMMISSION > [ TABLES: 72 ] : Commission_log > [ TABLES: 73 ] : countries > [ TABLES: 74 ] : country > > [ TABLES: 75 ] : country_ip > [ TABLES: 76 ] : cpa_20100924 > [ TABLES: 77 ] : crs_20100924 > [ TABLES: 78 ] : ct_20100918 > [ TABLES: 79 ] : ct_20100924 > [ TABLES: 80 ] : ct_20101005 > > [ TABLES: 81 ] : ctl_20100924 > [ TABLES: 82
[Full-disclosure] CCAvenue.com Payment Gateway Vulnerable SQL Injection UPDATE
** (+) Authors : d3hydr8 (+) WebSite : darkode.com (+) Date : 06.05.2011 (+) Hour : 08:21 AM (+) Targets : CCAvenue.com (Payment Gateway) (+) Document: ESA.int Full Disclosure (UPDATED) (+) Method : Hidden SQL Injection ** [ + ] Date: Wed May 3 04:47:33 2011 [ + ] Displaying information about MSSQL host ! [ + ] @@VERSION : Microsoft SQL Server 2005 - 9.00.4035.00 (Intel X86) Nov 24 2008 13:01:59 Copyright (c) 1988-2005 Microsoft Corporation Enterprise Edition on Windows NT 5.2 (Build 3790: Service Pack 2) [ + ] USER () : iusr_ccavenueiusr_ccavenue [ + ] S_USER () : iusr_ccavenue [ + ] DB_NAME () : gateway [ + ] HOST_NAME () : AV-2 [ + ] SERVER_NAME () : AVDB-3 [ + ] SERVER_TYPE () : Apache/2.2.14 (Unix) mod_ssl/2.2.3 OpenSSL/0.9.8e-fips-rhel5 mod_jk/1.2.28 [ + ] X-POWERED-By () : Servlet 2.5; JBoss-5.0/JBossWeb-2.1 [ + ] IP_ADDRESS_INFO : 124.153.83.27 -- [ + ] Displaying list of databases on this MSSQL host ! [ DATABASE: 0 ] : gateway [ DATABASE: 1 ] : master [ DATABASE: 2 ] : tempdb [ DATABASE: 3 ] : model [ DATABASE: 4 ] : msdb [ DATABASE: 5 ] : Reseller - [ DATABASE: 0 ] : gateway [ + ] Displaying Tables inside DB: [ TABLES: 0 ] : addl_merchant_details [ TABLES: 1 ] : admin_details [ TABLES: 2 ] : Admn_dept_roles [ TABLES: 3 ] : Admn_depts [ TABLES: 4 ] : Admn_prvlg_grps [ TABLES: 5 ] : Admn_prvlgs [ TABLES: 6 ] : Admn_role_prvlgs [ TABLES: 7 ] : Admn_roles [ TABLES: 8 ] : Admn_user_prvlgs [ TABLES: 9 ] : Admn_users [ TABLES: 10 ] : amex_cc_details [ TABLES: 11 ] : AMEX_CCDETAILS [ TABLES: 12 ] : amex_mer_details [ TABLES: 13 ] : amtShopperCart [ TABLES: 14 ] : amtShopperCart_MMT [ TABLES: 15 ] : auctionPayment [ TABLES: 16 ] : Auto_cancel [ TABLES: 17 ] : Bop_bank [ TABLES: 18 ] : callcenter_user_login_history [ TABLES: 19 ] : ccav_default_charges [ TABLES: 20 ] : Ccav_genid [ TABLES: 21 ] : Ccav_links [ TABLES: 22 ] : ccav_merchant_options [ TABLES: 23 ] : ccav_payout_allocated_keys [ TABLES: 24 ] : ccav_payout_credit_logs [ TABLES: 25 ] : ccav_payout_credits [ TABLES: 26 ] : ccav_payout_credits_realtime_ [ TABLES: 27 ] : ccav_payout_debits [ TABLES: 28 ] : ccav_payout_debits_realtime_bkp [ TABLES: 29 ] : ccav_payout_details [ TABLES: 30 ] : ccav_payout_details_10MAY2010 [ TABLES: 31 ] : ccav_payout_details_10OCT2010 [ TABLES: 32 ] : ccav_payout_details_12AUG2010 [ TABLES: 33 ] : ccav_payout_details_temp [ TABLES: 34 ] : ccav_payout_summaries_10MAY2010 [ TABLES: 35 ] : ccav_payout_summaries_10OCT2010 [ TABLES: 36 ] : ccav_payout_summaries_12AUG2010 [ TABLES: 37 ] : ccav_payout_summaries_temp [ TABLES: 38 ] : ccav_pending_authorizations [ TABLES: 39 ] : ccav_pending_authorizations_20100918 [ TABLES: 40 ] : ccav_pending_authorizations_20100924 [ TABLES: 41 ] : ccav_recon_sheets [ TABLES: 42 ] : ccav_recon_sheets_20100918 [ TABLES: 43 ] : ccav_recon_sheets_20100924 [ TABLES: 44 ] : Ccav_sms_providers [ TABLES: 45 ] : CCAV_tracking_ids [ TABLES: 46 ] : CCAV_tracking_ids_20100918 [ TABLES: 47 ] : ccav_tracking_ids_20100924 [ TABLES: 48 ] : ccav_trans_status_logs [ TABLES: 49 ] : CCAV_transactions [ TABLES: 50 ] : CCAV_transactions_20100918 [ TABLES: 51 ] : ccav_transactions_20100924 [ TABLES: 52 ] : CCAV_transactions_logs [ TABLES: 53 ] : CCAV_transactions_logs_20100918 [ TABLES: 54 ] : ccav_transactions_logs_20100924 [ TABLES: 55 ] : ccav_transactions_realtime_bkp [ TABLES: 56 ] : ccavenue_scheduler_logs [ TABLES: 57 ] : centurion_debit [ TABLES: 58 ] : Chrc_contact_dets [ TABLES: 59 ] : Chrc_contact_dets_20100918 [ TABLES: 60 ] : Chrc_feedback_dets [ TABLES: 61 ] : Chrc_feedback_dets_20100918 [ TABLES: 62 ] : Chrc_reasons [ TABLES: 63 ] : Chrc_reasons_20100918 [ TABLES: 64 ] : Chrc_srch_dets [ TABLES: 65 ] : Chrc_srch_dets_20100918 [ TABLES: 66 ] : Citi_TxtLog_Child [ TABLES: 67 ] : Citi_TxtLog_Parent [ TABLES: 68 ] : citibank_cc_details [ TABLES: 69 ] : citibank_log [ TABLES: 70 ] : citibank_wkey [ TABLES: 71 ] : COMMISSION [ TABLES: 72 ] : Commission_log [ TABLES: 73 ] : countries [ TABLES: 74 ] : country [ TABLES: 75 ] : country_ip [ TABLES: 76 ] : cpa_20100924 [ TABLES: 77 ] : crs_20100924 [ TABLES: 78 ] : ct_20100918 [ TABLES: 79 ] : ct_20100924 [ TABLES: 80 ] : ct_20101005 [ TABLES: 81 ] : ctl_20100924 [ TABLES: 82 ] : custShopCart [ TABLES: 83 ] : custShopCart_20100918 [ TABLES: 84 ] : custshopcart_20100924 [ TABLES: 85 ] : custShopperCart [ TABLES: 86 ] : DB_SCHEMA [ TABLES: 87 ] : Deprecated_Payment_Invoice [ TABLES: 88 ] : Deprecated_Payment_Invoice_Logs [ TABLES: 89 ] : Dr_Cr_Notes [ TABLES: 90 ] : dtproperties [ TABLES: 91 ] : dummy_shopper_details [ TABLES: 92