Ministry of Civil Aviation & Tourism Bangladesh Hacked By TEAM T!g3R

Posted by Muhammad Usman On 04:57 No comments
Share



Ministry  of Civil Aviation & Tourism, Bangladesh is Vulnerable to SQL-i and the entire Database get hacked by TEAM T!g3R. They exposed sensitive  information like DB name, server details, admin credentials and lots of other things.

Vulnerable Site:-
http://www.mocat.gov.bd/

Vulnerable Link:-

Server Details:-

Target:         http://www.mocat.gov.bd/personnel.php?id=1
Host IP:        75.125.91.162
Web Server:  Apache/2.2.19 (Unix) mod_ssl/2.2.19 OpenSSL/0.9.8e-fips-rhel5        mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
                        mod_perl/2.0.5 Perl/v5.8.8

Powered-by:         PHP/5.2.17
DB Server:          MySQL >=5
Resp. Time(avg):    4767 ms
Current User:       mocatgo_mocatdb@localhost
Sql Version:        5.1.56-log
Current DB:         mocatgo_mocatdb
System User:        mocatgo_mocatdb@localhost
Host Name:         dhaka-bd2.number1shop.com
Installation dir:         /
DB User:         ' mocatgo_mocatdb'@'localhost'

User Credentials:- 
admin          QQmoca3tad
jabed           QQrrtre
rubel           QQinfo@bdt
rumu           QQinfo
sdnp            QQqrr
tina             QQadmin

To see the hacked DB click Here

Here are Some screen Shots Submitted by The hacker:-

0 comments:

Post a Comment

Related Posts Plugin for WordPress, Blogger...

Site search