Ministry of Civil Aviation & Tourism, Bangladesh is Vulnerable to SQL-i and the entire Database get hacked by TEAM T!g3R. They exposed sensitive information like DB name, server details, admin credentials and lots of other things.
Vulnerable Site:-
http://www.mocat.gov.bd/
Vulnerable Link:-
Server Details:-
Target: http://www.mocat.gov.bd/personnel.php?id=1
Host IP: 75.125.91.162
Web Server: Apache/2.2.19 (Unix) mod_ssl/2.2.19 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
mod_perl/2.0.5 Perl/v5.8.8
Powered-by: PHP/5.2.17
DB Server: MySQL >=5
Resp. Time(avg): 4767 ms
Current User: mocatgo_mocatdb@localhost
Sql Version: 5.1.56-log
Current DB: mocatgo_mocatdb
System User: mocatgo_mocatdb@localhost
Host Name: dhaka-bd2.number1shop.com
Installation dir: /
DB User: ' mocatgo_mocatdb'@'localhost'
User Credentials:-
admin QQmoca3tad
jabed QQrrtre
rubel QQinfo@bdt
rumu QQinfo
sdnp QQqrr
tina QQadmin
To see the hacked DB click Here
Here are Some screen Shots Submitted by The hacker:-
![](https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_uxP98kG_gzxSctzXwR57HdJTTUztvLpCacZcJ5HWowo_CA9G7bW1TF0wNYhwsQ6ytD5aay-zpk6FxJg0e67sjaUGKC=s0-d)
![](https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_tAWizhShHpp2dYjovJXR04SrgBw6ZbKNZY4H4B09RTKmi3l64MOFVS7ZLsy2fIx4FhrX6zh4RlO98_eMTSfKB1XAGqVhE=s0-d)
SHARE OUR NEWS DIRECTLY ON SOCIAL NETWORKS:-Vulnerable Site:-
http://www.mocat.gov.bd/
Vulnerable Link:-
Server Details:-
Target: http://www.mocat.gov.bd/personnel.php?id=1
Host IP: 75.125.91.162
Web Server: Apache/2.2.19 (Unix) mod_ssl/2.2.19 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
mod_perl/2.0.5 Perl/v5.8.8
Powered-by: PHP/5.2.17
DB Server: MySQL >=5
Resp. Time(avg): 4767 ms
Current User: mocatgo_mocatdb@localhost
Sql Version: 5.1.56-log
Current DB: mocatgo_mocatdb
System User: mocatgo_mocatdb@localhost
Host Name: dhaka-bd2.number1shop.com
Installation dir: /
DB User: ' mocatgo_mocatdb'@'localhost'
User Credentials:-
admin QQmoca3tad
jabed QQrrtre
rubel QQinfo@bdt
rumu QQinfo
sdnp QQqrr
tina QQadmin
To see the hacked DB click Here
Here are Some screen Shots Submitted by The hacker:-
LINK TO OUR HOME PAGE :
![](http://3.bp.blogspot.com/-RxwiSFen_Nw/TjQLGGZwd5I/AAAAAAAAAPw/mVJsXm-Qib0/s1600/images.png)
![](http://1.bp.blogspot.com/-vqQfz6VXhq0/TjQI5uB_3gI/AAAAAAAAAPk/0RSeSEY8YuA/s1600/mini_rss.png)
Categories:
defacement
,
indian
,
vulnerablity