Skip navigation

Title : Umbra Loader (all versions) multiple Vulnerabilies
Author : Th3breacher
E-mail :
platform : php
Type : SQL Injection / unprotected login bruteforce
Severity : medium
Tested on : ArchLinux
Download : []
Overview : Umbra Loader is a popular HTTP botnet open source project, and version 1.1.1 has been released recently by the developer, Slayer616.
Vulnerabilities :
–POST-authentification Blind SQL Injection
+POC :

–Unprotected POST credentials check (credentials bruteforce is possible)
+POC :


Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Google+ photo

You are commenting using your Google+ account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )


Connecting to %s

%d bloggers like this: