Panama Papers: Difference between revisions

From Enlace Hacktivista
Jump to navigation Jump to search
(Created page with "Leak of 11.6 million documents from the offshore law firm Mossack Fonseca by John Doe. * https://www.icij.org/investigations/panama-papers/ * [https://www.icij.org/investigations/panama-papers/20160506-john-doe-statement/ The Revolution Will Be Digitized] (leaker's manifesto) == Explanation of the Hack == According to Unicorn Riot, Mossack Fonseca's customer portal was running an outdated version of Drupal vulnerable to the "Drupalgeddon" SQL injection vulnerability t...")
 
mNo edit summary
 
Line 6: Line 6:
== Explanation of the Hack ==
== Explanation of the Hack ==


According to Unicorn Riot, Mossack Fonseca's customer portal was running an outdated version of Drupal vulnerable to the "Drupalgeddon" SQL injection vulnerability that would have allowed a hacker to [https://book.hacktricks.xyz/pentesting/1521-1522-1529-pentesting-oracle-listener/oracle-rce-and-more get RCE on the Oracle database server].
According to Unicorn Riot, Mossack Fonseca's customer portal was running an outdated version of Drupal vulnerable to the "Drupalgeddon" SQL injection exploit that would have allowed a hacker to [https://book.hacktricks.xyz/pentesting/1521-1522-1529-pentesting-oracle-listener/oracle-rce-and-more get RCE on the Oracle database server].


* [https://web.archive.org/web/20160407073315/https://unicornriot.ninja/?p=5357 Unicorn Riot: Oracle, chat & raw code found in Mossack Fonseca offshore web portal]
[https://web.archive.org/web/20160407073315/https://unicornriot.ninja/?p=5357 Unicorn Riot: Oracle, chat & raw code found in Mossack Fonseca offshore web portal]

Latest revision as of 00:42, 24 December 2021

Leak of 11.6 million documents from the offshore law firm Mossack Fonseca by John Doe.

Explanation of the Hack

According to Unicorn Riot, Mossack Fonseca's customer portal was running an outdated version of Drupal vulnerable to the "Drupalgeddon" SQL injection exploit that would have allowed a hacker to get RCE on the Oracle database server.

Unicorn Riot: Oracle, chat & raw code found in Mossack Fonseca offshore web portal