 |
|
 |
 |
|
 |
IT Security and Insecurity Portal |
|
|
|
| Sql inj where?In cPanel or some other appz on server?Somewere else, i was able to get usernames and passwords for users, tryed to use some of them on cPanel, dident work... |
|
|
|
|
| Hello does anybody know the name of table and columns for cPanel? I found sql injection all i need is to get admin hashes now, btw are they simple md5's or with salt? Thnx |
|
|
|
| gtal3x |
|
| Replies: 17 |
| Views: 21806 |
|
|
 |
|
 |
|
| kr0k0 i dont understand, if you puted http://www.yahoo.com and it worked, that mean anything is gona work, you dont need to upload shell throu sql injection, just upload it into any free web hostings ... |
|
|
|
| gtal3x |
|
| Replies: 40 |
| Views: 39366 |
|
|
|
|
|
|
C:\AppServ\www>php test.p
0----
1----
Work finished!Thats what i did, no error at all, but nothing in out.txt, btw tryed on linux is well... |
|
|
|
| gtal3x |
|
| Replies: 40 |
| Views: 39366 |
|
|
|
|
|
|
waraxe for some reason your script doest work for me, it runs ok, but doesnt save anything in out.txt, the script is easy but i am not good with files functions  ... Basicly it looks strange to me t ... |
|
|
|
| gtal3x |
|
| Replies: 40 |
| Views: 39366 |
|
|
|
|
|
|
why not do it str8?
UNION+ALL+SELECT+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,CONCAT_WS(CHAR(58),mail,password)+FROM+Users/*
btw i think the best thing to do is just t ... |
|
|
|
| gtal3x |
|
| Replies: 40 |
| Views: 39366 |
|
|
|
|
|
|
| i guess u can try to find a perl script that finds the right tables and columns for you, or write it your self, but this is for mysql 4x, in 5x you can always use the information schem to find excaly ... |
|
|
|
| gtal3x |
|
| Replies: 40 |
| Views: 39366 |
|
|
|
|
|
|
or just try this and tell me what u see...
+union+select+1,2,3,4,5,6,7,8,9,0,1,2,3,4,5,email,7,8,9,0,1,2+from+User+limit+1,1/* |
|
|
|
| gtal3x |
|
| Replies: 40 |
| Views: 39366 |
|
|
|
|
|
|
| thats exacly wat u need, with my code u found that the column name is "User", u can go ferther by limit+2,1... etc, or u can start finding tables with the same comand (cahnge columns for tables) and t ... |
|
|
|
| gtal3x |
|
| Replies: 40 |
| Views: 39366 |
|
|
|
|
|
|
just do this:
+union+select+1,2,3,4,5,6,7,8,9,0,1,2,3,4,5,column_name,7,8,9,0,1,2+from+information_schema.columns+where+column_name+like+0x257573657225+limit+1,1/*
btw r u tryin to hack skai.gr ? ... |
|
|
|
|
| 1st of all where did you get this pass from? i mean from what software? For me it seems like a mysql 64bit, with no salt |
|
|
|
| gtal3x |
|
| Replies: 40 |
| Views: 39366 |
|
|
|
|
|
|
Well for me it seems that u dident find the right number of columns, btw use:
union+select+1,2,3,4,5/* |
|
|
|
| gtal3x |
|
| Replies: 11 |
| Views: 26907 |
|
|
|
|
|
|
| koko thnx for help, i managed to make it work...! |
|
|
|
| gtal3x |
|
| Replies: 11 |
| Views: 26907 |
|
|
|
|
|
|
| I tryed ntsview and r57... They dident work... But PHP works, just tryed echo"Test"; and it worked..! Do you have any good shell i can upload? |
|
|
|
| gtal3x |
|
| Replies: 11 |
| Views: 26907 |
|
|
|
|
|
|
| koko thx fro reply, i did everything you said, i wrote: echo "Test"; (just to test it), then i went to site.com/forum/ajax.php but nothing came up... What did i do wrong? |
|
|
| Page 1 of 3 |
Goto page 1, 2, 3Next
All times are GMT |
Powered by phpBB © 2001-2008 phpBB Group
|
|
|
|
|
Discussions
Tools
Content
Info
Membership:
Latest: 
New Today: 0
New Yesterday: 0
Overall: 9144
People Online:
Visitors: 65
Members: 0
Total: 65
